./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2462782535

<...>
Warning: Permanently added '10.128.1.82' (ED25519) to the list of known hosts.
execve("./syz-executor2462782535", ["./syz-executor2462782535"], 0x7fff562b9390 /* 10 vars */) = 0
brk(NULL)                               = 0x55555697c000
brk(0x55555697ce00)                     = 0x55555697ce00
arch_prctl(ARCH_SET_FS, 0x55555697c480) = 0
set_tid_address(0x55555697c750)         = 5061
set_robust_list(0x55555697c760, 24)     = 0
rseq(0x55555697cda0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2462782535", 4096) = 28
getrandom("\x77\xb5\x92\x02\xd3\x47\xca\x78", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x55555697ce00
brk(0x55555699de00)                     = 0x55555699de00
brk(0x55555699e000)                     = 0x55555699e000
mprotect(0x7f6da0bae000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGSEGV, {sa_handler=0x7f6da0afa990, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f6da0b03a70}, NULL, 8) = 0
rt_sigaction(SIGBUS, {sa_handler=0x7f6da0afa990, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f6da0b03a70}, NULL, 8) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5062 attached
, child_tidptr=0x55555697c750) = 5062
[pid  5061] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5062] set_robust_list(0x55555697c760, 24) = 0
./strace-static-x86_64: Process 5063 attached
[pid  5062] mkdir("./syzkaller.VwBphi", 0700 <unfinished ...>
[pid  5061] <... clone resumed>, child_tidptr=0x55555697c750) = 5063
[pid  5061] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5063] set_robust_list(0x55555697c760, 24) = 0
./strace-static-x86_64: Process 5064 attached
[pid  5062] <... mkdir resumed>)        = 0
[pid  5061] <... clone resumed>, child_tidptr=0x55555697c750) = 5064
[pid  5064] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5063] mkdir("./syzkaller.fg4rwT", 0700 <unfinished ...>
[pid  5062] chmod("./syzkaller.VwBphi", 0777 <unfinished ...>
[pid  5061] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5064] <... set_robust_list resumed>) = 0
[pid  5062] <... chmod resumed>)        = 0
[pid  5062] chdir("./syzkaller.VwBphi"./strace-static-x86_64: Process 5065 attached
 <unfinished ...>
[pid  5064] mkdir("./syzkaller.w9hf7v", 0700 <unfinished ...>
[pid  5063] <... mkdir resumed>)        = 0
[pid  5065] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5063] chmod("./syzkaller.fg4rwT", 0777 <unfinished ...>
[pid  5062] <... chdir resumed>)        = 0
[pid  5061] <... clone resumed>, child_tidptr=0x55555697c750) = 5065
[pid  5065] <... set_robust_list resumed>) = 0
[pid  5063] <... chmod resumed>)        = 0
[pid  5062] mkdir("./0", 0777 <unfinished ...>
[pid  5061] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5065] mkdir("./syzkaller.GLvvsz", 0700 <unfinished ...>
[pid  5064] <... mkdir resumed>)        = 0
[pid  5063] chdir("./syzkaller.fg4rwT" <unfinished ...>
[pid  5062] <... mkdir resumed>)        = 0
./strace-static-x86_64: Process 5066 attached
[pid  5064] chmod("./syzkaller.w9hf7v", 0777 <unfinished ...>
[pid  5066] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5063] <... chdir resumed>)        = 0
[pid  5064] <... chmod resumed>)        = 0
[pid  5066] <... set_robust_list resumed>) = 0
[pid  5063] mkdir("./0", 0777 <unfinished ...>
[pid  5061] <... clone resumed>, child_tidptr=0x55555697c750) = 5066
[pid  5064] chdir("./syzkaller.w9hf7v" <unfinished ...>
[pid  5061] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5066] mkdir("./syzkaller.qud432", 0700 <unfinished ...>
[pid  5065] <... mkdir resumed>)        = 0
[pid  5064] <... chdir resumed>)        = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5063] <... mkdir resumed>)        = 0
./strace-static-x86_64: Process 5067 attached
[pid  5061] <... clone resumed>, child_tidptr=0x55555697c750) = 5067
[pid  5067] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5066] <... mkdir resumed>)        = 0
[pid  5065] chmod("./syzkaller.GLvvsz", 0777 <unfinished ...>
[pid  5064] mkdir("./0", 0777 <unfinished ...>
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  5067] <... set_robust_list resumed>) = 0
[pid  5066] chmod("./syzkaller.qud432", 0777 <unfinished ...>
[pid  5065] <... chmod resumed>)        = 0
[pid  5064] <... mkdir resumed>)        = 0
[pid  5063] <... openat resumed>)       = 3
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5066] <... chmod resumed>)        = 0
[pid  5067] mkdir("./syzkaller.Y25n24", 0700 <unfinished ...>
[pid  5066] chdir("./syzkaller.qud432" <unfinished ...>
[pid  5065] chdir("./syzkaller.GLvvsz" <unfinished ...>
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5067] <... mkdir resumed>)        = 0
[pid  5066] <... chdir resumed>)        = 0
[pid  5065] <... chdir resumed>)        = 0
[pid  5064] <... openat resumed>)       = 3
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5065] mkdir("./0", 0777 <unfinished ...>
[pid  5066] mkdir("./0", 0777 <unfinished ...>
[pid  5063] close(3 <unfinished ...>
[pid  5067] chmod("./syzkaller.Y25n24", 0777 <unfinished ...>
[pid  5065] <... mkdir resumed>)        = 0
[pid  5064] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5062] close(3 <unfinished ...>
[pid  5067] <... chmod resumed>)        = 0
[pid  5066] <... mkdir resumed>)        = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5064] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5062] <... close resumed>)        = 0
[pid  5067] chdir("./syzkaller.Y25n24" <unfinished ...>
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5067] <... chdir resumed>)        = 0
[pid  5065] <... openat resumed>)       = 3
[pid  5067] mkdir("./0", 0777 <unfinished ...>
[pid  5064] close(3 <unfinished ...>
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5067] <... mkdir resumed>)        = 0
[pid  5064] <... close resumed>)        = 0
[pid  5065] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5069 attached
 <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  5065] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5066] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 5069
[pid  5069] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5065] close(3 <unfinished ...>
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5065] <... close resumed>)        = 0
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 5068
./strace-static-x86_64: Process 5070 attached
[pid  5069] <... set_robust_list resumed>) = 0
[pid  5067] <... openat resumed>)       = 3
[pid  5066] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5070] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5066] close(3./strace-static-x86_64: Process 5068 attached
 <unfinished ...>
[pid  5070] <... set_robust_list resumed>) = 0
[pid  5069] chdir("./0" <unfinished ...>
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 5070
[pid  5068] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5071 attached
 <unfinished ...>
[pid  5071] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5068] <... set_robust_list resumed>) = 0
[pid  5070] chdir("./0" <unfinished ...>
[pid  5068] chdir("./0" <unfinished ...>
[pid  5067] close(3 <unfinished ...>
[pid  5071] <... set_robust_list resumed>) = 0
[pid  5068] <... chdir resumed>)        = 0
[pid  5070] <... chdir resumed>)        = 0
[pid  5069] <... chdir resumed>)        = 0
[pid  5067] <... close resumed>)        = 0
[pid  5068] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5070] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5069] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5072 attached
./strace-static-x86_64: Process 5073 attached
 <unfinished ...>
[pid  5071] chdir("./0" <unfinished ...>
[pid  5068] <... prctl resumed>)        = 0
[pid  5070] <... prctl resumed>)        = 0
[pid  5069] <... prctl resumed>)        = 0
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 5071
[pid  5072] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5071] <... chdir resumed>)        = 0
[pid  5068] setpgid(0, 0 <unfinished ...>
[pid  5070] setpgid(0, 0 <unfinished ...>
[pid  5069] setpgid(0, 0 <unfinished ...>
[pid  5073] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5071] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5070] <... setpgid resumed>)      = 0
[pid  5069] <... setpgid resumed>)      = 0
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 5072
[pid  5073] <... set_robust_list resumed>) = 0
[pid  5071] <... prctl resumed>)        = 0
[pid  5072] <... set_robust_list resumed>) = 0
[pid  5071] setpgid(0, 0 <unfinished ...>
[pid  5068] <... setpgid resumed>)      = 0
[pid  5073] chdir("./0" <unfinished ...>
[pid  5072] chdir("./0" <unfinished ...>
[pid  5071] <... setpgid resumed>)      = 0
[pid  5068] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5070] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5069] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5073] <... chdir resumed>)        = 0
[pid  5072] <... chdir resumed>)        = 0
[pid  5071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5068] <... openat resumed>)       = 3
[pid  5069] <... openat resumed>)       = 3
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 5073
[pid  5073] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5072] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5068] write(3, "1000", 4 <unfinished ...>
[pid  5070] <... openat resumed>)       = 3
[pid  5073] <... prctl resumed>)        = 0
[pid  5072] <... prctl resumed>)        = 0
[pid  5068] <... write resumed>)        = 4
[pid  5073] setpgid(0, 0 <unfinished ...>
[pid  5072] setpgid(0, 0 <unfinished ...>
[pid  5071] <... openat resumed>)       = 3
[pid  5068] close(3 <unfinished ...>
[pid  5070] write(3, "1000", 4 <unfinished ...>
[pid  5069] write(3, "1000", 4 <unfinished ...>
[pid  5073] <... setpgid resumed>)      = 0
[pid  5072] <... setpgid resumed>)      = 0
[pid  5071] write(3, "1000", 4 <unfinished ...>
[pid  5068] <... close resumed>)        = 0
[pid  5070] <... write resumed>)        = 4
[pid  5069] <... write resumed>)        = 4
[pid  5073] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5072] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5071] <... write resumed>)        = 4
[pid  5068] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5070] close(3 <unfinished ...>
[pid  5069] close(3 <unfinished ...>
[pid  5073] <... openat resumed>)       = 3
[pid  5072] <... openat resumed>)       = 3
[pid  5071] close(3 <unfinished ...>
[pid  5068] <... symlink resumed>)      = 0
[pid  5070] <... close resumed>)        = 0
[pid  5069] <... close resumed>)        = 0
[pid  5072] write(3, "1000", 4 <unfinished ...>
[pid  5073] write(3, "1000", 4 <unfinished ...>
[pid  5071] <... close resumed>)        = 0
[pid  5069] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5070] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5073] <... write resumed>)        = 4
[pid  5072] <... write resumed>)        = 4
[pid  5071] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5068] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5072] close(3 <unfinished ...>
[pid  5073] close(3 <unfinished ...>
[pid  5070] <... symlink resumed>)      = 0
[pid  5072] <... close resumed>)        = 0
[pid  5072] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5071] <... symlink resumed>)      = 0
[pid  5073] <... close resumed>)        = 0
[pid  5072] <... symlink resumed>)      = 0
[pid  5068] <... memfd_create resumed>) = 3
[pid  5069] <... symlink resumed>)      = 0
[pid  5068] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5072] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5073] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5071] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5070] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5069] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5072] <... memfd_create resumed>) = 3
[pid  5072] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5069] <... memfd_create resumed>) = 3
[pid  5073] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5069] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5071] <... memfd_create resumed>) = 3
[pid  5070] <... memfd_create resumed>) = 3
[pid  5069] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5073] <... memfd_create resumed>) = 3
[pid  5071] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5070] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5073] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5070] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5073] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5071] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5071] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5069] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5070] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5073] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5068] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5072] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5073] <... write resumed>)        = 16777216
[pid  5070] <... write resumed>)        = 16777216
[pid  5069] <... write resumed>)        = 16777216
[pid  5070] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5069] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5073] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5068] <... write resumed>)        = 16777216
[pid  5071] <... write resumed>)        = 16777216
[pid  5068] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5069] <... munmap resumed>)       = 0
[pid  5070] <... munmap resumed>)       = 0
[pid  5070] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid  5070] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5071] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5069] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid  5069] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5073] <... munmap resumed>)       = 0
[pid  5073] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5072] <... write resumed>)        = 16777216
[pid  5070] <... ioctl resumed>)        = 0
[pid  5073] <... openat resumed>)       = 4
[pid  5072] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5070] close(3)                    = 0
[pid  5070] mkdir("./file0", 0777 <unfinished ...>
[pid  5073] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5070] <... mkdir resumed>)        = 0
[pid  5070] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5069] <... ioctl resumed>)        = 0
[pid  5069] close(3)                    = 0
[pid  5069] mkdir("./file0", 0777)      = 0
[pid  5069] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5068] <... munmap resumed>)       = 0
[pid  5073] <... ioctl resumed>)        = 0
[pid  5071] <... munmap resumed>)       = 0
[pid  5068] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5073] close(3 <unfinished ...>
[pid  5071] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5073] <... close resumed>)        = 0
[pid  5071] <... openat resumed>)       = 4
[pid  5068] <... openat resumed>)       = 4
[   71.291865][ T5070] loop2: detected capacity change from 0 to 32768
[   71.304580][ T5069] loop1: detected capacity change from 0 to 32768
[   71.318008][ T5073] loop5: detected capacity change from 0 to 32768
[pid  5073] mkdir("./file0", 0777 <unfinished ...>
[pid  5071] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5072] <... munmap resumed>)       = 0
[pid  5068] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5073] <... mkdir resumed>)        = 0
[pid  5072] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5071] <... ioctl resumed>)        = 0
[pid  5073] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5071] close(3)                    = 0
[pid  5071] mkdir("./file0", 0777)      = 0
[pid  5072] <... openat resumed>)       = 4
[pid  5072] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5071] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5068] <... ioctl resumed>)        = 0
[pid  5072] <... ioctl resumed>)        = 0
[pid  5068] close(3)                    = 0
[pid  5068] mkdir("./file0", 0777)      = 0
[   71.344803][ T5071] loop3: detected capacity change from 0 to 32768
[   71.350362][ T5068] loop0: detected capacity change from 0 to 32768
[   71.360650][ T5070] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[   71.360864][ T5072] loop4: detected capacity change from 0 to 32768
[   71.375233][ T5069] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[   71.375849][ T5070] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5068] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5072] close(3)                    = 0
[pid  5072] mkdir("./file0", 0777)      = 0
[   71.394743][ T5069] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   71.408275][ T5071] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[   71.419699][ T5073] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[   71.429111][ T5069] XFS (loop1): Ending clean mount
[   71.434920][ T5071] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   71.445104][ T5073] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   71.449307][ T5069] XFS (loop1): Quotacheck needed: Please wait.
[   71.456894][ T5068] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[   71.457648][ T5068] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   71.483106][ T5070] XFS (loop2): Ending clean mount
[   71.508633][ T5070] XFS (loop2): Quotacheck needed: Please wait.
[   71.515241][ T5072] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[   71.534123][ T5072] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   71.580925][ T5073] XFS (loop5): Ending clean mount
[   71.593746][ T5072] XFS (loop4): Ending clean mount
[   71.614360][ T5072] XFS (loop4): Quotacheck needed: Please wait.
[   71.621189][ T5073] XFS (loop5): Quotacheck needed: Please wait.
[pid  5072] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5069] <... mount resumed>)        = 0
[pid  5069] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[   71.636438][ T5071] XFS (loop3): Ending clean mount
[   71.652933][ T5069] XFS (loop1): Quotacheck: Done.
[   71.660584][ T5070] XFS (loop2): Quotacheck: Done.
[   71.666564][ T5068] XFS (loop0): Ending clean mount
[   71.669003][ T5072] XFS (loop4): Quotacheck: Done.
[pid  5069] chdir("./file0" <unfinished ...>
[pid  5072] <... mount resumed>)        = 0
[pid  5070] <... mount resumed>)        = 0
[pid  5069] <... chdir resumed>)        = 0
[pid  5072] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5069] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5070] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5070] chdir("./file0")            = 0
[pid  5070] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5070] close(4 <unfinished ...>
[pid  5072] chdir("./file0" <unfinished ...>
[pid  5070] <... close resumed>)        = 0
[pid  5069] <... ioctl resumed>)        = 0
[pid  5070] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5069] close(4 <unfinished ...>
[pid  5072] <... chdir resumed>)        = 0
[pid  5070] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5069] <... close resumed>)        = 0
[pid  5072] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5070] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5070] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5072] <... ioctl resumed>)        = 0
[pid  5069] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5072] close(4 <unfinished ...>
[pid  5070] ftruncate(-1, 33587195 <unfinished ...>
[pid  5069] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5070] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5072] <... close resumed>)        = 0
[pid  5070] read(-1,  <unfinished ...>
[pid  5069] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5072] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5070] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5069] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5072] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5070] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5069] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5072] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5070] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5069] ftruncate(-1, 33587195 <unfinished ...>
[pid  5070] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5069] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5072] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5069] read(-1,  <unfinished ...>
[pid  5072] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5069] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5072] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5070] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5069] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5072] ftruncate(-1, 33587195 <unfinished ...>
[pid  5070] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5069] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5072] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5070] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5069] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5072] read(-1,  <unfinished ...>
[pid  5070] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5069] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5072] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5070] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[   71.685339][ T5071] XFS (loop3): Quotacheck needed: Please wait.
[pid  5069] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5072] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5070] read(-1,  <unfinished ...>
[pid  5069] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5072] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5070] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5069] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5072] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5070] write(-1, NULL, 0 <unfinished ...>
[pid  5069] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5072] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5070] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5069] read(-1,  <unfinished ...>
[pid  5072] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5069] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5072] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5070] write(-1, NULL, 0 <unfinished ...>
[pid  5069] write(-1, NULL, 0 <unfinished ...>
[pid  5072] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5070] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5069] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5072] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5070] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5069] write(-1, NULL, 0 <unfinished ...>
[pid  5072] read(-1,  <unfinished ...>
[pid  5070] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5069] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5072] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5069] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5072] write(-1, NULL, 0 <unfinished ...>
[pid  5069] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5072] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5070] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5069] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5072] write(-1, NULL, 0 <unfinished ...>
[pid  5070] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5069] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5072] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5070] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5069] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5072] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5070] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5069] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5070] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5069] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5072] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5070] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5069] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5071] <... mount resumed>)        = 0
[pid  5070] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5069] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5071] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5070] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5069] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5072] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5071] <... openat resumed>)       = 3
[pid  5070] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5069] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5072] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5071] chdir("./file0" <unfinished ...>
[pid  5070] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5069] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5071] <... chdir resumed>)        = 0
[pid  5070] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5069] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5072] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5071] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5069] <... openat resumed>)       = 4
[pid  5072] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5071] <... ioctl resumed>)        = 0
[pid  5069] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5071] close(4 <unfinished ...>
[pid  5070] <... openat resumed>)       = 4
[pid  5069] <... openat resumed>)       = 5
[pid  5071] <... close resumed>)        = 0
[pid  5069] sendfile(5, 4, [100] <unfinished ...>
[pid  5071] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5070] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5071] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5071] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5070] <... openat resumed>)       = 5
[pid  5071] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5070] sendfile(5, 4, [100] <unfinished ...>
[pid  5072] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5071] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5072] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[   71.721579][ T5071] XFS (loop3): Quotacheck: Done.
[pid  5072] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5071] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5071] ftruncate(-1, 33587195 <unfinished ...>
[pid  5072] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5071] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5071] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5071] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5071] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5071] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5071] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5071] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5071] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5071] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5071] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5072] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5071] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5072] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5071] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5071] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5071] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5071] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5071] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5071] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5072] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5071] <... openat resumed>)       = 4
[pid  5071] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5071] sendfile(5, 4, [100] <unfinished ...>
[pid  5072] <... openat resumed>)       = 4
[pid  5072] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5072] sendfile(5, 4, [100] <unfinished ...>
[pid  5073] <... mount resumed>)        = 0
[   71.795786][ T5068] XFS (loop0): Quotacheck needed: Please wait.
[   71.834012][ T5073] XFS (loop5): Quotacheck: Done.
[pid  5073] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5073] chdir("./file0")            = 0
[pid  5073] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5073] close(4)                    = 0
[pid  5073] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5073] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5073] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5073] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5073] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5073] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5073] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5073] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5073] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5073] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5073] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5073] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5073] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5073] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5073] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5073] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5073] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5073] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5073] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5073] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[   72.020970][ T5068] XFS (loop0): Quotacheck: Done.
[pid  5073] sendfile(5, 4, [100] <unfinished ...>
[pid  5068] <... mount resumed>)        = 0
[pid  5068] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5068] chdir("./file0")            = 0
[pid  5068] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5068] close(4)                    = 0
[pid  5068] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5068] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5068] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5068] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5068] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5068] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5068] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5068] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5068] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5068] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5068] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5068] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5068] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5068] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5068] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5068] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5068] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5068] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5068] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5068] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[   72.411945][ T5068] syz-executor246 (5068): drop_caches: 2
[   72.501351][ T5068] syz-executor246 (5068): drop_caches: 2
[   72.510581][ T5073] syz-executor246 (5073): drop_caches: 2
[pid  5068] sendfile(5, 4, [100] => [671], 571) = 571
[pid  5068] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5073] <... sendfile resumed> => [671], 571) = 571
[pid  5068] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5073] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5068] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5073] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5068] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5073] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5068] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5073] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5068] ftruncate(-1, 33587199 <unfinished ...>
[pid  5073] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5068] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5073] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5068] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5073] ftruncate(-1, 33587199 <unfinished ...>
[pid  5068] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5073] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5068] open(NULL, O_RDONLY <unfinished ...>
[pid  5073] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5068] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5073] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5068] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5073] open(NULL, O_RDONLY <unfinished ...>
[pid  5068] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5073] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5068] read(-1,  <unfinished ...>
[pid  5073] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5068] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5073] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5068] exit_group(0 <unfinished ...>
[pid  5073] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5068] <... exit_group resumed>)   = ?
[pid  5073] exit_group(0)               = ?
[pid  5073] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5073, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=41 /* 0.41 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5068] +++ exited with 0 +++
[pid  5067] umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5068, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=40 /* 0.40 s */} ---
[pid  5067] <... openat resumed>)       = 3
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[   72.546976][ T5073] syz-executor246 (5073): drop_caches: 2
[pid  5067] newfstatat(AT_FDCWD, "./0/binderfs",  <unfinished ...>
[pid  5062] umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5067] unlink("./0/binderfs")      = 0
[pid  5062] <... openat resumed>)       = 3
[pid  5067] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[   72.612432][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   72.615835][ T5070] syz-executor246 (5070): drop_caches: 2
[pid  5062] umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./0/binderfs")      = 0
[pid  5062] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5070] <... sendfile resumed> => [671], 571) = 571
[pid  5070] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5070] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5070] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5070] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5070] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5070] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5070] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[   72.703464][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   72.709692][ T5071] syz-executor246 (5071): drop_caches: 2
[   72.719901][ T5070] syz-executor246 (5070): drop_caches: 2
[   72.736627][ T5071] syz-executor246 (5071): drop_caches: 2
[pid  5070] read(-1,  <unfinished ...>
[pid  5071] <... sendfile resumed> => [671], 571) = 571
[pid  5070] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5071] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5071] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5071] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5071] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5071] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5071] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5071] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5070] exit_group(0)               = ?
[pid  5070] +++ exited with 0 +++
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5070, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=52 /* 0.52 s */} ---
[pid  5064] umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5064] newfstatat(3, "",  <unfinished ...>
[pid  5071] read(-1,  <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5071] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5064] getdents64(3,  <unfinished ...>
[pid  5071] exit_group(0 <unfinished ...>
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5071] <... exit_group resumed>)   = ?
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5071] +++ exited with 0 +++
[pid  5064] newfstatat(AT_FDCWD, "./0/binderfs",  <unfinished ...>
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5071, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=43 /* 0.43 s */} ---
[pid  5064] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./0/binderfs" <unfinished ...>
[pid  5065] umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] <... unlink resumed>)       = 0
[pid  5065] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5064] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... openat resumed>)       = 3
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] unlink("./0/binderfs")      = 0
[   72.859569][ T5072] syz-executor246 (5072): drop_caches: 2
[   72.865715][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5065] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5072] <... sendfile resumed> => [671], 571) = 571
[   72.925277][ T5072] syz-executor246 (5072): drop_caches: 2
[   72.935431][ T5069] syz-executor246 (5069): drop_caches: 2
[pid  5072] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5072] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5072] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5072] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5072] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5072] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5072] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[   72.984054][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5072] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5069] <... sendfile resumed> => [671], 571) = 571
[pid  5072] exit_group(0)               = ?
[pid  5072] +++ exited with 0 +++
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5072, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=58 /* 0.58 s */} ---
[pid  5069] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5066] umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5069] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5069] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5069] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5069] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5069] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5069] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5069] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5069] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5069] exit_group(0)               = ?
[pid  5069] +++ exited with 0 +++
[pid  5066] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5069, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=57 /* 0.57 s */} ---
[pid  5066] <... openat resumed>)       = 3
[pid  5063] umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5063] <... openat resumed>)       = 3
[   73.026605][ T5069] syz-executor246 (5069): drop_caches: 2
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5066] umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] newfstatat(AT_FDCWD, "./0/binderfs",  <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] newfstatat(AT_FDCWD, "./0/binderfs",  <unfinished ...>
[pid  5066] unlink("./0/binderfs" <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] <... unlink resumed>)       = 0
[pid  5063] unlink("./0/binderfs" <unfinished ...>
[pid  5066] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... unlink resumed>)       = 0
[pid  5063] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  5062] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./0/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./0/file0")          = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./0")                = 0
[   73.173392][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   73.173411][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5062] mkdir("./1", 0777)          = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3)                    = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5128
./strace-static-x86_64: Process 5128 attached
[pid  5128] set_robust_list(0x55555697c760, 24) = 0
[pid  5128] chdir("./1")                = 0
[pid  5128] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5128] setpgid(0, 0)               = 0
[pid  5128] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] <... umount2 resumed>)      = 0
[pid  5128] write(3, "1000", 4)         = 4
[pid  5128] close(3)                    = 0
[pid  5128] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5128] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5067] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./0/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./0/file0")          = 0
[pid  5128] <... memfd_create resumed>) = 3
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5128] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5128] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./0")                = 0
[pid  5064] <... umount2 resumed>)      = 0
[pid  5067] mkdir("./1", 0777)          = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5064] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./0/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 5129
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./0/file0")          = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./0"./strace-static-x86_64: Process 5129 attached
)                = 0
[pid  5064] mkdir("./1", 0777 <unfinished ...>
[pid  5129] set_robust_list(0x55555697c760, 24) = 0
[pid  5064] <... mkdir resumed>)        = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5129] chdir("./1" <unfinished ...>
[pid  5064] <... openat resumed>)       = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3 <unfinished ...>
[pid  5129] <... chdir resumed>)        = 0
[pid  5064] <... close resumed>)        = 0
[pid  5129] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5129] <... prctl resumed>)        = 0
[pid  5129] setpgid(0, 0)               = 0
[pid  5129] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5129] write(3, "1000", 4)         = 4
[pid  5129] close(3)                    = 0
[pid  5129] symlink("/dev/binderfs", "./binderfs"./strace-static-x86_64: Process 5130 attached
) = 0
[pid  5130] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 5130
[pid  5130] <... set_robust_list resumed>) = 0
[pid  5130] chdir("./1" <unfinished ...>
[pid  5129] memfd_create("syzkaller", 0) = 3
[pid  5129] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5130] <... chdir resumed>)        = 0
[pid  5129] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5128] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5130] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5130] setpgid(0, 0 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  5130] <... setpgid resumed>)      = 0
[pid  5065] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5130] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5130] <... openat resumed>)       = 3
[pid  5065] newfstatat(AT_FDCWD, "./0/file0",  <unfinished ...>
[pid  5130] write(3, "1000", 4)         = 4
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5130] close(3)                    = 0
[pid  5130] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5065] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5130] <... symlink resumed>)      = 0
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5130] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5065] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5130] <... memfd_create resumed>) = 3
[pid  5065] <... openat resumed>)       = 4
[pid  5130] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5130] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5065] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./0/file0")          = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./0")                = 0
[pid  5065] mkdir("./1", 0777)          = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5131 attached
, child_tidptr=0x55555697c750) = 5131
[pid  5131] set_robust_list(0x55555697c760, 24) = 0
[pid  5131] chdir("./1")                = 0
[pid  5131] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5131] setpgid(0, 0)               = 0
[pid  5131] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5131] write(3, "1000", 4)         = 4
[pid  5131] close(3)                    = 0
[pid  5131] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5131] memfd_create("syzkaller", 0) = 3
[pid  5131] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./0/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] <... umount2 resumed>)      = 0
[pid  5063] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] newfstatat(AT_FDCWD, "./0/file0",  <unfinished ...>
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] close(4 <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] <... close resumed>)        = 0
[pid  5063] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5066] rmdir("./0/file0" <unfinished ...>
[pid  5063] <... openat resumed>)       = 4
[pid  5066] <... rmdir resumed>)        = 0
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5066] close(3 <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] <... close resumed>)        = 0
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4 <unfinished ...>
[pid  5066] rmdir("./0" <unfinished ...>
[pid  5129] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  5063] <... close resumed>)        = 0
[pid  5063] rmdir("./0/file0")          = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] mkdir("./1", 0777 <unfinished ...>
[pid  5063] close(3 <unfinished ...>
[pid  5066] <... mkdir resumed>)        = 0
[pid  5063] <... close resumed>)        = 0
[pid  5063] rmdir("./0" <unfinished ...>
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5063] <... rmdir resumed>)        = 0
[pid  5063] mkdir("./1", 0777 <unfinished ...>
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5063] <... mkdir resumed>)        = 0
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5066] close(3)                    = 0
[pid  5063] <... openat resumed>)       = 3
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5063] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 5132 attached
)       = -1 ENXIO (No such device or address)
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 5132
[pid  5063] close(3 <unfinished ...>
[pid  5132] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5132] <... set_robust_list resumed>) = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5132] chdir("./1")                = 0
[pid  5132] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5132] setpgid(0, 0 <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 5133
./strace-static-x86_64: Process 5133 attached
[pid  5133] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5132] <... setpgid resumed>)      = 0
[pid  5132] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5130] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5133] <... set_robust_list resumed>) = 0
[pid  5132] <... openat resumed>)       = 3
[pid  5133] chdir("./1" <unfinished ...>
[pid  5132] write(3, "1000", 4 <unfinished ...>
[pid  5133] <... chdir resumed>)        = 0
[pid  5133] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5132] <... write resumed>)        = 4
[pid  5133] <... prctl resumed>)        = 0
[pid  5133] setpgid(0, 0)               = 0
[pid  5133] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5133] write(3, "1000", 4 <unfinished ...>
[pid  5132] close(3 <unfinished ...>
[pid  5133] <... write resumed>)        = 4
[pid  5132] <... close resumed>)        = 0
[pid  5133] close(3)                    = 0
[pid  5133] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5133] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5132] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5133] <... memfd_create resumed>) = 3
[pid  5133] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5132] memfd_create("syzkaller", 0) = 3
[pid  5132] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5128] <... write resumed>)        = 16777216
[pid  5128] munmap(0x7f6d986f1000, 138412032) = 0
[pid  5128] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5131] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5128] <... openat resumed>)       = 4
[pid  5128] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5128] close(3)                    = 0
[pid  5128] mkdir("./file0", 0777)      = 0
[   74.074343][ T5128] loop0: detected capacity change from 0 to 32768
[   74.154053][ T5128] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[pid  5128] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5130] <... write resumed>)        = 16777216
[   74.233548][ T5128] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5130] munmap(0x7f6d986f1000, 138412032) = 0
[pid  5130] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid  5130] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5130] close(3)                    = 0
[pid  5130] mkdir("./file0", 0777)      = 0
[pid  5129] <... write resumed>)        = 16777216
[pid  5130] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[   74.333641][ T5130] loop2: detected capacity change from 0 to 32768
[pid  5129] munmap(0x7f6d986f1000, 138412032) = 0
[pid  5129] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[pid  5129] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5133] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[   74.378858][ T5128] XFS (loop0): Ending clean mount
[   74.397427][ T5128] XFS (loop0): Quotacheck needed: Please wait.
[   74.414836][ T5129] loop5: detected capacity change from 0 to 32768
[   74.421422][ T5130] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[pid  5132] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5129] close(3)                    = 0
[pid  5129] mkdir("./file0", 0777)      = 0
[   74.434512][ T5130] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5129] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5128] <... mount resumed>)        = 0
[pid  5128] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5128] chdir("./file0")            = 0
[pid  5128] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5128] close(4)                    = 0
[pid  5128] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5128] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[   74.480022][ T5128] XFS (loop0): Quotacheck: Done.
[   74.493879][ T5129] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[pid  5128] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5128] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5128] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5128] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5128] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5128] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5128] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5128] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5128] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5128] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5128] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5128] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5128] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5128] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5128] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5128] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5128] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5128] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[   74.535750][ T5129] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   74.610421][ T5128] syz-executor246 (5128): drop_caches: 2
[pid  5128] sendfile(5, 4, [100] <unfinished ...>
[pid  5133] <... write resumed>)        = 16777216
[pid  5133] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5128] <... sendfile resumed> => [671], 571) = 571
[pid  5128] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[   74.653126][ T5130] XFS (loop2): Ending clean mount
[   74.661281][ T5128] syz-executor246 (5128): drop_caches: 2
[pid  5128] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5128] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5133] <... munmap resumed>)       = 0
[pid  5131] <... write resumed>)        = 16777216
[pid  5128] ftruncate(-1, 33587199 <unfinished ...>
[pid  5133] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5131] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5128] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5128] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5128] open(NULL, O_RDONLY <unfinished ...>
[pid  5133] <... openat resumed>)       = 4
[pid  5128] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5128] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5128] read(-1,  <unfinished ...>
[pid  5133] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5128] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[   74.701603][ T5130] XFS (loop2): Quotacheck needed: Please wait.
[   74.704092][ T5129] XFS (loop5): Ending clean mount
[   74.718000][ T5129] XFS (loop5): Quotacheck needed: Please wait.
[pid  5128] exit_group(0 <unfinished ...>
[pid  5131] <... munmap resumed>)       = 0
[pid  5129] <... mount resumed>)        = 0
[pid  5128] <... exit_group resumed>)   = ?
[pid  5129] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5128] +++ exited with 0 +++
[pid  5129] <... openat resumed>)       = 3
[pid  5129] chdir("./file0" <unfinished ...>
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5128, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=35 /* 0.35 s */} ---
[pid  5129] <... chdir resumed>)        = 0
[pid  5129] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5129] close(4)                    = 0
[pid  5129] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5131] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5129] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5129] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5131] <... openat resumed>)       = 4
[pid  5129] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5133] <... ioctl resumed>)        = 0
[pid  5131] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5129] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5133] close(3 <unfinished ...>
[pid  5129] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5129] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5129] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5129] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5129] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5129] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5129] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5129] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5129] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5129] write(-1, NULL, 0 <unfinished ...>
[pid  5133] <... close resumed>)        = 0
[pid  5129] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5062] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5129] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5129] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5129] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  5133] mkdir("./file0", 0777 <unfinished ...>
[pid  5129] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  5129] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5133] <... mkdir resumed>)        = 0
[   74.753666][ T5129] XFS (loop5): Quotacheck: Done.
[   74.759102][ T5133] loop1: detected capacity change from 0 to 32768
[   74.783673][ T5131] loop3: detected capacity change from 0 to 32768
[pid  5129] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5133] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5129] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5129] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5129] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5129] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5131] <... ioctl resumed>)        = 0
[pid  5129] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5062] umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5131] close(3 <unfinished ...>
[pid  5129] <... openat resumed>)       = 5
[pid  5129] sendfile(5, 4, [100] <unfinished ...>
[pid  5131] <... close resumed>)        = 0
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./1/binderfs",  <unfinished ...>
[pid  5131] mkdir("./file0", 0777)      = 0
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5131] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5062] unlink("./1/binderfs" <unfinished ...>
[pid  5130] <... mount resumed>)        = 0
[pid  5062] <... unlink resumed>)       = 0
[pid  5062] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5130] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5130] chdir("./file0")            = 0
[pid  5130] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5130] close(4)                    = 0
[pid  5130] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5130] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5130] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5130] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5130] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5130] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5130] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5130] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[   74.799416][ T5130] XFS (loop2): Quotacheck: Done.
[   74.811717][ T5129] syz-executor246 (5129): drop_caches: 2
[   74.820639][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5130] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5130] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5130] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5130] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5130] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5130] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5130] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5130] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5130] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5130] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5130] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5130] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[   74.845002][ T5133] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[   74.868129][ T5129] syz-executor246 (5129): drop_caches: 2
[   74.880586][ T5130] syz-executor246 (5130): drop_caches: 2
[pid  5130] sendfile(5, 4, [100] => [671], 571) = 571
[pid  5129] <... sendfile resumed> => [671], 571) = 571
[pid  5130] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5129] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5130] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5130] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5129] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5130] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5129] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5130] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5129] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5130] ftruncate(-1, 33587199 <unfinished ...>
[pid  5129] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5130] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5130] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5130] open(NULL, O_RDONLY <unfinished ...>
[pid  5129] ftruncate(-1, 33587199 <unfinished ...>
[pid  5130] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5129] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5130] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5129] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5130] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5129] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5130] read(-1,  <unfinished ...>
[pid  5129] open(NULL, O_RDONLY <unfinished ...>
[pid  5130] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5129] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5130] exit_group(0 <unfinished ...>
[   74.887491][ T5133] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   74.908211][ T5131] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[   74.908584][ T5130] syz-executor246 (5130): drop_caches: 2
[pid  5129] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5130] <... exit_group resumed>)   = ?
[pid  5129] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5129] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5130] +++ exited with 0 +++
[pid  5129] exit_group(0 <unfinished ...>
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5130, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=30 /* 0.30 s */} ---
[pid  5129] <... exit_group resumed>)   = ?
[pid  5064] umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./1/binderfs")      = 0
[pid  5064] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5129] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5129, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=33 /* 0.33 s */} ---
[pid  5067] umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[   74.962548][ T5131] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   74.996237][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5067] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./1/binderfs")      = 0
[pid  5067] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5132] <... write resumed>)        = 16777216
[   75.016284][ T5133] XFS (loop1): Ending clean mount
[   75.025425][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   75.044062][ T5133] XFS (loop1): Quotacheck needed: Please wait.
[pid  5132] munmap(0x7f6d986f1000, 138412032) = 0
[   75.061903][ T5131] XFS (loop3): Ending clean mount
[   75.080376][ T5131] XFS (loop3): Quotacheck needed: Please wait.
[pid  5132] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  5132] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5132] close(3)                    = 0
[pid  5132] mkdir("./file0", 0777)      = 0
[pid  5132] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5133] <... mount resumed>)        = 0
[pid  5133] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5133] chdir("./file0")            = 0
[pid  5133] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5133] close(4)                    = 0
[pid  5133] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5133] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5133] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5133] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5133] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5133] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5133] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5133] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5133] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5133] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5133] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5133] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5133] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5133] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5133] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5133] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5133] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5133] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5133] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[   75.113588][ T5132] loop4: detected capacity change from 0 to 32768
[   75.140618][ T5133] XFS (loop1): Quotacheck: Done.
[pid  5133] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[   75.171032][ T5132] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[   75.189750][ T5131] XFS (loop3): Quotacheck: Done.
[   75.206046][ T5132] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5133] sendfile(5, 4, [100] <unfinished ...>
[pid  5131] <... mount resumed>)        = 0
[pid  5131] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5131] chdir("./file0")            = 0
[pid  5131] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5131] close(4)                    = 0
[pid  5131] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5131] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5131] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5131] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5131] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5131] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5131] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5131] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5131] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5131] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5131] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5131] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5131] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5131] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5067] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5131] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5131] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5067] newfstatat(AT_FDCWD, "./1/file0",  <unfinished ...>
[pid  5131] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5131] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5131] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5131] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5131] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5131] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[   75.264560][ T5133] syz-executor246 (5133): drop_caches: 2
[   75.271064][ T5133] syz-executor246 (5133): drop_caches: 2
[pid  5131] sendfile(5, 4, [100] <unfinished ...>
[pid  5067] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5133] <... sendfile resumed> => [671], 571) = 571
[   75.308983][ T5131] syz-executor246 (5131): drop_caches: 2
[   75.335208][ T5132] XFS (loop4): Ending clean mount
[   75.343099][ T5132] XFS (loop4): Quotacheck needed: Please wait.
[pid  5133] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5067] newfstatat(4, "",  <unfinished ...>
[pid  5133] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5133] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5131] <... sendfile resumed> => [671], 571) = 571
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5133] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5133] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5133] ftruncate(-1, 33587199 <unfinished ...>
[pid  5131] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5131] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5067] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5133] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5133] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5131] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5133] open(NULL, O_RDONLY <unfinished ...>
[pid  5131] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5067] close(4 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  5133] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... close resumed>)        = 0
[pid  5133] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5067] rmdir("./1/file0" <unfinished ...>
[pid  5133] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5133] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5067] <... rmdir resumed>)        = 0
[pid  5133] exit_group(0 <unfinished ...>
[pid  5131] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5133] <... exit_group resumed>)   = ?
[   75.357627][ T5131] syz-executor246 (5131): drop_caches: 2
[pid  5133] +++ exited with 0 +++
[pid  5131] ftruncate(-1, 33587199 <unfinished ...>
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5062] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5133, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=30 /* 0.30 s */} ---
[pid  5063] umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5132] <... mount resumed>)        = 0
[pid  5131] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] unlink("./1/binderfs" <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5132] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5131] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5067] close(3 <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./1/file0",  <unfinished ...>
[pid  5132] <... openat resumed>)       = 3
[pid  5131] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] <... close resumed>)        = 0
[pid  5063] <... unlink resumed>)       = 0
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5132] chdir("./file0" <unfinished ...>
[pid  5131] open(NULL, O_RDONLY <unfinished ...>
[pid  5067] rmdir("./1" <unfinished ...>
[pid  5062] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5132] <... chdir resumed>)        = 0
[pid  5131] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... rmdir resumed>)        = 0
[pid  5063] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5132] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5131] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5067] mkdir("./2", 0777 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5131] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5131] read(-1,  <unfinished ...>
[pid  5132] <... ioctl resumed>)        = 0
[pid  5131] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5067] <... mkdir resumed>)        = 0
[pid  5062] <... openat resumed>)       = 4
[pid  5132] close(4)                    = 0
[pid  5131] exit_group(0 <unfinished ...>
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  5132] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5131] <... exit_group resumed>)   = ?
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5132] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5131] +++ exited with 0 +++
[pid  5067] <... openat resumed>)       = 3
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5132] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5131, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=36 /* 0.36 s */} ---
[pid  5132] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5064] <... umount2 resumed>)      = 0
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5132] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5064] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5132] ftruncate(-1, 33587195 <unfinished ...>
[pid  5067] close(3 <unfinished ...>
[pid  5065] umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5132] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[   75.390812][ T5132] XFS (loop4): Quotacheck: Done.
[   75.408659][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5067] <... close resumed>)        = 0
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5132] read(-1,  <unfinished ...>
[pid  5065] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5064] newfstatat(AT_FDCWD, "./1/file0",  <unfinished ...>
[pid  5062] close(4 <unfinished ...>
[pid  5132] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5065] <... openat resumed>)       = 3
[pid  5132] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5132] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  5062] rmdir("./1/file0" <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  5132] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5132] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5132] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5064] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5132] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5065] umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5132] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5062] close(3 <unfinished ...>
[pid  5132] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5132] read(-1,  <unfinished ...>
[pid  5065] newfstatat(AT_FDCWD, "./1/binderfs",  <unfinished ...>
[pid  5132] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5064] <... openat resumed>)       = 4
./strace-static-x86_64: Process 5182 attached
[pid  5132] write(-1, NULL, 0 <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 5182
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] newfstatat(4, "",  <unfinished ...>
[pid  5062] rmdir("./1" <unfinished ...>
[pid  5182] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5132] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5065] unlink("./1/binderfs" <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5132] write(-1, NULL, 0 <unfinished ...>
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  5182] <... set_robust_list resumed>) = 0
[pid  5132] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5065] <... unlink resumed>)       = 0
[pid  5064] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] mkdir("./2", 0777 <unfinished ...>
[pid  5182] chdir("./2" <unfinished ...>
[pid  5132] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5065] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5182] <... chdir resumed>)        = 0
[pid  5132] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5062] <... mkdir resumed>)        = 0
[pid  5182] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5132] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5064] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5182] <... prctl resumed>)        = 0
[pid  5132] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./1/file0" <unfinished ...>
[pid  5182] setpgid(0, 0 <unfinished ...>
[pid  5132] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5064] <... rmdir resumed>)        = 0
[pid  5062] <... openat resumed>)       = 3
[pid  5132] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5132] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5182] <... setpgid resumed>)      = 0
[pid  5132] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5182] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5132] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5132] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5064] close(3 <unfinished ...>
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5182] <... openat resumed>)       = 3
[pid  5132] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5062] close(3 <unfinished ...>
[pid  5132] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5064] <... close resumed>)        = 0
[pid  5062] <... close resumed>)        = 0
[pid  5132] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5064] rmdir("./1" <unfinished ...>
[   75.491466][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5182] write(3, "1000", 4 <unfinished ...>
[pid  5132] <... openat resumed>)       = 4
[pid  5064] <... rmdir resumed>)        = 0
./strace-static-x86_64: Process 5183 attached
[pid  5182] <... write resumed>)        = 4
[pid  5132] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5064] mkdir("./2", 0777 <unfinished ...>
[pid  5183] set_robust_list(0x55555697c760, 24) = 0
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 5183
[pid  5183] chdir("./2")                = 0
[pid  5064] <... mkdir resumed>)        = 0
[pid  5183] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5183] setpgid(0, 0)               = 0
[pid  5183] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5182] close(3 <unfinished ...>
[pid  5132] <... openat resumed>)       = 5
[pid  5183] <... openat resumed>)       = 3
[pid  5183] write(3, "1000", 4 <unfinished ...>
[pid  5182] <... close resumed>)        = 0
[pid  5132] sendfile(5, 4, [100] <unfinished ...>
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5183] <... write resumed>)        = 4
[pid  5183] close(3 <unfinished ...>
[pid  5182] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5064] <... openat resumed>)       = 3
[pid  5182] <... symlink resumed>)      = 0
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5184 attached
 <unfinished ...>
[pid  5182] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5184] set_robust_list(0x55555697c760, 24) = 0
[pid  5182] <... memfd_create resumed>) = 3
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 5184
[pid  5184] chdir("./2" <unfinished ...>
[pid  5182] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5184] <... chdir resumed>)        = 0
[pid  5182] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5184] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5183] <... close resumed>)        = 0
[pid  5184] setpgid(0, 0)               = 0
[pid  5184] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5184] write(3, "1000", 4)         = 4
[pid  5184] close(3)                    = 0
[pid  5183] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5184] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5183] <... symlink resumed>)      = 0
[pid  5184] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5183] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5184] <... memfd_create resumed>) = 3
[pid  5184] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5183] <... memfd_create resumed>) = 3
[pid  5183] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[   75.616029][ T5132] syz-executor246 (5132): drop_caches: 2
[   75.622489][ T5132] syz-executor246 (5132): drop_caches: 2
[pid  5132] <... sendfile resumed> => [671], 571) = 571
[pid  5132] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5132] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5132] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5132] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5132] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5132] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5132] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5132] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5132] exit_group(0)               = ?
[pid  5132] +++ exited with 0 +++
[pid  5063] <... umount2 resumed>)      = 0
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5132, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=32 /* 0.32 s */} ---
[pid  5066] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5066] umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  5063] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] newfstatat(AT_FDCWD, "./1/file0",  <unfinished ...>
[pid  5066] umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] unlink("./1/binderfs" <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] <... unlink resumed>)       = 0
[pid  5066] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4)                    = 0
[pid  5063] rmdir("./1/file0")          = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3)                    = 0
[pid  5063] rmdir("./1")                = 0
[pid  5063] mkdir("./2", 0777)          = 0
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5063] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5063] close(3)                    = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5185
./strace-static-x86_64: Process 5185 attached
[   75.773385][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5185] set_robust_list(0x55555697c760, 24) = 0
[pid  5185] chdir("./2")                = 0
[pid  5185] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5185] setpgid(0, 0)               = 0
[pid  5185] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5185] write(3, "1000", 4)         = 4
[pid  5185] close(3)                    = 0
[pid  5185] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5185] memfd_create("syzkaller", 0) = 3
[pid  5185] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  5185] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5065] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./1/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./1/file0" <unfinished ...>
[pid  5183] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5065] <... rmdir resumed>)        = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./1")                = 0
[pid  5065] mkdir("./2", 0777)          = 0
[pid  5182] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5186 attached
 <unfinished ...>
[pid  5186] set_robust_list(0x55555697c760, 24) = 0
[pid  5186] chdir("./2" <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 5186
[pid  5186] <... chdir resumed>)        = 0
[pid  5186] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5184] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5186] setpgid(0, 0)               = 0
[pid  5186] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5186] write(3, "1000", 4)         = 4
[pid  5186] close(3)                    = 0
[pid  5186] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5186] memfd_create("syzkaller", 0) = 3
[pid  5186] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./1/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./1/file0")          = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./1")                = 0
[pid  5066] mkdir("./2", 0777)          = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] close(3 <unfinished ...>
[pid  5185] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5187
./strace-static-x86_64: Process 5187 attached
[pid  5187] set_robust_list(0x55555697c760, 24) = 0
[pid  5187] chdir("./2")                = 0
[pid  5187] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5187] setpgid(0, 0)               = 0
[pid  5187] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5187] write(3, "1000", 4)         = 4
[pid  5187] close(3)                    = 0
[pid  5187] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5187] memfd_create("syzkaller", 0) = 3
[pid  5187] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5186] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5183] <... write resumed>)        = 16777216
[pid  5184] <... write resumed>)        = 16777216
[pid  5182] <... write resumed>)        = 16777216
[pid  5183] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5182] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5184] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5183] <... munmap resumed>)       = 0
[pid  5184] <... munmap resumed>)       = 0
[pid  5183] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5183] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5184] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid  5184] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5183] close(3)                    = 0
[pid  5182] <... munmap resumed>)       = 0
[pid  5183] mkdir("./file0", 0777)      = 0
[pid  5183] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5182] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[   76.583097][   T27] cfg80211: failed to load regulatory.db
[   76.595560][ T5183] loop0: detected capacity change from 0 to 32768
[   76.607566][ T5184] loop2: detected capacity change from 0 to 32768
[pid  5182] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5184] <... ioctl resumed>)        = 0
[pid  5184] close(3)                    = 0
[pid  5184] mkdir("./file0", 0777 <unfinished ...>
[pid  5182] <... ioctl resumed>)        = 0
[pid  5184] <... mkdir resumed>)        = 0
[pid  5184] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5182] close(3)                    = 0
[   76.631138][ T5182] loop5: detected capacity change from 0 to 32768
[pid  5182] mkdir("./file0", 0777)      = 0
[pid  5182] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[   76.666900][ T5183] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[   76.680178][ T5182] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[   76.680256][ T5184] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[   76.698430][ T5183] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   76.725134][ T5182] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   76.737071][ T5184] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   76.821293][ T5183] XFS (loop0): Ending clean mount
[   76.825598][ T5184] XFS (loop2): Ending clean mount
[   76.837274][ T5183] XFS (loop0): Quotacheck needed: Please wait.
[   76.853063][ T5182] XFS (loop5): Ending clean mount
[pid  5187] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5185] <... write resumed>)        = 16777216
[pid  5185] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5183] <... mount resumed>)        = 0
[   76.867255][ T5184] XFS (loop2): Quotacheck needed: Please wait.
[   76.879044][ T5182] XFS (loop5): Quotacheck needed: Please wait.
[   76.903922][ T5183] XFS (loop0): Quotacheck: Done.
[pid  5183] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5185] <... munmap resumed>)       = 0
[pid  5183] <... openat resumed>)       = 3
[pid  5185] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5183] chdir("./file0" <unfinished ...>
[pid  5186] <... write resumed>)        = 16777216
[pid  5185] <... openat resumed>)       = 4
[pid  5184] <... mount resumed>)        = 0
[pid  5183] <... chdir resumed>)        = 0
[pid  5185] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[   76.926226][ T5184] XFS (loop2): Quotacheck: Done.
[pid  5184] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5186] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5185] <... ioctl resumed>)        = 0
[pid  5184] <... openat resumed>)       = 3
[pid  5183] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5183] close(4 <unfinished ...>
[pid  5185] close(3 <unfinished ...>
[pid  5184] chdir("./file0" <unfinished ...>
[pid  5183] <... close resumed>)        = 0
[pid  5182] <... mount resumed>)        = 0
[pid  5185] <... close resumed>)        = 0
[pid  5184] <... chdir resumed>)        = 0
[pid  5183] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5185] mkdir("./file0", 0777 <unfinished ...>
[pid  5184] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5183] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5186] <... munmap resumed>)       = 0
[pid  5185] <... mkdir resumed>)        = 0
[pid  5184] <... ioctl resumed>)        = 0
[pid  5183] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5182] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5184] close(4 <unfinished ...>
[pid  5183] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5183] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5183] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5183] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5183] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5183] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5183] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5183] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5183] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5183] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5183] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5183] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5184] <... close resumed>)        = 0
[pid  5185] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5184] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5183] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5182] <... openat resumed>)       = 3
[pid  5184] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5183] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5182] chdir("./file0" <unfinished ...>
[pid  5184] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5183] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5182] <... chdir resumed>)        = 0
[pid  5184] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5183] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5182] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5184] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5183] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5182] <... ioctl resumed>)        = 0
[pid  5184] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5183] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5184] ftruncate(-1, 33587195 <unfinished ...>
[pid  5183] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5182] close(4 <unfinished ...>
[pid  5184] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5183] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5182] <... close resumed>)        = 0
[pid  5184] read(-1,  <unfinished ...>
[pid  5183] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5182] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5184] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5183] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5182] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5184] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5183] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5182] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5184] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5183] <... openat resumed>)       = 4
[pid  5182] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5184] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5183] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5182] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5184] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5183] <... openat resumed>)       = 5
[pid  5186] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5184] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5183] sendfile(5, 4, [100] <unfinished ...>
[pid  5182] <... open resumed>)         = -1 EFAULT (Bad address)
[   76.947062][ T5185] loop1: detected capacity change from 0 to 32768
[   76.954423][ T5182] XFS (loop5): Quotacheck: Done.
[pid  5186] <... openat resumed>)       = 4
[pid  5184] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5182] ftruncate(-1, 33587195 <unfinished ...>
[pid  5186] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5184] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5182] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5184] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5182] read(-1,  <unfinished ...>
[pid  5184] read(-1,  <unfinished ...>
[pid  5182] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5184] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5182] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5184] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5182] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5184] write(-1, NULL, 0 <unfinished ...>
[pid  5182] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5186] close(3 <unfinished ...>
[pid  5184] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5182] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5184] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5182] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5184] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5186] <... close resumed>)        = 0
[pid  5182] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[   77.013963][ T5186] loop3: detected capacity change from 0 to 32768
[   77.045015][ T5185] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[pid  5186] mkdir("./file0", 0777 <unfinished ...>
[pid  5184] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5182] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5184] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5182] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5186] <... mkdir resumed>)        = 0
[pid  5182] read(-1,  <unfinished ...>
[pid  5184] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5182] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5184] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5182] write(-1, NULL, 0 <unfinished ...>
[pid  5186] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5184] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5182] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5184] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5182] write(-1, NULL, 0 <unfinished ...>
[pid  5184] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5182] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5184] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5182] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5184] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5182] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5184] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5182] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5184] <... openat resumed>)       = 4
[pid  5184] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5182] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5184] <... openat resumed>)       = 5
[pid  5182] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5184] sendfile(5, 4, [100] <unfinished ...>
[pid  5182] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5182] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5182] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5184] <... sendfile resumed> => [671], 571) = 571
[pid  5183] <... sendfile resumed> => [671], 571) = 571
[pid  5182] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5182] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5182] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5182] sendfile(5, 4, [100] <unfinished ...>
[pid  5184] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5183] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5184] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[   77.063071][ T5185] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   77.069518][ T5183] syz-executor246 (5183): drop_caches: 2
[   77.091414][ T5184] syz-executor246 (5184): drop_caches: 2
[   77.096285][ T5183] syz-executor246 (5183): drop_caches: 2
[   77.107225][ T5184] syz-executor246 (5184): drop_caches: 2
[pid  5183] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5184] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5183] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5183] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5184] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5183] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5184] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5183] ftruncate(-1, 33587199 <unfinished ...>
[pid  5184] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5184] ftruncate(-1, 33587199 <unfinished ...>
[pid  5183] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5184] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5183] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5184] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5183] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5184] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5183] open(NULL, O_RDONLY <unfinished ...>
[pid  5184] open(NULL, O_RDONLY <unfinished ...>
[pid  5183] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5184] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5183] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5184] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5183] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5184] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5183] read(-1,  <unfinished ...>
[pid  5184] read(-1,  <unfinished ...>
[pid  5183] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5184] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5183] exit_group(0 <unfinished ...>
[pid  5184] exit_group(0 <unfinished ...>
[pid  5183] <... exit_group resumed>)   = ?
[pid  5183] +++ exited with 0 +++
[pid  5184] <... exit_group resumed>)   = ?
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5183, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=26 /* 0.26 s */} ---
[pid  5184] +++ exited with 0 +++
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5184, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=39 /* 0.39 s */} ---
[pid  5062] umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] <... restart_syscall resumed>) = 0
[pid  5062] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5182] <... sendfile resumed> => [671], 571) = 571
[pid  5064] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./2/binderfs",  <unfinished ...>
[pid  5182] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5064] <... openat resumed>)       = 3
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5182] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5062] unlink("./2/binderfs" <unfinished ...>
[pid  5182] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5064] newfstatat(3, "",  <unfinished ...>
[pid  5182] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] <... unlink resumed>)       = 0
[pid  5182] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5182] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5182] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[   77.117910][ T5182] syz-executor246 (5182): drop_caches: 2
[   77.129591][ T5186] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[   77.150761][ T5186] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   77.161144][ T5182] syz-executor246 (5182): drop_caches: 2
[pid  5064] getdents64(3,  <unfinished ...>
[pid  5182] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5182] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5182] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5182] exit_group(0)               = ?
[pid  5182] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5182, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=35 /* 0.35 s */} ---
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5064] newfstatat(AT_FDCWD, "./2/binderfs",  <unfinished ...>
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] unlink("./2/binderfs" <unfinished ...>
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5064] <... unlink resumed>)       = 0
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./2/binderfs")      = 0
[   77.181624][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   77.207932][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5067] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5187] <... write resumed>)        = 16777216
[   77.255175][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   77.256212][ T5185] XFS (loop1): Ending clean mount
[   77.275049][ T5186] XFS (loop3): Ending clean mount
[pid  5187] munmap(0x7f6d986f1000, 138412032) = 0
[pid  5187] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  5187] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5187] close(3)                    = 0
[pid  5187] mkdir("./file0", 0777)      = 0
[   77.298098][ T5185] XFS (loop1): Quotacheck needed: Please wait.
[   77.311312][ T5187] loop4: detected capacity change from 0 to 32768
[   77.320017][ T5186] XFS (loop3): Quotacheck needed: Please wait.
[   77.402280][ T5185] XFS (loop1): Quotacheck: Done.
[pid  5187] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5185] <... mount resumed>)        = 0
[pid  5185] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5185] chdir("./file0")            = 0
[pid  5185] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5185] close(4)                    = 0
[pid  5185] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5185] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5185] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5186] <... mount resumed>)        = 0
[pid  5185] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5185] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5185] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5185] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5185] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5185] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5185] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5185] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5186] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5185] write(-1, NULL, 0 <unfinished ...>
[pid  5186] <... openat resumed>)       = 3
[pid  5185] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5186] chdir("./file0" <unfinished ...>
[pid  5185] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5186] <... chdir resumed>)        = 0
[pid  5185] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5185] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5186] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5185] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[   77.423919][ T5187] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[   77.443080][ T5187] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   77.453078][ T5186] XFS (loop3): Quotacheck: Done.
[pid  5186] <... ioctl resumed>)        = 0
[pid  5185] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5186] close(4 <unfinished ...>
[pid  5185] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5186] <... close resumed>)        = 0
[pid  5185] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5064] <... umount2 resumed>)      = 0
[pid  5186] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5185] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5064] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5186] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5185] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5186] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5185] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./2/file0",  <unfinished ...>
[pid  5186] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5185] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5186] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5185] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5186] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5185] <... openat resumed>)       = 4
[pid  5064] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5186] ftruncate(-1, 33587195 <unfinished ...>
[pid  5185] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5186] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5185] <... openat resumed>)       = 5
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5186] read(-1,  <unfinished ...>
[pid  5185] sendfile(5, 4, [100] <unfinished ...>
[pid  5186] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5064] openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  5186] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5064] <... openat resumed>)       = 4
[pid  5062] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5186] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5186] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5064] newfstatat(4, "",  <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5186] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] newfstatat(AT_FDCWD, "./2/file0",  <unfinished ...>
[pid  5186] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5186] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5186] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5064] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5186] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5186] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5186] write(-1, NULL, 0 <unfinished ...>
[pid  5062] <... openat resumed>)       = 4
[pid  5186] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5064] close(4 <unfinished ...>
[pid  5186] write(-1, NULL, 0 <unfinished ...>
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  5186] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5186] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[   77.539787][ T5185] syz-executor246 (5185): drop_caches: 2
[pid  5186] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5064] <... close resumed>)        = 0
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5064] rmdir("./2/file0" <unfinished ...>
[pid  5186] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5186] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5067] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... rmdir resumed>)        = 0
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5186] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5186] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] close(4 <unfinished ...>
[pid  5186] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5186] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5186] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5186] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] rmdir("./2/file0" <unfinished ...>
[pid  5186] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5067] newfstatat(AT_FDCWD, "./2/file0",  <unfinished ...>
[pid  5064] getdents64(3,  <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5064] close(3 <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] <... close resumed>)        = 0
[pid  5062] close(3 <unfinished ...>
[pid  5064] rmdir("./2" <unfinished ...>
[pid  5067] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5186] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5185] <... sendfile resumed> => [671], 571) = 571
[pid  5064] <... rmdir resumed>)        = 0
[pid  5186] <... openat resumed>)       = 5
[pid  5186] sendfile(5, 4, [100] <unfinished ...>
[pid  5062] rmdir("./2" <unfinished ...>
[pid  5064] mkdir("./3", 0777 <unfinished ...>
[pid  5185] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5185] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5067] openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5185] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5185] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  5185] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5185] ftruncate(-1, 33587199 <unfinished ...>
[pid  5067] <... openat resumed>)       = 4
[pid  5185] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5185] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5185] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[   77.584389][ T5187] XFS (loop4): Ending clean mount
[   77.600597][ T5185] syz-executor246 (5185): drop_caches: 2
[   77.612122][ T5187] XFS (loop4): Quotacheck needed: Please wait.
[pid  5185] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5185] read(-1,  <unfinished ...>
[pid  5067] newfstatat(4, "",  <unfinished ...>
[pid  5064] <... mkdir resumed>)        = 0
[pid  5062] mkdir("./3", 0777 <unfinished ...>
[pid  5185] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5185] exit_group(0)               = ?
[pid  5186] <... sendfile resumed> => [671], 571) = 571
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5062] <... mkdir resumed>)        = 0
[pid  5186] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5185] +++ exited with 0 +++
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5064] <... openat resumed>)       = 3
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5185, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=29 /* 0.29 s */} ---
[pid  5064] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  5186] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5067] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5064] close(3 <unfinished ...>
[pid  5063] umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... close resumed>)        = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5067] close(4./strace-static-x86_64: Process 5236 attached
)                    = 0
[pid  5063] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5067] rmdir("./2/file0" <unfinished ...>
[pid  5236] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5186] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 5236
[pid  5236] <... set_robust_list resumed>) = 0
[pid  5236] chdir("./3" <unfinished ...>
[pid  5186] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... rmdir resumed>)        = 0
[pid  5062] close(3 <unfinished ...>
[pid  5236] <... chdir resumed>)        = 0
[pid  5186] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5186] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5236] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5063] <... openat resumed>)       = 3
[pid  5236] <... prctl resumed>)        = 0
[pid  5236] setpgid(0, 0)               = 0
[pid  5236] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5237 attached
) = 3
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 5237
[pid  5237] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5236] write(3, "1000", 4 <unfinished ...>
[pid  5186] ftruncate(-1, 33587199 <unfinished ...>
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  5237] <... set_robust_list resumed>) = 0
[pid  5236] <... write resumed>)        = 4
[pid  5186] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5067] close(3 <unfinished ...>
[pid  5237] chdir("./3" <unfinished ...>
[pid  5236] close(3 <unfinished ...>
[pid  5186] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5186] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] rmdir("./2" <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5186] open(NULL, O_RDONLY <unfinished ...>
[pid  5237] <... chdir resumed>)        = 0
[pid  5236] <... close resumed>)        = 0
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5237] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5236] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5237] <... prctl resumed>)        = 0
[pid  5186] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... rmdir resumed>)        = 0
[pid  5063] umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5237] setpgid(0, 0 <unfinished ...>
[pid  5236] <... symlink resumed>)      = 0
[pid  5186] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5067] mkdir("./3", 0777 <unfinished ...>
[pid  5237] <... setpgid resumed>)      = 0
[pid  5236] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5186] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5237] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5186] read(-1,  <unfinished ...>
[pid  5237] <... openat resumed>)       = 3
[pid  5067] <... mkdir resumed>)        = 0
[pid  5237] write(3, "1000", 4 <unfinished ...>
[pid  5236] <... memfd_create resumed>) = 3
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5237] <... write resumed>)        = 4
[pid  5236] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5237] close(3 <unfinished ...>
[pid  5236] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5067] <... openat resumed>)       = 3
[pid  5237] <... close resumed>)        = 0
[pid  5186] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5063] newfstatat(AT_FDCWD, "./2/binderfs",  <unfinished ...>
[pid  5237] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5186] exit_group(0 <unfinished ...>
[pid  5063] unlink("./2/binderfs" <unfinished ...>
[   77.651806][ T5186] syz-executor246 (5186): drop_caches: 2
[   77.659074][ T5186] syz-executor246 (5186): drop_caches: 2
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5237] <... symlink resumed>)      = 0
[pid  5237] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5187] <... mount resumed>)        = 0
[pid  5186] <... exit_group resumed>)   = ?
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5063] <... unlink resumed>)       = 0
[pid  5237] <... memfd_create resumed>) = 3
[pid  5237] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5187] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5186] +++ exited with 0 +++
[pid  5067] close(3 <unfinished ...>
[pid  5063] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5186, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=28 /* 0.28 s */} ---
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5187] <... openat resumed>)       = 3
[pid  5065] umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  5187] chdir("./file0" <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
./strace-static-x86_64: Process 5238 attached
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] unlink("./2/binderfs" <unfinished ...>
[pid  5238] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5065] <... unlink resumed>)       = 0
[pid  5238] <... set_robust_list resumed>) = 0
[pid  5065] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5238] chdir("./3" <unfinished ...>
[pid  5187] <... chdir resumed>)        = 0
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 5238
[pid  5187] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5238] <... chdir resumed>)        = 0
[pid  5187] close(4)                    = 0
[pid  5187] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5187] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5238] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5238] setpgid(0, 0)               = 0
[pid  5238] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5238] write(3, "1000", 4)         = 4
[pid  5187] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5187] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5238] close(3)                    = 0
[pid  5238] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5187] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5187] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5187] read(-1,  <unfinished ...>
[pid  5238] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5187] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5238] <... memfd_create resumed>) = 3
[pid  5187] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5187] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5187] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5238] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5187] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5238] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5187] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5187] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[   77.698839][ T5187] XFS (loop4): Quotacheck: Done.
[   77.712473][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   77.721637][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5187] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5187] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5187] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5187] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5187] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5187] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5187] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5187] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5187] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5187] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[   77.906249][ T5187] syz-executor246 (5187): drop_caches: 2
[   77.912699][ T5187] syz-executor246 (5187): drop_caches: 2
[pid  5187] sendfile(5, 4, [100] => [671], 571) = 571
[pid  5187] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5187] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5187] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5187] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5187] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5187] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5187] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5187] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5187] exit_group(0)               = ?
[pid  5187] +++ exited with 0 +++
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5187, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} ---
[pid  5066] umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] unlink("./2/binderfs" <unfinished ...>
[pid  5236] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5066] <... unlink resumed>)       = 0
[pid  5063] <... umount2 resumed>)      = 0
[pid  5066] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5238] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./2/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4)                    = 0
[pid  5063] rmdir("./2/file0" <unfinished ...>
[pid  5237] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  5063] <... close resumed>)        = 0
[pid  5063] rmdir("./2")                = 0
[pid  5063] mkdir("./3", 0777)          = 0
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[   78.115805][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5065] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] close(3 <unfinished ...>
[pid  5065] newfstatat(AT_FDCWD, "./2/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] <... close resumed>)        = 0
[pid  5065] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./2/file0")          = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./2")                = 0
[pid  5065] mkdir("./3", 0777 <unfinished ...>
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5065] <... mkdir resumed>)        = 0
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 5239
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR./strace-static-x86_64: Process 5239 attached
) = 3
[pid  5239] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5065] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5239] <... set_robust_list resumed>) = 0
[pid  5065] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5239] chdir("./3" <unfinished ...>
[pid  5065] close(3)                    = 0
[pid  5239] <... chdir resumed>)        = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5240
[pid  5239] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5239] setpgid(0, 0)               = 0
[pid  5239] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
./strace-static-x86_64: Process 5240 attached
[pid  5239] write(3, "1000", 4 <unfinished ...>
[pid  5240] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5239] <... write resumed>)        = 4
[pid  5240] <... set_robust_list resumed>) = 0
[pid  5239] close(3 <unfinished ...>
[pid  5240] chdir("./3" <unfinished ...>
[pid  5239] <... close resumed>)        = 0
[pid  5239] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5240] <... chdir resumed>)        = 0
[pid  5239] <... symlink resumed>)      = 0
[pid  5239] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5240] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5239] <... memfd_create resumed>) = 3
[pid  5240] setpgid(0, 0 <unfinished ...>
[pid  5239] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5240] <... setpgid resumed>)      = 0
[pid  5239] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5240] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5240] write(3, "1000", 4)         = 4
[pid  5240] close(3)                    = 0
[pid  5240] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5240] memfd_create("syzkaller", 0) = 3
[pid  5240] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./2/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5239] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5237] <... write resumed>)        = 16777216
[pid  5236] <... write resumed>)        = 16777216
[pid  5066] close(4 <unfinished ...>
[pid  5237] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  5066] rmdir("./2/file0" <unfinished ...>
[pid  5238] <... write resumed>)        = 16777216
[pid  5236] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  5238] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./2")                = 0
[pid  5066] mkdir("./3", 0777 <unfinished ...>
[pid  5240] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5066] <... mkdir resumed>)        = 0
[pid  5237] <... munmap resumed>)       = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5237] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5237] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  5238] <... munmap resumed>)       = 0
[pid  5236] <... munmap resumed>)       = 0
[pid  5066] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5236] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5066] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5066] close(3 <unfinished ...>
[pid  5237] <... ioctl resumed>)        = 0
[pid  5066] <... close resumed>)        = 0
[pid  5237] close(3 <unfinished ...>
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5238] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5236] <... openat resumed>)       = 4
[pid  5238] <... openat resumed>)       = 4
[pid  5236] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5238] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5236] <... ioctl resumed>)        = 0
./strace-static-x86_64: Process 5241 attached
[pid  5238] <... ioctl resumed>)        = 0
[pid  5237] <... close resumed>)        = 0
[pid  5241] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5237] mkdir("./file0", 0777 <unfinished ...>
[pid  5241] <... set_robust_list resumed>) = 0
[pid  5241] chdir("./3")                = 0
[pid  5237] <... mkdir resumed>)        = 0
[pid  5241] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5237] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5241] <... prctl resumed>)        = 0
[pid  5241] setpgid(0, 0)               = 0
[pid  5236] close(3 <unfinished ...>
[pid  5241] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 5241
[pid  5241] <... openat resumed>)       = 3
[pid  5241] write(3, "1000", 4)         = 4
[pid  5236] <... close resumed>)        = 0
[pid  5241] close(3 <unfinished ...>
[pid  5236] mkdir("./file0", 0777 <unfinished ...>
[pid  5241] <... close resumed>)        = 0
[pid  5238] close(3 <unfinished ...>
[pid  5236] <... mkdir resumed>)        = 0
[pid  5241] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5238] <... close resumed>)        = 0
[pid  5241] <... symlink resumed>)      = 0
[pid  5238] mkdir("./file0", 0777 <unfinished ...>
[pid  5236] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5241] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5238] <... mkdir resumed>)        = 0
[pid  5241] <... memfd_create resumed>) = 3
[pid  5241] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[   78.669691][ T5237] loop0: detected capacity change from 0 to 32768
[   78.695293][ T5236] loop2: detected capacity change from 0 to 32768
[   78.703030][ T5238] loop5: detected capacity change from 0 to 32768
[pid  5238] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5241] <... mmap resumed>)         = 0x7f6d986f1000
[   78.754948][ T5237] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[   78.770457][ T5236] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[   78.780697][ T5237] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   78.783192][ T5238] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[   78.798715][ T5236] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   78.809432][ T5238] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   78.905116][ T5236] XFS (loop2): Ending clean mount
[   78.914042][ T5236] XFS (loop2): Quotacheck needed: Please wait.
[   78.926568][ T5238] XFS (loop5): Ending clean mount
[   78.936550][ T5236] XFS (loop2): Quotacheck: Done.
[pid  5236] <... mount resumed>)        = 0
[   78.952940][ T5237] XFS (loop0): Ending clean mount
[pid  5240] <... write resumed>)        = 16777216
[pid  5236] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5240] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5236] chdir("./file0")            = 0
[pid  5236] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5236] close(4)                    = 0
[pid  5236] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5236] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5236] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5236] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5236] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5236] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5236] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5236] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5236] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5236] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[   78.984604][ T5237] XFS (loop0): Quotacheck needed: Please wait.
[   78.991803][ T5238] XFS (loop5): Quotacheck needed: Please wait.
[pid  5236] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5236] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5236] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5241] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5240] <... munmap resumed>)       = 0
[pid  5236] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5236] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5236] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5240] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5236] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5240] <... openat resumed>)       = 4
[pid  5236] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5240] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5236] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5236] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5236] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5236] sendfile(5, 4, [100] <unfinished ...>
[pid  5240] <... ioctl resumed>)        = 0
[pid  5240] close(3 <unfinished ...>
[pid  5239] <... write resumed>)        = 16777216
[pid  5238] <... mount resumed>)        = 0
[pid  5240] <... close resumed>)        = 0
[pid  5240] mkdir("./file0", 0777)      = 0
[pid  5240] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5239] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[   79.062712][ T5240] loop3: detected capacity change from 0 to 32768
[   79.063355][ T5237] XFS (loop0): Quotacheck: Done.
[   79.083288][ T5238] XFS (loop5): Quotacheck: Done.
[pid  5238] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5239] <... munmap resumed>)       = 0
[pid  5238] <... openat resumed>)       = 3
[pid  5238] chdir("./file0")            = 0
[pid  5237] <... mount resumed>)        = 0
[pid  5238] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5237] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5238] <... ioctl resumed>)        = 0
[pid  5237] <... openat resumed>)       = 3
[pid  5238] close(4 <unfinished ...>
[pid  5237] chdir("./file0" <unfinished ...>
[pid  5238] <... close resumed>)        = 0
[pid  5237] <... chdir resumed>)        = 0
[pid  5238] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5237] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5238] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5237] <... ioctl resumed>)        = 0
[pid  5238] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5237] close(4 <unfinished ...>
[pid  5238] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5239] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid  5238] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5237] <... close resumed>)        = 0
[pid  5238] ftruncate(-1, 33587195 <unfinished ...>
[pid  5237] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5239] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5238] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5238] read(-1,  <unfinished ...>
[pid  5237] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5238] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5237] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5238] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5237] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5238] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5237] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5238] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5237] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5238] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5237] ftruncate(-1, 33587195 <unfinished ...>
[pid  5238] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5237] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5238] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5237] read(-1,  <unfinished ...>
[pid  5238] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5237] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5238] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5237] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5239] <... ioctl resumed>)        = 0
[pid  5238] read(-1,  <unfinished ...>
[pid  5237] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5239] close(3 <unfinished ...>
[pid  5238] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5237] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5239] <... close resumed>)        = 0
[pid  5238] write(-1, NULL, 0 <unfinished ...>
[pid  5237] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5239] mkdir("./file0", 0777 <unfinished ...>
[pid  5238] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5237] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5239] <... mkdir resumed>)        = 0
[pid  5238] write(-1, NULL, 0 <unfinished ...>
[pid  5237] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5238] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5237] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5238] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5237] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5238] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5237] read(-1,  <unfinished ...>
[pid  5239] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5238] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5237] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5238] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5237] write(-1, NULL, 0 <unfinished ...>
[pid  5238] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5237] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5238] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5237] write(-1, NULL, 0 <unfinished ...>
[pid  5238] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5237] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5238] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[   79.119705][ T5236] syz-executor246 (5236): drop_caches: 2
[   79.141767][ T5239] loop1: detected capacity change from 0 to 32768
[   79.153978][ T5240] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[pid  5237] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5238] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5237] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5238] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5237] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5238] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5237] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5238] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5237] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5238] <... openat resumed>)       = 4
[pid  5237] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5238] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5237] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5238] <... openat resumed>)       = 5
[pid  5237] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5238] sendfile(5, 4, [100] <unfinished ...>
[pid  5237] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[   79.197263][ T5240] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   79.218531][ T5236] syz-executor246 (5236): drop_caches: 2
[   79.241022][ T5238] syz-executor246 (5238): drop_caches: 2
[pid  5237] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5237] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5241] <... write resumed>)        = 16777216
[pid  5237] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5241] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5237] <... openat resumed>)       = 5
[pid  5236] <... sendfile resumed> => [671], 571) = 571
[pid  5237] sendfile(5, 4, [100] <unfinished ...>
[pid  5236] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5236] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5236] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5236] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5241] <... munmap resumed>)       = 0
[   79.253314][ T5239] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[   79.272580][ T5237] syz-executor246 (5237): drop_caches: 2
[   79.274593][ T5238] syz-executor246 (5238): drop_caches: 2
[pid  5238] <... sendfile resumed> => [671], 571) = 571
[pid  5236] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5241] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5238] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5236] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5241] <... openat resumed>)       = 4
[pid  5238] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5236] open(NULL, O_RDONLY <unfinished ...>
[pid  5241] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5238] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5236] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5238] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5236] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5238] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5236] read(-1,  <unfinished ...>
[pid  5238] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5236] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5238] ftruncate(-1, 33587199 <unfinished ...>
[pid  5236] exit_group(0)               = ?
[pid  5238] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5238] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5236] +++ exited with 0 +++
[pid  5238] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5236, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=36 /* 0.36 s */} ---
[pid  5238] open(NULL, O_RDONLY <unfinished ...>
[pid  5064] umount2("./3", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5238] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5064] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5238] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5064] <... openat resumed>)       = 3
[pid  5238] read(-1,  <unfinished ...>
[pid  5064] newfstatat(3, "",  <unfinished ...>
[pid  5238] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5241] <... ioctl resumed>)        = 0
[pid  5238] exit_group(0 <unfinished ...>
[pid  5237] <... sendfile resumed> => [671], 571) = 571
[pid  5064] getdents64(3,  <unfinished ...>
[pid  5241] close(3 <unfinished ...>
[pid  5238] <... exit_group resumed>)   = ?
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5241] <... close resumed>)        = 0
[pid  5238] +++ exited with 0 +++
[pid  5237] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5064] umount2("./3/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5241] mkdir("./file0", 0777 <unfinished ...>
[pid  5237] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5238, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=30 /* 0.30 s */} ---
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[   79.296301][ T5239] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   79.308737][ T5241] loop4: detected capacity change from 0 to 32768
[   79.317982][ T5237] syz-executor246 (5237): drop_caches: 2
[pid  5241] <... mkdir resumed>)        = 0
[pid  5241] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5064] newfstatat(AT_FDCWD, "./3/binderfs",  <unfinished ...>
[pid  5237] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5067] umount2("./3", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5237] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5237] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5067] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5237] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... openat resumed>)       = 3
[pid  5237] ftruncate(-1, 33587199 <unfinished ...>
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  5064] unlink("./3/binderfs" <unfinished ...>
[pid  5237] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] <... unlink resumed>)       = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5237] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5067] umount2("./3/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5237] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5237] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5067] newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./3/binderfs")      = 0
[pid  5067] umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5237] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[   79.353328][ T5240] XFS (loop3): Ending clean mount
[   79.369907][ T5240] XFS (loop3): Quotacheck needed: Please wait.
[   79.374903][ T5239] XFS (loop1): Ending clean mount
[   79.385201][ T5239] XFS (loop1): Quotacheck needed: Please wait.
[   79.392210][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5237] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5237] exit_group(0)               = ?
[pid  5237] +++ exited with 0 +++
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5237, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=30 /* 0.30 s */} ---
[pid  5239] <... mount resumed>)        = 0
[pid  5062] umount2("./3", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[   79.405855][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   79.439110][ T5239] XFS (loop1): Quotacheck: Done.
[   79.439575][ T5240] XFS (loop3): Quotacheck: Done.
[pid  5062] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5240] <... mount resumed>)        = 0
[pid  5239] chdir("./file0" <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  5240] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5239] <... chdir resumed>)        = 0
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5239] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5240] <... openat resumed>)       = 3
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5239] <... ioctl resumed>)        = 0
[pid  5240] chdir("./file0" <unfinished ...>
[pid  5239] close(4 <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5240] <... chdir resumed>)        = 0
[pid  5239] <... close resumed>)        = 0
[pid  5240] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5239] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5062] umount2("./3/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./3/binderfs",  <unfinished ...>
[pid  5240] <... ioctl resumed>)        = 0
[pid  5239] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5240] close(4 <unfinished ...>
[pid  5239] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5062] unlink("./3/binderfs" <unfinished ...>
[pid  5240] <... close resumed>)        = 0
[pid  5239] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5240] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[   79.452355][ T5241] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[pid  5239] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5240] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5239] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] <... unlink resumed>)       = 0
[pid  5240] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5239] ftruncate(-1, 33587195 <unfinished ...>
[pid  5240] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5239] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5062] umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5240] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5239] read(-1,  <unfinished ...>
[pid  5240] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5239] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5240] ftruncate(-1, 33587195 <unfinished ...>
[pid  5239] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5240] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5239] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5240] read(-1,  <unfinished ...>
[pid  5239] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5240] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5239] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5240] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5239] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5240] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5239] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5240] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5239] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5240] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5239] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5240] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5239] read(-1,  <unfinished ...>
[pid  5240] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5239] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5240] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5239] write(-1, NULL, 0 <unfinished ...>
[pid  5240] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5239] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5240] read(-1,  <unfinished ...>
[pid  5239] write(-1, NULL, 0 <unfinished ...>
[pid  5240] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5239] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5240] write(-1, NULL, 0 <unfinished ...>
[pid  5239] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5240] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5239] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5240] write(-1, NULL, 0 <unfinished ...>
[pid  5239] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5240] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5239] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5240] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5240] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5239] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5240] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5239] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5240] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5239] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5240] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5239] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5240] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5239] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5240] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5239] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5240] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5239] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5240] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5239] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5240] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5239] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5240] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5239] <... openat resumed>)       = 4
[pid  5240] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5239] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5239] sendfile(5, 4, [100] <unfinished ...>
[pid  5240] <... openat resumed>)       = 4
[pid  5240] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[   79.531213][ T5239] syz-executor246 (5239): drop_caches: 2
[   79.543429][ T5241] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   79.564729][ T5240] syz-executor246 (5240): drop_caches: 2
[pid  5240] sendfile(5, 4, [100] <unfinished ...>
[pid  5239] <... sendfile resumed> => [671], 571) = 571
[pid  5240] <... sendfile resumed> => [671], 571) = 571
[pid  5240] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5240] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5240] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5240] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5240] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5239] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5240] open(NULL, O_RDONLY <unfinished ...>
[pid  5239] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5240] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5239] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5240] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5239] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5240] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5239] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5240] read(-1,  <unfinished ...>
[pid  5239] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5240] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5240] exit_group(0 <unfinished ...>
[pid  5239] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5239] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5240] <... exit_group resumed>)   = ?
[pid  5239] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5239] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5239] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5240] +++ exited with 0 +++
[pid  5239] exit_group(0 <unfinished ...>
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5240, si_uid=0, si_status=0, si_utime=0, si_stime=36 /* 0.36 s */} ---
[   79.577302][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   79.584858][ T5239] syz-executor246 (5239): drop_caches: 2
[   79.594841][ T5240] syz-executor246 (5240): drop_caches: 2
[pid  5239] <... exit_group resumed>)   = ?
[pid  5239] +++ exited with 0 +++
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5239, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=38 /* 0.38 s */} ---
[pid  5065] umount2("./3", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... restart_syscall resumed>) = 0
[pid  5065] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  5063] umount2("./3", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] <... openat resumed>)       = 3
[pid  5065] umount2("./3/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] newfstatat(AT_FDCWD, "./3/binderfs",  <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] unlink("./3/binderfs" <unfinished ...>
[pid  5063] umount2("./3/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... unlink resumed>)       = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] unlink("./3/binderfs")      = 0
[   79.707610][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   79.716477][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   79.723442][ T5241] XFS (loop4): Ending clean mount
[   79.733510][ T5241] XFS (loop4): Quotacheck needed: Please wait.
[pid  5063] umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5067] umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5241] <... mount resumed>)        = 0
[pid  5067] newfstatat(AT_FDCWD, "./3/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[   79.789355][ T5241] XFS (loop4): Quotacheck: Done.
[pid  5067] umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5241] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5241] <... openat resumed>)       = 3
[pid  5241] chdir("./file0")            = 0
[pid  5241] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5241] close(4)                    = 0
[pid  5067] openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5241] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5241] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5067] <... openat resumed>)       = 4
[pid  5241] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5067] newfstatat(4, "",  <unfinished ...>
[pid  5241] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5241] ftruncate(-1, 33587195 <unfinished ...>
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5241] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5067] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5241] read(-1,  <unfinished ...>
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5241] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5067] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5241] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5067] close(4 <unfinished ...>
[pid  5241] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] <... close resumed>)        = 0
[pid  5241] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5067] rmdir("./3/file0" <unfinished ...>
[pid  5241] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5241] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  5241] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5241] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5067] <... rmdir resumed>)        = 0
[pid  5241] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5064] umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5241] read(-1,  <unfinished ...>
[pid  5067] close(3 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5241] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5241] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5067] <... close resumed>)        = 0
[pid  5064] newfstatat(AT_FDCWD, "./3/file0",  <unfinished ...>
[pid  5241] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5241] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5241] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5241] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5241] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5241] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5241] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5241] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5241] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5241] sendfile(5, 4, [100] <unfinished ...>
[pid  5067] rmdir("./3" <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... rmdir resumed>)        = 0
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] mkdir("./4", 0777 <unfinished ...>
[pid  5064] openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5067] <... mkdir resumed>)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5064] <... openat resumed>)       = 4
[pid  5067] <... openat resumed>)       = 3
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5067] close(3 <unfinished ...>
[pid  5064] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] <... close resumed>)        = 0
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5064] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
./strace-static-x86_64: Process 5290 attached
[pid  5064] close(4 <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 5290
[pid  5290] set_robust_list(0x55555697c760, 24) = 0
[pid  5064] <... close resumed>)        = 0
[pid  5064] rmdir("./3/file0" <unfinished ...>
[pid  5290] chdir("./4")                = 0
[pid  5064] <... rmdir resumed>)        = 0
[pid  5290] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[   79.887314][ T5241] syz-executor246 (5241): drop_caches: 2
[pid  5064] getdents64(3,  <unfinished ...>
[pid  5290] <... prctl resumed>)        = 0
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3 <unfinished ...>
[pid  5290] setpgid(0, 0 <unfinished ...>
[pid  5064] <... close resumed>)        = 0
[pid  5290] <... setpgid resumed>)      = 0
[pid  5064] rmdir("./3" <unfinished ...>
[pid  5290] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5064] <... rmdir resumed>)        = 0
[pid  5290] <... openat resumed>)       = 3
[pid  5064] mkdir("./4", 0777 <unfinished ...>
[pid  5290] write(3, "1000", 4)         = 4
[pid  5064] <... mkdir resumed>)        = 0
[pid  5290] close(3 <unfinished ...>
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5290] <... close resumed>)        = 0
[pid  5290] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5064] <... openat resumed>)       = 3
[pid  5290] <... symlink resumed>)      = 0
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5290] memfd_create("syzkaller", 0 <unfinished ...>
[   79.928863][ T5241] syz-executor246 (5241): drop_caches: 2
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5291 attached
 <unfinished ...>
[pid  5241] <... sendfile resumed> => [671], 571) = 571
[pid  5291] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 5291
[pid  5291] <... set_robust_list resumed>) = 0
[pid  5291] chdir("./4" <unfinished ...>
[pid  5241] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5291] <... chdir resumed>)        = 0
[pid  5291] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5241] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5241] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5291] <... prctl resumed>)        = 0
[pid  5241] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5290] <... memfd_create resumed>) = 3
[pid  5241] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5241] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5291] setpgid(0, 0 <unfinished ...>
[pid  5290] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5241] open(NULL, O_RDONLY <unfinished ...>
[pid  5290] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5241] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5241] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5241] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5241] exit_group(0)               = ?
[pid  5241] +++ exited with 0 +++
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5241, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=31 /* 0.31 s */} ---
[pid  5291] <... setpgid resumed>)      = 0
[pid  5066] umount2("./3", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5291] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5066] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  5291] <... openat resumed>)       = 3
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./3/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] unlink("./3/binderfs")      = 0
[pid  5066] umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5291] write(3, "1000", 4)         = 4
[pid  5291] close(3)                    = 0
[pid  5291] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5291] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  5291] <... memfd_create resumed>) = 3
[pid  5065] umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5291] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./3/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5291] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5065] umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] <... umount2 resumed>)      = 0
[pid  5065] openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... openat resumed>)       = 4
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(4, "",  <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./3/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] <... openat resumed>)       = 4
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4 <unfinished ...>
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5065] <... close resumed>)        = 0
[pid  5063] <... umount2 resumed>)      = 0
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] rmdir("./3/file0" <unfinished ...>
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4 <unfinished ...>
[pid  5065] <... rmdir resumed>)        = 0
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3 <unfinished ...>
[pid  5062] rmdir("./3/file0")          = 0
[pid  5065] <... close resumed>)        = 0
[pid  5063] umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5065] rmdir("./3" <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] newfstatat(AT_FDCWD, "./3/file0",  <unfinished ...>
[pid  5062] close(3 <unfinished ...>
[pid  5065] <... rmdir resumed>)        = 0
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] <... close resumed>)        = 0
[pid  5065] mkdir("./4", 0777 <unfinished ...>
[   80.073319][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5063] umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... mkdir resumed>)        = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] rmdir("./3" <unfinished ...>
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5062] <... rmdir resumed>)        = 0
[pid  5065] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] mkdir("./4", 0777 <unfinished ...>
[pid  5065] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5065] close(3 <unfinished ...>
[pid  5063] <... openat resumed>)       = 4
[pid  5062] <... mkdir resumed>)        = 0
[pid  5065] <... close resumed>)        = 0
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
./strace-static-x86_64: Process 5292 attached
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5292] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 5292
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3)                    = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5292] <... set_robust_list resumed>) = 0
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5292] chdir("./4" <unfinished ...>
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5292] <... chdir resumed>)        = 0
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 5293
[pid  5292] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5292] setpgid(0, 0 <unfinished ...>
[pid  5063] close(4./strace-static-x86_64: Process 5293 attached
 <unfinished ...>
[pid  5292] <... setpgid resumed>)      = 0
[pid  5063] <... close resumed>)        = 0
[pid  5293] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5063] rmdir("./3/file0" <unfinished ...>
[pid  5292] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5293] <... set_robust_list resumed>) = 0
[pid  5292] <... openat resumed>)       = 3
[pid  5063] <... rmdir resumed>)        = 0
[pid  5292] write(3, "1000", 4 <unfinished ...>
[pid  5293] chdir("./4" <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5293] <... chdir resumed>)        = 0
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5293] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5292] <... write resumed>)        = 4
[pid  5063] close(3 <unfinished ...>
[pid  5293] <... prctl resumed>)        = 0
[pid  5292] close(3 <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5293] setpgid(0, 0 <unfinished ...>
[pid  5292] <... close resumed>)        = 0
[pid  5063] rmdir("./3" <unfinished ...>
[pid  5293] <... setpgid resumed>)      = 0
[pid  5292] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  5293] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5063] mkdir("./4", 0777 <unfinished ...>
[pid  5293] <... openat resumed>)       = 3
[pid  5063] <... mkdir resumed>)        = 0
[pid  5292] <... symlink resumed>)      = 0
[pid  5293] write(3, "1000", 4)         = 4
[pid  5293] close(3)                    = 0
[pid  5293] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5293] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5292] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5293] <... memfd_create resumed>) = 3
[pid  5292] <... memfd_create resumed>) = 3
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5293] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5063] close(3)                    = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5294
[pid  5292] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0./strace-static-x86_64: Process 5294 attached
 <unfinished ...>
[pid  5294] set_robust_list(0x55555697c760, 24) = 0
[pid  5294] chdir("./4")                = 0
[pid  5292] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5294] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5294] setpgid(0, 0)               = 0
[pid  5294] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5294] write(3, "1000", 4)         = 4
[pid  5294] close(3)                    = 0
[pid  5294] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5294] memfd_create("syzkaller", 0) = 3
[pid  5294] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5290] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./3/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./3/file0")          = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./3")                = 0
[pid  5066] mkdir("./4", 0777 <unfinished ...>
[pid  5291] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5066] <... mkdir resumed>)        = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5292] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] close(3)                    = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5295 attached
 <unfinished ...>
[pid  5295] set_robust_list(0x55555697c760, 24) = 0
[pid  5295] chdir("./4")                = 0
[pid  5295] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5295] setpgid(0, 0)               = 0
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 5295
[pid  5295] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5293] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5295] write(3, "1000", 4)         = 4
[pid  5295] close(3)                    = 0
[pid  5295] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5295] memfd_create("syzkaller", 0) = 3
[pid  5295] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5294] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5290] <... write resumed>)        = 16777216
[pid  5290] munmap(0x7f6d986f1000, 138412032) = 0
[pid  5290] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[pid  5290] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5290] close(3)                    = 0
[   80.836078][ T5290] loop5: detected capacity change from 0 to 32768
[pid  5290] mkdir("./file0", 0777)      = 0
[pid  5290] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[   80.959880][ T5290] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[pid  5295] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5291] <... write resumed>)        = 16777216
[pid  5291] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5292] <... write resumed>)        = 16777216
[   81.003923][ T5290] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5292] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5293] <... write resumed>)        = 16777216
[pid  5291] <... munmap resumed>)       = 0
[pid  5291] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5293] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5291] <... openat resumed>)       = 4
[pid  5291] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5292] <... munmap resumed>)       = 0
[pid  5293] <... munmap resumed>)       = 0
[pid  5292] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5291] close(3)                    = 0
[pid  5291] mkdir("./file0", 0777)      = 0
[pid  5291] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5292] <... openat resumed>)       = 4
[   81.086236][ T5291] loop2: detected capacity change from 0 to 32768
[pid  5292] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5292] close(3)                    = 0
[pid  5293] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5292] mkdir("./file0", 0777 <unfinished ...>
[pid  5293] <... openat resumed>)       = 4
[pid  5293] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5292] <... mkdir resumed>)        = 0
[pid  5292] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5293] close(3)                    = 0
[pid  5293] mkdir("./file0", 0777 <unfinished ...>
[pid  5294] <... write resumed>)        = 16777216
[   81.130757][ T5292] loop3: detected capacity change from 0 to 32768
[   81.155561][ T5293] loop0: detected capacity change from 0 to 32768
[   81.166501][ T5290] XFS (loop5): Ending clean mount
[pid  5293] <... mkdir resumed>)        = 0
[pid  5294] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[   81.187423][ T5291] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[   81.195412][ T5292] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[   81.207407][ T5291] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   81.214018][ T5290] XFS (loop5): Quotacheck needed: Please wait.
[   81.220498][ T5292] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5293] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5294] <... munmap resumed>)       = 0
[pid  5294] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid  5294] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5290] <... mount resumed>)        = 0
[pid  5290] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5290] chdir("./file0")            = 0
[pid  5290] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5290] close(4 <unfinished ...>
[pid  5294] close(3)                    = 0
[pid  5290] <... close resumed>)        = 0
[pid  5294] mkdir("./file0", 0777)      = 0
[pid  5290] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5294] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5290] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5290] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[   81.236473][ T5294] loop1: detected capacity change from 0 to 32768
[   81.252061][ T5293] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[   81.252886][ T5290] XFS (loop5): Quotacheck: Done.
[   81.266306][ T5293] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5290] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5290] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5290] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5290] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5290] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5290] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[   81.317987][ T5291] XFS (loop2): Ending clean mount
[pid  5290] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5290] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5290] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5290] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5290] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5290] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5290] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5290] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[   81.345279][ T5294] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[   81.361015][ T5291] XFS (loop2): Quotacheck needed: Please wait.
[   81.368953][ T5292] XFS (loop3): Ending clean mount
[   81.380607][ T5294] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5295] <... write resumed>)        = 16777216
[pid  5290] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5295] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5290] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5290] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[   81.392068][ T5292] XFS (loop3): Quotacheck needed: Please wait.
[pid  5290] sendfile(5, 4, [100] <unfinished ...>
[pid  5292] <... mount resumed>)        = 0
[   81.435952][ T5293] XFS (loop0): Ending clean mount
[   81.441937][ T5291] XFS (loop2): Quotacheck: Done.
[   81.453292][ T5292] XFS (loop3): Quotacheck: Done.
[   81.465877][ T5293] XFS (loop0): Quotacheck needed: Please wait.
[pid  5295] <... munmap resumed>)       = 0
[pid  5292] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5291] <... mount resumed>)        = 0
[pid  5295] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5292] <... openat resumed>)       = 3
[pid  5295] <... openat resumed>)       = 4
[pid  5295] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5292] chdir("./file0" <unfinished ...>
[pid  5291] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5292] <... chdir resumed>)        = 0
[pid  5291] <... openat resumed>)       = 3
[pid  5292] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5291] chdir("./file0")            = 0
[pid  5292] <... ioctl resumed>)        = 0
[pid  5291] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5295] <... ioctl resumed>)        = 0
[pid  5293] <... mount resumed>)        = 0
[pid  5292] close(4 <unfinished ...>
[pid  5291] <... ioctl resumed>)        = 0
[pid  5291] close(4)                    = 0
[pid  5292] <... close resumed>)        = 0
[pid  5293] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5292] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5291] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5293] <... openat resumed>)       = 3
[pid  5292] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5291] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5295] close(3 <unfinished ...>
[pid  5293] chdir("./file0" <unfinished ...>
[pid  5292] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5291] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5293] <... chdir resumed>)        = 0
[pid  5292] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5293] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5292] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5291] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5293] <... ioctl resumed>)        = 0
[pid  5291] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5292] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5293] close(4 <unfinished ...>
[pid  5292] ftruncate(-1, 33587195 <unfinished ...>
[pid  5291] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5293] <... close resumed>)        = 0
[pid  5292] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[   81.482832][ T5290] syz-executor246 (5290): drop_caches: 2
[   81.489394][ T5294] XFS (loop1): Ending clean mount
[   81.496468][ T5295] loop4: detected capacity change from 0 to 32768
[   81.512462][ T5293] XFS (loop0): Quotacheck: Done.
[   81.521989][ T5294] XFS (loop1): Quotacheck needed: Please wait.
[pid  5291] ftruncate(-1, 33587195 <unfinished ...>
[pid  5295] <... close resumed>)        = 0
[pid  5293] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5292] read(-1,  <unfinished ...>
[pid  5290] <... sendfile resumed> => [671], 571) = 571
[pid  5295] mkdir("./file0", 0777)      = 0
[pid  5293] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5292] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5291] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5293] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5292] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5291] read(-1,  <unfinished ...>
[pid  5293] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5292] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5293] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5292] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5291] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5293] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5292] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5293] ftruncate(-1, 33587195 <unfinished ...>
[pid  5291] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5292] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5293] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5291] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5293] read(-1,  <unfinished ...>
[pid  5292] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5291] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5293] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5292] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5291] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5293] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5292] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5291] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5292] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5291] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5293] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5292] write(-1, NULL, 0 <unfinished ...>
[pid  5291] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5293] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5291] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5292] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5293] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5293] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5292] write(-1, NULL, 0 <unfinished ...>
[pid  5291] read(-1,  <unfinished ...>
[pid  5292] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5291] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5293] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[   81.535346][ T5290] syz-executor246 (5290): drop_caches: 2
[pid  5292] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5291] write(-1, NULL, 0 <unfinished ...>
[pid  5295] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5294] <... mount resumed>)        = 0
[pid  5293] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5291] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5294] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5293] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5291] write(-1, NULL, 0 <unfinished ...>
[pid  5292] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5293] read(-1,  <unfinished ...>
[pid  5291] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5294] <... openat resumed>)       = 3
[pid  5292] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5294] chdir("./file0" <unfinished ...>
[pid  5293] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5292] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5291] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5294] <... chdir resumed>)        = 0
[pid  5293] write(-1, NULL, 0 <unfinished ...>
[pid  5292] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5291] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5294] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5293] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5292] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5291] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5294] <... ioctl resumed>)        = 0
[pid  5293] write(-1, NULL, 0 <unfinished ...>
[pid  5292] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5294] close(4 <unfinished ...>
[pid  5293] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5292] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5291] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5290] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5294] <... close resumed>)        = 0
[pid  5293] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5292] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5291] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5294] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5292] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5291] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5293] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5292] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5291] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5294] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5293] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5292] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5291] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5290] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5294] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5293] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5292] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5291] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5290] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5294] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5293] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5292] <... openat resumed>)       = 4
[pid  5291] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5290] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5294] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5293] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5292] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5291] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5290] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5294] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5293] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5292] <... openat resumed>)       = 5
[pid  5291] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5290] <... open resumed>)         = -1 EFAULT (Bad address)
[   81.556702][ T5294] XFS (loop1): Quotacheck: Done.
[   81.574229][ T5295] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[pid  5294] ftruncate(-1, 33587195 <unfinished ...>
[pid  5293] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5292] sendfile(5, 4, [100] <unfinished ...>
[pid  5291] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5290] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5290] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5290] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5290] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5290] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5290] exit_group(0)               = ?
[pid  5290] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5290, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=35 /* 0.35 s */} ---
[pid  5294] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5293] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5291] <... openat resumed>)       = 4
[pid  5067] umount2("./4", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./4/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./4/binderfs")      = 0
[pid  5067] umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5294] read(-1,  <unfinished ...>
[pid  5293] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5292] <... sendfile resumed> => [671], 571) = 571
[pid  5291] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5294] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5293] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5294] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5293] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5293] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5294] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5294] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5293] <... openat resumed>)       = 4
[pid  5292] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5291] <... openat resumed>)       = 5
[pid  5294] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[   81.599159][ T5295] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   81.611187][ T5292] syz-executor246 (5292): drop_caches: 2
[   81.617229][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   81.624563][ T5292] syz-executor246 (5292): drop_caches: 2
[   81.638697][ T5293] syz-executor246 (5293): drop_caches: 2
[pid  5293] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5292] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5291] sendfile(5, 4, [100] <unfinished ...>
[pid  5294] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5293] <... openat resumed>)       = 5
[pid  5292] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5293] sendfile(5, 4, [100] <unfinished ...>
[pid  5294] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5294] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5294] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5292] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5294] write(-1, NULL, 0 <unfinished ...>
[pid  5293] <... sendfile resumed> => [671], 571) = 571
[pid  5292] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5293] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5293] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5294] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5293] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5293] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5294] write(-1, NULL, 0 <unfinished ...>
[pid  5293] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5292] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5293] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5293] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5294] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5293] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5292] ftruncate(-1, 33587199 <unfinished ...>
[pid  5293] open(NULL, O_RDONLY <unfinished ...>
[pid  5294] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5293] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5292] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5294] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5292] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5293] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5294] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5292] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5294] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5293] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5292] open(NULL, O_RDONLY <unfinished ...>
[pid  5293] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5294] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5293] exit_group(0 <unfinished ...>
[pid  5292] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5294] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5292] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5294] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5292] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5294] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5292] read(-1,  <unfinished ...>
[pid  5294] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5292] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5294] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5292] exit_group(0 <unfinished ...>
[   81.646896][ T5293] syz-executor246 (5293): drop_caches: 2
[   81.647030][ T5291] syz-executor246 (5291): drop_caches: 2
[pid  5294] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5292] <... exit_group resumed>)   = ?
[pid  5294] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5293] <... exit_group resumed>)   = ?
[pid  5294] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5293] +++ exited with 0 +++
[pid  5292] +++ exited with 0 +++
[pid  5294] <... openat resumed>)       = 4
[pid  5294] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5292, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=33 /* 0.33 s */} ---
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5293, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=31 /* 0.31 s */} ---
[pid  5294] <... openat resumed>)       = 5
[pid  5294] sendfile(5, 4, [100] <unfinished ...>
[pid  5062] umount2("./4", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] umount2("./4", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  5065] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] <... openat resumed>)       = 3
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5062] umount2("./4/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5291] <... sendfile resumed> => [671], 571) = 571
[pid  5065] umount2("./4/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./4/binderfs",  <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./4/binderfs")      = 0
[pid  5065] newfstatat(AT_FDCWD, "./4/binderfs",  <unfinished ...>
[pid  5062] umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5291] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5291] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5065] unlink("./4/binderfs")      = 0
[pid  5291] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5291] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[   81.707759][ T5294] syz-executor246 (5294): drop_caches: 2
[   81.733438][ T5291] syz-executor246 (5291): drop_caches: 2
[   81.738507][ T5294] syz-executor246 (5294): drop_caches: 2
[   81.747281][ T5295] XFS (loop4): Ending clean mount
[pid  5065] umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5291] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5294] <... sendfile resumed> => [671], 571) = 571
[pid  5294] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5294] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5294] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5294] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5294] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5294] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5294] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5294] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5294] exit_group(0)               = ?
[pid  5294] +++ exited with 0 +++
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5294, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=34 /* 0.34 s */} ---
[pid  5063] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5291] ftruncate(-1, 33587199 <unfinished ...>
[pid  5063] umount2("./4", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5291] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5291] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./4/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5291] open(NULL, O_RDONLY <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5291] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5291] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./4/binderfs",  <unfinished ...>
[pid  5291] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5291] read(-1,  <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5291] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5291] exit_group(0 <unfinished ...>
[pid  5063] unlink("./4/binderfs" <unfinished ...>
[pid  5291] <... exit_group resumed>)   = ?
[pid  5063] <... unlink resumed>)       = 0
[   81.777481][ T5295] XFS (loop4): Quotacheck needed: Please wait.
[   81.784367][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   81.793503][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5063] umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5291] +++ exited with 0 +++
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5291, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=37 /* 0.37 s */} ---
[pid  5064] umount2("./4", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./4/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./4/binderfs")      = 0
[pid  5064] umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5295] <... mount resumed>)        = 0
[pid  5295] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5295] chdir("./file0")            = 0
[pid  5295] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5295] close(4)                    = 0
[pid  5295] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5295] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5295] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5295] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5295] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5295] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5295] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5295] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5295] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5295] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5295] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5295] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5295] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5295] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5295] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5295] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5295] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5295] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5295] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5295] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[   81.843613][ T5295] XFS (loop4): Quotacheck: Done.
[   81.850122][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   81.868651][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   81.921911][ T5295] syz-executor246 (5295): drop_caches: 2
[pid  5295] sendfile(5, 4, [100] => [671], 571) = 571
[pid  5295] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5295] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5295] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5295] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5295] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5295] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5295] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[   81.967004][ T5295] syz-executor246 (5295): drop_caches: 2
[pid  5295] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5295] exit_group(0)               = ?
[pid  5295] +++ exited with 0 +++
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5295, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=28 /* 0.28 s */} ---
[pid  5066] umount2("./4", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./4/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] unlink("./4/binderfs")      = 0
[pid  5066] umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5067] umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[   82.085702][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5067] newfstatat(AT_FDCWD, "./4/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./4/file0")          = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./4")                = 0
[pid  5065] <... umount2 resumed>)      = 0
[pid  5067] mkdir("./5", 0777)          = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  5065] umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./4/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./4/file0")          = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./4" <unfinished ...>
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] <... rmdir resumed>)        = 0
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5065] mkdir("./5", 0777)          = 0
./strace-static-x86_64: Process 5344 attached
[pid  5344] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 5344
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5344] <... set_robust_list resumed>) = 0
[pid  5344] chdir("./5" <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 5345
./strace-static-x86_64: Process 5345 attached
[pid  5344] <... chdir resumed>)        = 0
[pid  5345] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5344] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5345] <... set_robust_list resumed>) = 0
[pid  5345] chdir("./5" <unfinished ...>
[pid  5344] <... prctl resumed>)        = 0
[pid  5344] setpgid(0, 0 <unfinished ...>
[pid  5345] <... chdir resumed>)        = 0
[pid  5345] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5344] <... setpgid resumed>)      = 0
[pid  5345] <... prctl resumed>)        = 0
[pid  5344] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5345] setpgid(0, 0)               = 0
[pid  5345] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5344] <... openat resumed>)       = 3
[pid  5345] <... openat resumed>)       = 3
[pid  5345] write(3, "1000", 4 <unfinished ...>
[pid  5344] write(3, "1000", 4 <unfinished ...>
[pid  5345] <... write resumed>)        = 4
[pid  5345] close(3 <unfinished ...>
[pid  5344] <... write resumed>)        = 4
[pid  5345] <... close resumed>)        = 0
[pid  5345] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5345] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5344] close(3 <unfinished ...>
[pid  5345] <... memfd_create resumed>) = 3
[pid  5345] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5344] <... close resumed>)        = 0
[pid  5062] <... umount2 resumed>)      = 0
[pid  5344] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5344] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5062] umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5344] <... memfd_create resumed>) = 3
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5344] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5063] <... umount2 resumed>)      = 0
[pid  5062] newfstatat(AT_FDCWD, "./4/file0",  <unfinished ...>
[pid  5344] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./4/file0",  <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5063] umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] <... openat resumed>)       = 4
[pid  5063] openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  5063] <... openat resumed>)       = 4
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5062] close(4 <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] <... close resumed>)        = 0
[pid  5063] close(4 <unfinished ...>
[pid  5062] rmdir("./4/file0" <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5063] rmdir("./4/file0" <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  5063] <... rmdir resumed>)        = 0
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3 <unfinished ...>
[pid  5063] close(3 <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5063] <... close resumed>)        = 0
[pid  5062] rmdir("./4" <unfinished ...>
[pid  5063] rmdir("./4" <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  5062] <... rmdir resumed>)        = 0
[pid  5063] <... rmdir resumed>)        = 0
[pid  5062] mkdir("./5", 0777 <unfinished ...>
[pid  5064] umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./4/file0",  <unfinished ...>
[pid  5063] mkdir("./5", 0777 <unfinished ...>
[pid  5062] <... mkdir resumed>)        = 0
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] <... mkdir resumed>)        = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5064] openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5064] newfstatat(4, "",  <unfinished ...>
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] <... openat resumed>)       = 3
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5062] close(3 <unfinished ...>
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5064] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] close(3 <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5064] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./4/file0" <unfinished ...>
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5064] <... rmdir resumed>)        = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./4")                = 0
./strace-static-x86_64: Process 5346 attached
[pid  5346] set_robust_list(0x55555697c760, 24) = 0
[pid  5064] mkdir("./5", 0777./strace-static-x86_64: Process 5347 attached
 <unfinished ...>
[pid  5346] chdir("./5" <unfinished ...>
[pid  5064] <... mkdir resumed>)        = 0
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 5346
[pid  5347] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5346] <... chdir resumed>)        = 0
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 5347
[pid  5347] <... set_robust_list resumed>) = 0
[pid  5346] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5347] chdir("./5" <unfinished ...>
[pid  5346] <... prctl resumed>)        = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5347] <... chdir resumed>)        = 0
[pid  5346] setpgid(0, 0 <unfinished ...>
[pid  5347] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5347] setpgid(0, 0 <unfinished ...>
[pid  5346] <... setpgid resumed>)      = 0
[pid  5064] <... openat resumed>)       = 3
[pid  5346] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5347] <... setpgid resumed>)      = 0
[pid  5064] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5346] <... openat resumed>)       = 3
[pid  5064] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5346] write(3, "1000", 4 <unfinished ...>
[pid  5064] close(3 <unfinished ...>
[pid  5347] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5346] <... write resumed>)        = 4
[pid  5064] <... close resumed>)        = 0
[pid  5347] <... openat resumed>)       = 3
[pid  5347] write(3, "1000", 4 <unfinished ...>
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5348 attached
 <unfinished ...>
[pid  5347] <... write resumed>)        = 4
[pid  5346] close(3 <unfinished ...>
[pid  5348] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5347] close(3 <unfinished ...>
[pid  5346] <... close resumed>)        = 0
[pid  5348] <... set_robust_list resumed>) = 0
[pid  5347] <... close resumed>)        = 0
[pid  5346] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5347] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5346] <... symlink resumed>)      = 0
[pid  5348] chdir("./5" <unfinished ...>
[pid  5347] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5346] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 5348
[pid  5348] <... chdir resumed>)        = 0
[pid  5347] <... memfd_create resumed>) = 3
[pid  5346] <... memfd_create resumed>) = 3
[pid  5348] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5347] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5346] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5348] <... prctl resumed>)        = 0
[pid  5347] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5346] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5348] setpgid(0, 0)               = 0
[pid  5348] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5348] write(3, "1000", 4)         = 4
[pid  5348] close(3)                    = 0
[pid  5348] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5348] memfd_create("syzkaller", 0) = 3
[pid  5348] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./4/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./4/file0")          = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./4")                = 0
[pid  5066] mkdir("./5", 0777)          = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] close(3)                    = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5349 attached
 <unfinished ...>
[pid  5349] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 5349
[pid  5349] <... set_robust_list resumed>) = 0
[pid  5349] chdir("./5")                = 0
[pid  5345] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5349] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5349] setpgid(0, 0)               = 0
[pid  5349] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5349] write(3, "1000", 4)         = 4
[pid  5344] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5349] close(3)                    = 0
[pid  5349] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5349] memfd_create("syzkaller", 0) = 3
[pid  5349] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5347] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5346] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5348] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5349] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5345] <... write resumed>)        = 16777216
[pid  5345] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5344] <... write resumed>)        = 16777216
[pid  5344] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5345] <... munmap resumed>)       = 0
[pid  5347] <... write resumed>)        = 16777216
[pid  5345] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5348] <... write resumed>)        = 16777216
[pid  5347] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5345] <... openat resumed>)       = 4
[pid  5344] <... munmap resumed>)       = 0
[pid  5348] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5344] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5345] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5344] <... openat resumed>)       = 4
[pid  5347] <... munmap resumed>)       = 0
[pid  5346] <... write resumed>)        = 16777216
[pid  5344] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5347] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5345] <... ioctl resumed>)        = 0
[pid  5345] close(3)                    = 0
[pid  5345] mkdir("./file0", 0777)      = 0
[pid  5347] <... openat resumed>)       = 4
[pid  5347] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5346] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5345] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5348] <... munmap resumed>)       = 0
[pid  5344] <... ioctl resumed>)        = 0
[pid  5347] <... ioctl resumed>)        = 0
[pid  5347] close(3 <unfinished ...>
[pid  5344] close(3 <unfinished ...>
[pid  5347] <... close resumed>)        = 0
[pid  5344] <... close resumed>)        = 0
[pid  5347] mkdir("./file0", 0777 <unfinished ...>
[   83.355006][ T5345] loop3: detected capacity change from 0 to 32768
[   83.370523][ T5344] loop5: detected capacity change from 0 to 32768
[   83.380864][ T5347] loop1: detected capacity change from 0 to 32768
[pid  5348] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid  5348] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5347] <... mkdir resumed>)        = 0
[pid  5347] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5344] mkdir("./file0", 0777 <unfinished ...>
[pid  5346] <... munmap resumed>)       = 0
[pid  5344] <... mkdir resumed>)        = 0
[pid  5344] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5346] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5346] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5348] close(3)                    = 0
[pid  5348] mkdir("./file0", 0777)      = 0
[pid  5348] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5346] close(3)                    = 0
[   83.403623][ T5348] loop2: detected capacity change from 0 to 32768
[   83.415436][ T5345] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[   83.425632][ T5346] loop0: detected capacity change from 0 to 32768
[   83.426390][ T5347] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[   83.440810][ T5345] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5346] mkdir("./file0", 0777)      = 0
[   83.455648][ T5347] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   83.472347][ T5344] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[   83.484234][ T5348] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[   83.494473][ T5344] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5346] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5349] <... write resumed>)        = 16777216
[   83.511991][ T5348] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   83.536494][ T5346] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[   83.539926][ T5347] XFS (loop1): Ending clean mount
[   83.551397][ T5345] XFS (loop3): Ending clean mount
[pid  5349] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5347] <... mount resumed>)        = 0
[pid  5347] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5349] <... munmap resumed>)       = 0
[pid  5347] chdir("./file0")            = 0
[pid  5347] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5347] close(4)                    = 0
[pid  5347] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[   83.552554][ T5347] XFS (loop1): Quotacheck needed: Please wait.
[   83.580563][ T5347] XFS (loop1): Quotacheck: Done.
[   83.587991][ T5345] XFS (loop3): Quotacheck needed: Please wait.
[   83.601946][ T5344] XFS (loop5): Ending clean mount
[pid  5347] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5347] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5347] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5347] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5347] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5347] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5347] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5347] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5349] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5347] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5349] <... openat resumed>)       = 4
[pid  5349] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5347] read(-1,  <unfinished ...>
[pid  5349] <... ioctl resumed>)        = 0
[pid  5347] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[   83.610167][ T5346] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   83.635318][ T5349] loop4: detected capacity change from 0 to 32768
[   83.643905][ T5344] XFS (loop5): Quotacheck needed: Please wait.
[   83.655169][ T5348] XFS (loop2): Ending clean mount
[pid  5347] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5347] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5347] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5347] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5347] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5349] close(3 <unfinished ...>
[pid  5347] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5347] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5349] <... close resumed>)        = 0
[pid  5349] mkdir("./file0", 0777 <unfinished ...>
[pid  5347] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5345] <... mount resumed>)        = 0
[pid  5347] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5345] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5347] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5345] <... openat resumed>)       = 3
[pid  5347] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5345] chdir("./file0" <unfinished ...>
[pid  5347] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5345] <... chdir resumed>)        = 0
[pid  5347] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5345] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5347] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5345] <... ioctl resumed>)        = 0
[pid  5347] <... openat resumed>)       = 5
[pid  5345] close(4 <unfinished ...>
[pid  5347] sendfile(5, 4, [100] <unfinished ...>
[pid  5345] <... close resumed>)        = 0
[pid  5349] <... mkdir resumed>)        = 0
[pid  5345] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5349] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5345] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5345] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5345] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5345] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5345] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[   83.661263][ T5346] XFS (loop0): Ending clean mount
[   83.674732][ T5345] XFS (loop3): Quotacheck: Done.
[   83.683363][ T5346] XFS (loop0): Quotacheck needed: Please wait.
[   83.698756][ T5344] XFS (loop5): Quotacheck: Done.
[pid  5345] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5345] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5345] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5345] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5346] <... mount resumed>)        = 0
[pid  5345] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5346] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5345] read(-1,  <unfinished ...>
[pid  5346] <... openat resumed>)       = 3
[pid  5345] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5344] <... mount resumed>)        = 0
[pid  5346] chdir("./file0" <unfinished ...>
[pid  5345] write(-1, NULL, 0 <unfinished ...>
[pid  5346] <... chdir resumed>)        = 0
[pid  5345] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5346] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5345] write(-1, NULL, 0 <unfinished ...>
[pid  5346] <... ioctl resumed>)        = 0
[pid  5345] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5346] close(4 <unfinished ...>
[pid  5345] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5344] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5346] <... close resumed>)        = 0
[pid  5345] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5344] chdir("./file0")            = 0
[pid  5344] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5346] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5345] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5344] <... ioctl resumed>)        = 0
[pid  5346] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5345] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5344] close(4 <unfinished ...>
[pid  5346] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5345] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5344] <... close resumed>)        = 0
[pid  5344] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5346] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5345] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5344] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5346] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5345] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5344] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5346] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5345] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5344] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5346] ftruncate(-1, 33587195 <unfinished ...>
[pid  5345] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5344] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5346] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5345] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5344] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5346] read(-1,  <unfinished ...>
[pid  5345] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[   83.714460][ T5348] XFS (loop2): Quotacheck needed: Please wait.
[   83.727416][ T5346] XFS (loop0): Quotacheck: Done.
[pid  5344] ftruncate(-1, 33587195 <unfinished ...>
[pid  5346] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5345] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5344] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5344] read(-1,  <unfinished ...>
[pid  5346] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5345] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5344] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5346] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5345] <... openat resumed>)       = 4
[pid  5346] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5346] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5344] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5344] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5344] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5346] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5345] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5344] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5346] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5344] read(-1,  <unfinished ...>
[pid  5345] <... openat resumed>)       = 5
[pid  5344] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5346] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5344] write(-1, NULL, 0 <unfinished ...>
[pid  5346] read(-1,  <unfinished ...>
[pid  5345] sendfile(5, 4, [100] <unfinished ...>
[pid  5344] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5346] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5344] write(-1, NULL, 0 <unfinished ...>
[pid  5346] write(-1, NULL, 0 <unfinished ...>
[pid  5344] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5346] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5344] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5346] write(-1, NULL, 0 <unfinished ...>
[pid  5344] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5344] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5344] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5344] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5344] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5344] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5344] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5344] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5346] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5344] <... openat resumed>)       = 5
[pid  5344] sendfile(5, 4, [100] <unfinished ...>
[pid  5346] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[   83.759528][ T5349] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[   83.780852][ T5348] XFS (loop2): Quotacheck: Done.
[   83.788032][ T5344] syz-executor246 (5344): drop_caches: 2
[   83.797112][ T5345] syz-executor246 (5345): drop_caches: 2
[pid  5346] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5346] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5348] <... mount resumed>)        = 0
[pid  5348] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5346] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5348] <... openat resumed>)       = 3
[pid  5346] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5348] chdir("./file0" <unfinished ...>
[pid  5346] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5348] <... chdir resumed>)        = 0
[pid  5346] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5348] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5346] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5348] <... ioctl resumed>)        = 0
[pid  5346] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5348] close(4 <unfinished ...>
[pid  5346] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5348] <... close resumed>)        = 0
[pid  5346] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5348] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5345] <... sendfile resumed> => [671], 571) = 571
[pid  5346] <... openat resumed>)       = 4
[pid  5346] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5346] sendfile(5, 4, [100] <unfinished ...>
[pid  5344] <... sendfile resumed> => [671], 571) = 571
[pid  5348] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5345] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5344] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5345] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5344] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5344] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5345] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5344] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5348] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5345] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5344] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5348] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5345] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5344] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5348] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5344] ftruncate(-1, 33587199 <unfinished ...>
[pid  5348] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5345] ftruncate(-1, 33587199 <unfinished ...>
[pid  5344] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5348] ftruncate(-1, 33587195 <unfinished ...>
[pid  5345] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5344] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5348] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5345] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5344] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5348] read(-1,  <unfinished ...>
[pid  5345] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5344] open(NULL, O_RDONLY <unfinished ...>
[pid  5348] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5347] <... sendfile resumed> => [671], 571) = 571
[pid  5345] open(NULL, O_RDONLY <unfinished ...>
[pid  5344] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5348] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5345] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5344] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5348] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5347] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5345] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5344] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5348] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5345] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5344] read(-1,  <unfinished ...>
[pid  5348] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5345] read(-1,  <unfinished ...>
[pid  5344] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5348] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5345] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5344] exit_group(0 <unfinished ...>
[pid  5347] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5348] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5345] exit_group(0 <unfinished ...>
[pid  5344] <... exit_group resumed>)   = ?
[pid  5348] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5347] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5345] <... exit_group resumed>)   = ?
[pid  5348] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5344] +++ exited with 0 +++
[pid  5348] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5347] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5344, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=33 /* 0.33 s */} ---
[pid  5348] write(-1, NULL, 0 <unfinished ...>
[pid  5347] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5067] umount2("./5", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5348] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5347] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5348] write(-1, NULL, 0 <unfinished ...>
[pid  5347] ftruncate(-1, 33587199 <unfinished ...>
[pid  5067] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5348] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5347] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  5348] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5347] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5348] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5347] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5348] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5345] +++ exited with 0 +++
[pid  5067] umount2("./5/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5348] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5345, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=27 /* 0.27 s */} ---
[pid  5347] open(NULL, O_RDONLY <unfinished ...>
[pid  5067] newfstatat(AT_FDCWD, "./5/binderfs",  <unfinished ...>
[pid  5065] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5348] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5347] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] <... restart_syscall resumed>) = 0
[pid  5348] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5347] openat(-1, NULL, O_RDONLY <unfinished ...>
[   83.804622][ T5347] syz-executor246 (5347): drop_caches: 2
[   83.810152][ T5345] syz-executor246 (5345): drop_caches: 2
[   83.812310][ T5349] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   83.828930][ T5344] syz-executor246 (5344): drop_caches: 2
[   83.838700][ T5347] syz-executor246 (5347): drop_caches: 2
[pid  5067] unlink("./5/binderfs" <unfinished ...>
[pid  5348] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5347] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] <... unlink resumed>)       = 0
[pid  5347] read(-1,  <unfinished ...>
[pid  5067] umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] umount2("./5", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5348] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5347] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5348] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5347] exit_group(0 <unfinished ...>
[pid  5065] umount2("./5/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5348] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5347] <... exit_group resumed>)   = ?
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5348] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5347] +++ exited with 0 +++
[pid  5065] newfstatat(AT_FDCWD, "./5/binderfs",  <unfinished ...>
[pid  5348] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5348] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5347, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=38 /* 0.38 s */} ---
[pid  5348] <... openat resumed>)       = 4
[pid  5065] unlink("./5/binderfs" <unfinished ...>
[pid  5348] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5065] <... unlink resumed>)       = 0
[   83.877919][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   83.880640][ T5346] syz-executor246 (5346): drop_caches: 2
[pid  5348] sendfile(5, 4, [100] <unfinished ...>
[pid  5346] <... sendfile resumed> => [671], 571) = 571
[pid  5065] umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5346] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5063] umount2("./5", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5346] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5346] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5063] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5346] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5063] <... openat resumed>)       = 3
[pid  5346] ftruncate(-1, 33587199 <unfinished ...>
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  5346] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5346] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5346] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5346] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5346] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5346] exit_group(0 <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5346] <... exit_group resumed>)   = ?
[pid  5346] +++ exited with 0 +++
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./5/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5346, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=40 /* 0.40 s */} ---
[pid  5062] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5062] umount2("./5", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[   83.926130][ T5346] syz-executor246 (5346): drop_caches: 2
[   83.928326][ T5348] syz-executor246 (5348): drop_caches: 2
[   83.945681][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] umount2("./5/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./5/binderfs",  <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] newfstatat(AT_FDCWD, "./5/binderfs",  <unfinished ...>
[pid  5063] unlink("./5/binderfs" <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./5/binderfs" <unfinished ...>
[pid  5348] <... sendfile resumed> => [671], 571) = 571
[pid  5063] <... unlink resumed>)       = 0
[pid  5062] <... unlink resumed>)       = 0
[pid  5348] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5063] umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5348] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5348] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5348] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5348] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5348] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5348] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[   83.980537][ T5349] XFS (loop4): Ending clean mount
[   83.984739][ T5348] syz-executor246 (5348): drop_caches: 2
[   84.014905][ T5349] XFS (loop4): Quotacheck needed: Please wait.
[   84.022043][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5348] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5348] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5348] exit_group(0)               = ?
[pid  5348] +++ exited with 0 +++
[pid  5067] <... umount2 resumed>)      = 0
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5348, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=36 /* 0.36 s */} ---
[pid  5067] umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] <... restart_syscall resumed>) = 0
[pid  5067] newfstatat(AT_FDCWD, "./5/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./5", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5064] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5067] <... openat resumed>)       = 4
[pid  5064] <... openat resumed>)       = 3
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[   84.023165][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5064] getdents64(3,  <unfinished ...>
[pid  5067] newfstatat(4, "",  <unfinished ...>
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] umount2("./5/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5064] newfstatat(AT_FDCWD, "./5/binderfs",  <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4 <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] <... close resumed>)        = 0
[pid  5064] unlink("./5/binderfs" <unfinished ...>
[pid  5067] rmdir("./5/file0")          = 0
[pid  5064] <... unlink resumed>)       = 0
[pid  5349] <... mount resumed>)        = 0
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5349] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5349] <... openat resumed>)       = 3
[pid  5349] chdir("./file0" <unfinished ...>
[   84.071242][ T5349] XFS (loop4): Quotacheck: Done.
[pid  5067] close(3)                    = 0
[pid  5349] <... chdir resumed>)        = 0
[pid  5067] rmdir("./5" <unfinished ...>
[pid  5349] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5067] <... rmdir resumed>)        = 0
[pid  5349] <... ioctl resumed>)        = 0
[pid  5067] mkdir("./6", 0777 <unfinished ...>
[pid  5349] close(4 <unfinished ...>
[pid  5067] <... mkdir resumed>)        = 0
[pid  5349] <... close resumed>)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5349] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5067] <... openat resumed>)       = 3
[pid  5349] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5349] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5349] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5349] ftruncate(-1, 33587195 <unfinished ...>
[   84.096230][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5067] close(3 <unfinished ...>
[pid  5349] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5067] <... close resumed>)        = 0
[pid  5349] read(-1,  <unfinished ...>
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5349] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
./strace-static-x86_64: Process 5398 attached
[pid  5349] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5398] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5349] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 5398
[pid  5398] <... set_robust_list resumed>) = 0
[pid  5349] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5398] chdir("./6" <unfinished ...>
[pid  5349] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5349] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5349] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5349] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5349] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5398] <... chdir resumed>)        = 0
[pid  5349] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5398] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5349] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5398] <... prctl resumed>)        = 0
[pid  5349] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5398] setpgid(0, 0)               = 0
[pid  5349] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5398] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5349] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5349] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5349] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5398] <... openat resumed>)       = 3
[pid  5349] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5398] write(3, "1000", 4 <unfinished ...>
[pid  5349] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5398] <... write resumed>)        = 4
[pid  5349] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5398] close(3 <unfinished ...>
[pid  5349] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5398] <... close resumed>)        = 0
[pid  5398] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5349] <... openat resumed>)       = 4
[pid  5398] <... symlink resumed>)      = 0
[pid  5349] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5398] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5349] sendfile(5, 4, [100] <unfinished ...>
[pid  5398] <... memfd_create resumed>) = 3
[pid  5398] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[   84.297701][ T5349] syz-executor246 (5349): drop_caches: 2
[pid  5349] <... sendfile resumed> => [671], 571) = 571
[pid  5349] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[   84.338560][ T5349] syz-executor246 (5349): drop_caches: 2
[pid  5349] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5349] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5349] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5349] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5349] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5349] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5349] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5349] exit_group(0)               = ?
[pid  5349] +++ exited with 0 +++
[pid  5065] <... umount2 resumed>)      = 0
[pid  5063] <... umount2 resumed>)      = 0
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5349, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=30 /* 0.30 s */} ---
[pid  5066] umount2("./5", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./5/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] unlink("./5/binderfs")      = 0
[pid  5066] umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./5/file0",  <unfinished ...>
[pid  5063] umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./5/file0")          = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./5/file0",  <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] close(3 <unfinished ...>
[pid  5063] umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... close resumed>)        = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] rmdir("./5" <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] <... rmdir resumed>)        = 0
[pid  5063] <... openat resumed>)       = 4
[pid  5065] mkdir("./6", 0777 <unfinished ...>
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  5065] <... mkdir resumed>)        = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] <... openat resumed>)       = 3
[pid  5065] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5065] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5065] close(3 <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] <... close resumed>)        = 0
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 5399
[pid  5063] close(4./strace-static-x86_64: Process 5399 attached
)                    = 0
[pid  5399] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5063] rmdir("./5/file0")          = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3 <unfinished ...>
[pid  5399] <... set_robust_list resumed>) = 0
[pid  5063] <... close resumed>)        = 0
[pid  5062] <... umount2 resumed>)      = 0
[pid  5399] chdir("./6" <unfinished ...>
[pid  5063] rmdir("./5" <unfinished ...>
[pid  5062] umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5399] <... chdir resumed>)        = 0
[pid  5063] <... rmdir resumed>)        = 0
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5399] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5063] mkdir("./6", 0777 <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./5/file0",  <unfinished ...>
[pid  5399] <... prctl resumed>)        = 0
[pid  5399] setpgid(0, 0 <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5399] <... setpgid resumed>)      = 0
[pid  5062] umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... mkdir resumed>)        = 0
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5399] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5062] openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5399] <... openat resumed>)       = 3
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5062] <... openat resumed>)       = 4
[pid  5399] write(3, "1000", 4 <unfinished ...>
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5399] <... write resumed>)        = 4
[pid  5063] <... openat resumed>)       = 3
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5399] close(3 <unfinished ...>
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5399] <... close resumed>)        = 0
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[   84.517705][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5399] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5063] close(3 <unfinished ...>
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5062] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5399] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./5/file0"./strace-static-x86_64: Process 5400 attached
)          = 0
[pid  5400] set_robust_list(0x55555697c760, 24) = 0
[pid  5400] chdir("./6")                = 0
[pid  5400] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5399] <... memfd_create resumed>) = 3
[pid  5400] <... prctl resumed>)        = 0
[pid  5400] setpgid(0, 0 <unfinished ...>
[pid  5399] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 5400
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3 <unfinished ...>
[pid  5400] <... setpgid resumed>)      = 0
[pid  5399] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5400] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5400] <... openat resumed>)       = 3
[pid  5400] write(3, "1000", 4)         = 4
[pid  5400] close(3)                    = 0
[pid  5400] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5062] rmdir("./5" <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  5400] <... symlink resumed>)      = 0
[pid  5062] <... rmdir resumed>)        = 0
[pid  5062] mkdir("./6", 0777 <unfinished ...>
[pid  5400] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5062] <... mkdir resumed>)        = 0
[pid  5400] <... memfd_create resumed>) = 3
[pid  5400] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5398] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3 <unfinished ...>
[pid  5064] umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5064] newfstatat(AT_FDCWD, "./5/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
./strace-static-x86_64: Process 5401 attached
[pid  5064] newfstatat(4, "",  <unfinished ...>
[pid  5401] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 5401
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./5/file0")          = 0
[pid  5064] getdents64(3,  <unfinished ...>
[pid  5401] <... set_robust_list resumed>) = 0
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5401] chdir("./6" <unfinished ...>
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./5" <unfinished ...>
[pid  5401] <... chdir resumed>)        = 0
[pid  5064] <... rmdir resumed>)        = 0
[pid  5401] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5064] mkdir("./6", 0777)          = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5401] <... prctl resumed>)        = 0
./strace-static-x86_64: Process 5402 attached
[pid  5401] setpgid(0, 0 <unfinished ...>
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 5402
[pid  5402] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5401] <... setpgid resumed>)      = 0
[pid  5401] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5402] <... set_robust_list resumed>) = 0
[pid  5402] chdir("./6")                = 0
[pid  5402] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5402] setpgid(0, 0)               = 0
[pid  5401] <... openat resumed>)       = 3
[pid  5402] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5402] write(3, "1000", 4 <unfinished ...>
[pid  5401] write(3, "1000", 4)         = 4
[pid  5402] <... write resumed>)        = 4
[pid  5401] close(3 <unfinished ...>
[pid  5402] close(3)                    = 0
[pid  5401] <... close resumed>)        = 0
[pid  5402] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5401] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5402] <... symlink resumed>)      = 0
[pid  5401] <... symlink resumed>)      = 0
[pid  5402] memfd_create("syzkaller", 0) = 3
[pid  5402] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5401] memfd_create("syzkaller", 0) = 3
[pid  5401] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5399] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./5/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./5/file0")          = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./5")                = 0
[pid  5066] mkdir("./6", 0777)          = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] close(3)                    = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5403
./strace-static-x86_64: Process 5403 attached
[pid  5401] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5403] set_robust_list(0x55555697c760, 24) = 0
[pid  5403] chdir("./6")                = 0
[pid  5403] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5403] setpgid(0, 0)               = 0
[pid  5400] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5403] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5403] write(3, "1000", 4)         = 4
[pid  5403] close(3)                    = 0
[pid  5403] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5403] memfd_create("syzkaller", 0) = 3
[pid  5403] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5402] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5398] <... write resumed>)        = 16777216
[pid  5398] munmap(0x7f6d986f1000, 138412032) = 0
[pid  5398] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[pid  5398] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5398] close(3)                    = 0
[pid  5398] mkdir("./file0", 0777)      = 0
[   85.284952][ T5398] loop5: detected capacity change from 0 to 32768
[   85.354222][ T5398] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[   85.385465][ T5398] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   85.483094][ T5398] XFS (loop5): Ending clean mount
[pid  5398] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[   85.505363][ T5398] XFS (loop5): Quotacheck needed: Please wait.
[pid  5403] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5402] <... write resumed>)        = 16777216
[pid  5399] <... write resumed>)        = 16777216
[pid  5398] <... mount resumed>)        = 0
[pid  5402] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5399] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5398] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[   85.554532][ T5398] XFS (loop5): Quotacheck: Done.
[pid  5398] chdir("./file0")            = 0
[pid  5398] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5398] close(4)                    = 0
[pid  5398] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5398] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5398] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5398] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5398] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5398] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5398] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5398] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5398] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5398] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5398] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5400] <... write resumed>)        = 16777216
[pid  5399] <... munmap resumed>)       = 0
[pid  5398] write(-1, NULL, 0 <unfinished ...>
[pid  5400] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5398] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5398] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5402] <... munmap resumed>)       = 0
[pid  5398] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5402] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5398] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5402] <... openat resumed>)       = 4
[pid  5398] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5402] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5398] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5398] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5398] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5398] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5398] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5398] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5398] sendfile(5, 4, [100] <unfinished ...>
[pid  5402] <... ioctl resumed>)        = 0
[pid  5402] close(3)                    = 0
[pid  5402] mkdir("./file0", 0777)      = 0
[pid  5402] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5401] <... write resumed>)        = 16777216
[pid  5399] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid  5399] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5401] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5400] <... munmap resumed>)       = 0
[pid  5400] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[   85.646924][ T5402] loop2: detected capacity change from 0 to 32768
[   85.660875][ T5398] syz-executor246 (5398): drop_caches: 2
[   85.678296][ T5399] loop3: detected capacity change from 0 to 32768
[pid  5400] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5399] <... ioctl resumed>)        = 0
[pid  5399] close(3)                    = 0
[pid  5399] mkdir("./file0", 0777)      = 0
[pid  5401] <... munmap resumed>)       = 0
[pid  5399] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5400] <... ioctl resumed>)        = 0
[pid  5400] close(3)                    = 0
[pid  5400] mkdir("./file0", 0777)      = 0
[   85.698813][ T5400] loop1: detected capacity change from 0 to 32768
[   85.706532][ T5402] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[   85.737019][ T5398] syz-executor246 (5398): drop_caches: 2
[pid  5400] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5401] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5398] <... sendfile resumed> => [671], 571) = 571
[pid  5401] <... openat resumed>)       = 4
[pid  5398] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5401] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5398] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5398] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5398] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5398] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5398] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5398] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5398] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5398] exit_group(0 <unfinished ...>
[pid  5401] close(3 <unfinished ...>
[pid  5398] <... exit_group resumed>)   = ?
[   85.743071][ T5402] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   85.766348][ T5401] loop0: detected capacity change from 0 to 32768
[   85.783402][ T5399] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[   85.790813][ T5400] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[pid  5401] <... close resumed>)        = 0
[pid  5398] +++ exited with 0 +++
[pid  5401] mkdir("./file0", 0777 <unfinished ...>
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5398, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=30 /* 0.30 s */} ---
[pid  5401] <... mkdir resumed>)        = 0
[pid  5067] umount2("./6", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5401] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./6/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./6/binderfs")      = 0
[   85.800965][ T5399] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   85.818765][ T5400] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   85.843358][ T5402] XFS (loop2): Ending clean mount
[pid  5067] umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5403] <... write resumed>)        = 16777216
[   85.855102][ T5402] XFS (loop2): Quotacheck needed: Please wait.
[   85.861722][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   85.895042][ T5401] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[pid  5403] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5402] <... mount resumed>)        = 0
[pid  5402] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5402] chdir("./file0" <unfinished ...>
[pid  5403] <... munmap resumed>)       = 0
[pid  5402] <... chdir resumed>)        = 0
[   85.917714][ T5400] XFS (loop1): Ending clean mount
[   85.925176][ T5399] XFS (loop3): Ending clean mount
[   85.931939][ T5402] XFS (loop2): Quotacheck: Done.
[   85.932027][ T5401] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   85.957911][ T5400] XFS (loop1): Quotacheck needed: Please wait.
[pid  5402] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5402] close(4)                    = 0
[pid  5402] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5403] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5402] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5403] <... openat resumed>)       = 4
[pid  5402] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5403] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5402] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[   85.960488][ T5399] XFS (loop3): Quotacheck needed: Please wait.
[pid  5402] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5402] read(-1,  <unfinished ...>
[pid  5403] <... ioctl resumed>)        = 0
[pid  5402] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5402] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5403] close(3 <unfinished ...>
[pid  5402] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5403] <... close resumed>)        = 0
[pid  5402] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5403] mkdir("./file0", 0777 <unfinished ...>
[pid  5402] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5403] <... mkdir resumed>)        = 0
[pid  5402] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5403] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5402] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5402] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5402] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5402] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5400] <... mount resumed>)        = 0
[pid  5402] write(-1, NULL, 0 <unfinished ...>
[pid  5400] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5402] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5402] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5402] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5400] <... openat resumed>)       = 3
[pid  5400] chdir("./file0" <unfinished ...>
[pid  5402] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5400] <... chdir resumed>)        = 0
[pid  5400] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5402] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5400] <... ioctl resumed>)        = 0
[pid  5402] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5400] close(4 <unfinished ...>
[pid  5402] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5400] <... close resumed>)        = 0
[pid  5400] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5402] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5400] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5402] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5400] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5402] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5400] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5402] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5400] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5402] <... openat resumed>)       = 4
[pid  5400] <... open resumed>)         = -1 EFAULT (Bad address)
[   85.996864][ T5403] loop4: detected capacity change from 0 to 32768
[   85.998192][ T5400] XFS (loop1): Quotacheck: Done.
[pid  5402] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5400] ftruncate(-1, 33587195 <unfinished ...>
[pid  5402] <... openat resumed>)       = 5
[pid  5400] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5400] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5402] sendfile(5, 4, [100] <unfinished ...>
[pid  5400] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5400] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5400] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5400] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5400] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5400] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5400] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5400] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5400] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[   86.053929][ T5401] XFS (loop0): Ending clean mount
[   86.066789][ T5401] XFS (loop0): Quotacheck needed: Please wait.
[   86.080518][ T5402] syz-executor246 (5402): drop_caches: 2
[   86.087833][ T5399] XFS (loop3): Quotacheck: Done.
[pid  5400] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5399] <... mount resumed>)        = 0
[pid  5399] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5402] <... sendfile resumed> => [671], 571) = 571
[pid  5399] chdir("./file0")            = 0
[pid  5402] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5399] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5402] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5399] <... ioctl resumed>)        = 0
[pid  5399] close(4 <unfinished ...>
[pid  5402] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5399] <... close resumed>)        = 0
[pid  5402] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5399] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5402] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5399] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5402] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5399] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5402] ftruncate(-1, 33587199 <unfinished ...>
[pid  5399] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5402] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5402] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5399] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5402] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5402] open(NULL, O_RDONLY <unfinished ...>
[pid  5400] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5402] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5400] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5400] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5400] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5402] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5400] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5399] ftruncate(-1, 33587195 <unfinished ...>
[pid  5402] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5399] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5402] read(-1,  <unfinished ...>
[pid  5399] read(-1,  <unfinished ...>
[pid  5402] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5399] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5402] exit_group(0 <unfinished ...>
[pid  5400] <... openat resumed>)       = 4
[pid  5399] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5402] <... exit_group resumed>)   = ?
[pid  5400] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5399] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5400] <... openat resumed>)       = 5
[pid  5400] sendfile(5, 4, [100] <unfinished ...>
[pid  5402] +++ exited with 0 +++
[pid  5399] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[   86.098984][ T5402] syz-executor246 (5402): drop_caches: 2
[   86.109197][ T5403] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[pid  5399] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5402, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=35 /* 0.35 s */} ---
[pid  5399] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5064] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5399] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5064] <... restart_syscall resumed>) = 0
[pid  5399] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5399] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5399] write(-1, NULL, 0 <unfinished ...>
[pid  5064] umount2("./6", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5399] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5399] write(-1, NULL, 0 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5399] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5399] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5064] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5399] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5064] <... openat resumed>)       = 3
[pid  5064] newfstatat(3, "",  <unfinished ...>
[pid  5399] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5399] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5064] getdents64(3,  <unfinished ...>
[pid  5399] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5399] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./6/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5401] <... mount resumed>)        = 0
[pid  5064] unlink("./6/binderfs" <unfinished ...>
[pid  5401] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5064] <... unlink resumed>)       = 0
[pid  5399] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5401] <... openat resumed>)       = 3
[pid  5399] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5064] umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5399] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5399] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5401] chdir("./file0" <unfinished ...>
[pid  5399] <... openat resumed>)       = 4
[pid  5401] <... chdir resumed>)        = 0
[pid  5399] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5401] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5399] <... openat resumed>)       = 5
[pid  5401] <... ioctl resumed>)        = 0
[   86.155976][ T5401] XFS (loop0): Quotacheck: Done.
[   86.166765][ T5403] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   86.182299][ T5400] syz-executor246 (5400): drop_caches: 2
[pid  5399] sendfile(5, 4, [100] <unfinished ...>
[pid  5401] close(4)                    = 0
[pid  5401] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5401] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5401] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5401] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5401] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5401] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5401] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5401] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5401] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5401] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5401] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5401] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5401] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5401] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5401] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5400] <... sendfile resumed> => [671], 571) = 571
[pid  5401] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5400] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5401] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5400] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5401] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5400] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5401] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5400] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5401] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5400] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5401] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5400] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5401] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5400] ftruncate(-1, 33587199 <unfinished ...>
[pid  5401] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5400] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[   86.204220][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   86.207707][ T5399] syz-executor246 (5399): drop_caches: 2
[   86.227185][ T5400] syz-executor246 (5400): drop_caches: 2
[pid  5401] <... openat resumed>)       = 4
[pid  5400] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5401] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5400] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5401] sendfile(5, 4, [100] <unfinished ...>
[pid  5400] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5400] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5400] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5400] exit_group(0)               = ?
[pid  5400] +++ exited with 0 +++
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5400, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=39 /* 0.39 s */} ---
[pid  5063] umount2("./6", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./6/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] unlink("./6/binderfs")      = 0
[   86.290240][ T5401] syz-executor246 (5401): drop_caches: 2
[   86.292008][ T5399] syz-executor246 (5399): drop_caches: 2
[   86.302445][ T5403] XFS (loop4): Ending clean mount
[   86.311751][ T5401] syz-executor246 (5401): drop_caches: 2
[   86.321932][ T5403] XFS (loop4): Quotacheck needed: Please wait.
[pid  5063] umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5067] umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./6/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5399] <... sendfile resumed> => [671], 571) = 571
[pid  5067] umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5399] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5399] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5399] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5399] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./6/file0" <unfinished ...>
[pid  5399] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... rmdir resumed>)        = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./6")                = 0
[pid  5067] mkdir("./7", 0777)          = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5401] <... sendfile resumed> => [671], 571) = 571
[   86.334885][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5399] ftruncate(-1, 33587199 <unfinished ...>
[pid  5067] <... openat resumed>)       = 3
[pid  5401] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5399] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5399] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5401] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5401] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5401] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5399] open(NULL, O_RDONLY <unfinished ...>
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5399] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5399] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5401] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5067] close(3 <unfinished ...>
[pid  5401] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... close resumed>)        = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5401] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5399] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5403] <... mount resumed>)        = 0
[pid  5401] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5399] exit_group(0 <unfinished ...>
[pid  5403] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5399] <... exit_group resumed>)   = ?
[pid  5401] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5401] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5401] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 5452
./strace-static-x86_64: Process 5452 attached
[pid  5401] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5452] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5403] <... openat resumed>)       = 3
[pid  5401] read(-1,  <unfinished ...>
[pid  5399] +++ exited with 0 +++
[pid  5452] <... set_robust_list resumed>) = 0
[pid  5403] chdir("./file0" <unfinished ...>
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5399, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=31 /* 0.31 s */} ---
[pid  5403] <... chdir resumed>)        = 0
[pid  5065] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5452] chdir("./7" <unfinished ...>
[pid  5401] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5401] exit_group(0)               = ?
[pid  5401] +++ exited with 0 +++
[   86.385506][ T5403] XFS (loop4): Quotacheck: Done.
[pid  5452] <... chdir resumed>)        = 0
[pid  5403] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5065] <... restart_syscall resumed>) = 0
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5401, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=27 /* 0.27 s */} ---
[pid  5403] <... ioctl resumed>)        = 0
[pid  5065] umount2("./6", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5452] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5403] close(4 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5452] <... prctl resumed>)        = 0
[pid  5403] <... close resumed>)        = 0
[pid  5065] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] umount2("./6", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5452] setpgid(0, 0 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] <... openat resumed>)       = 3
[pid  5062] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5452] <... setpgid resumed>)      = 0
[pid  5403] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5452] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5403] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5452] <... openat resumed>)       = 3
[pid  5403] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5452] write(3, "1000", 4 <unfinished ...>
[pid  5403] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5403] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5065] umount2("./6/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] umount2("./6/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5403] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5452] <... write resumed>)        = 4
[pid  5403] ftruncate(-1, 33587195 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5403] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5065] newfstatat(AT_FDCWD, "./6/binderfs",  <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./6/binderfs",  <unfinished ...>
[pid  5403] read(-1,  <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5403] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5065] unlink("./6/binderfs" <unfinished ...>
[pid  5062] unlink("./6/binderfs" <unfinished ...>
[pid  5452] close(3 <unfinished ...>
[pid  5403] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5065] <... unlink resumed>)       = 0
[pid  5062] <... unlink resumed>)       = 0
[pid  5452] <... close resumed>)        = 0
[pid  5403] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5065] umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5452] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5403] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5452] <... symlink resumed>)      = 0
[pid  5403] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5452] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5403] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5452] <... memfd_create resumed>) = 3
[pid  5403] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5452] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5403] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5403] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5403] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5403] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5403] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5403] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5403] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5403] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5403] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5403] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[   86.491542][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   86.501240][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5403] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5403] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5403] sendfile(5, 4, [100] <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  5064] umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./6/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[   86.590405][ T5403] syz-executor246 (5403): drop_caches: 2
[pid  5064] rmdir("./6/file0")          = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3 <unfinished ...>
[pid  5403] <... sendfile resumed> => [671], 571) = 571
[pid  5064] <... close resumed>)        = 0
[pid  5064] rmdir("./6")                = 0
[pid  5064] mkdir("./7", 0777)          = 0
[pid  5403] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5403] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5403] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5403] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5403] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5064] <... openat resumed>)       = 3
[   86.676315][ T5403] syz-executor246 (5403): drop_caches: 2
[pid  5403] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5064] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5403] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5064] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5064] close(3 <unfinished ...>
[pid  5403] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5403] exit_group(0)               = ?
[pid  5403] +++ exited with 0 +++
[pid  5064] <... close resumed>)        = 0
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5403, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=34 /* 0.34 s */} ---
[pid  5066] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5066] umount2("./6", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./6/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
./strace-static-x86_64: Process 5453 attached
[pid  5066] newfstatat(AT_FDCWD, "./6/binderfs",  <unfinished ...>
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 5453
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5453] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5066] unlink("./6/binderfs")      = 0
[pid  5453] <... set_robust_list resumed>) = 0
[pid  5066] umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5453] chdir("./7")                = 0
[pid  5453] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5453] setpgid(0, 0)               = 0
[pid  5452] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5453] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5453] write(3, "1000", 4 <unfinished ...>
[pid  5063] <... umount2 resumed>)      = 0
[pid  5453] <... write resumed>)        = 4
[pid  5063] umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5453] close(3)                    = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5453] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./6/file0",  <unfinished ...>
[pid  5453] <... symlink resumed>)      = 0
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5453] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5063] umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5453] <... memfd_create resumed>) = 3
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5453] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[   86.766779][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5453] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4)                    = 0
[pid  5063] rmdir("./6/file0")          = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3)                    = 0
[pid  5063] rmdir("./6")                = 0
[pid  5063] mkdir("./7", 0777)          = 0
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5063] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5063] close(3)                    = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5454
./strace-static-x86_64: Process 5454 attached
[pid  5454] set_robust_list(0x55555697c760, 24) = 0
[pid  5454] chdir("./7")                = 0
[pid  5454] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5454] setpgid(0, 0)               = 0
[pid  5454] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  5454] <... openat resumed>)       = 3
[pid  5454] write(3, "1000", 4)         = 4
[pid  5454] close(3)                    = 0
[pid  5454] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5454] memfd_create("syzkaller", 0) = 3
[pid  5454] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5065] umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./6/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./6/file0")          = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./6")                = 0
[pid  5065] mkdir("./7", 0777)          = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5455 attached
 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  5455] set_robust_list(0x55555697c760, 24) = 0
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 5455
[pid  5062] umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5455] chdir("./7" <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5455] <... chdir resumed>)        = 0
[pid  5062] newfstatat(AT_FDCWD, "./6/file0",  <unfinished ...>
[pid  5455] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5455] <... prctl resumed>)        = 0
[pid  5062] umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5455] setpgid(0, 0 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5455] <... setpgid resumed>)      = 0
[pid  5062] close(4)                    = 0
[pid  5455] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5062] rmdir("./6/file0" <unfinished ...>
[pid  5455] <... openat resumed>)       = 3
[pid  5062] <... rmdir resumed>)        = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./6" <unfinished ...>
[pid  5455] write(3, "1000", 4)         = 4
[pid  5062] <... rmdir resumed>)        = 0
[pid  5062] mkdir("./7", 0777)          = 0
[pid  5455] close(3 <unfinished ...>
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5455] <... close resumed>)        = 0
[pid  5455] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  5455] <... symlink resumed>)      = 0
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3)                    = 0
[pid  5455] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5456
./strace-static-x86_64: Process 5456 attached
[pid  5456] set_robust_list(0x55555697c760, 24) = 0
[pid  5456] chdir("./7")                = 0
[pid  5456] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5456] setpgid(0, 0)               = 0
[pid  5456] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5456] write(3, "1000", 4)         = 4
[pid  5456] close(3 <unfinished ...>
[pid  5455] <... memfd_create resumed>) = 3
[pid  5455] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5456] <... close resumed>)        = 0
[pid  5455] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5456] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5453] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5456] <... symlink resumed>)      = 0
[pid  5456] memfd_create("syzkaller", 0) = 3
[pid  5456] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./6/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./6/file0")          = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./6")                = 0
[pid  5066] mkdir("./7", 0777)          = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] close(3 <unfinished ...>
[pid  5452] <... write resumed>)        = 16777216
[pid  5066] <... close resumed>)        = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5457
./strace-static-x86_64: Process 5457 attached
[pid  5457] set_robust_list(0x55555697c760, 24) = 0
[pid  5457] chdir("./7")                = 0
[pid  5457] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5457] setpgid(0, 0)               = 0
[pid  5457] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5452] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5457] <... openat resumed>)       = 3
[pid  5457] write(3, "1000", 4)         = 4
[pid  5457] close(3)                    = 0
[pid  5457] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5457] memfd_create("syzkaller", 0) = 3
[pid  5457] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5452] <... munmap resumed>)       = 0
[pid  5454] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5452] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[pid  5452] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5452] close(3)                    = 0
[pid  5452] mkdir("./file0", 0777)      = 0
[   87.343929][ T5452] loop5: detected capacity change from 0 to 32768
[pid  5452] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5456] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5453] <... write resumed>)        = 16777216
[   87.449284][ T5452] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[   87.483801][ T5452] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5453] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5455] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5453] <... munmap resumed>)       = 0
[pid  5453] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid  5453] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5453] close(3 <unfinished ...>
[pid  5457] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5453] <... close resumed>)        = 0
[pid  5453] mkdir("./file0", 0777)      = 0
[   87.584764][ T5453] loop2: detected capacity change from 0 to 32768
[pid  5453] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5454] <... write resumed>)        = 16777216
[   87.674977][ T5452] XFS (loop5): Ending clean mount
[   87.676080][ T5453] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[   87.703577][ T5452] XFS (loop5): Quotacheck needed: Please wait.
[pid  5454] munmap(0x7f6d986f1000, 138412032) = 0
[pid  5454] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[   87.739263][ T5453] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   87.742740][ T5452] XFS (loop5): Quotacheck: Done.
[pid  5454] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5452] <... mount resumed>)        = 0
[pid  5452] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5452] chdir("./file0")            = 0
[pid  5452] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5452] close(4)                    = 0
[pid  5452] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5454] <... ioctl resumed>)        = 0
[pid  5452] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5454] close(3)                    = 0
[pid  5454] mkdir("./file0", 0777)      = 0
[pid  5452] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5454] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5452] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5452] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5452] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5452] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[   87.786588][ T5454] loop1: detected capacity change from 0 to 32768
[pid  5452] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5452] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5452] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5452] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5452] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5452] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5452] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[   87.839951][ T5454] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[   87.840698][ T5453] XFS (loop2): Ending clean mount
[   87.855081][ T5454] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5452] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5452] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5452] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5452] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5452] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5452] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5452] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5452] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[   87.885018][ T5453] XFS (loop2): Quotacheck needed: Please wait.
[pid  5452] sendfile(5, 4, [100] <unfinished ...>
[pid  5457] <... write resumed>)        = 16777216
[   87.948323][ T5452] syz-executor246 (5452): drop_caches: 2
[pid  5457] munmap(0x7f6d986f1000, 138412032) = 0
[pid  5457] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5453] <... mount resumed>)        = 0
[pid  5457] <... openat resumed>)       = 4
[pid  5453] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5452] <... sendfile resumed> => [671], 571) = 571
[pid  5457] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5453] <... openat resumed>)       = 3
[   87.994727][ T5454] XFS (loop1): Ending clean mount
[   88.000002][ T5453] XFS (loop2): Quotacheck: Done.
[   88.011872][ T5452] syz-executor246 (5452): drop_caches: 2
[   88.025087][ T5454] XFS (loop1): Quotacheck needed: Please wait.
[pid  5457] <... ioctl resumed>)        = 0
[pid  5453] chdir("./file0" <unfinished ...>
[pid  5452] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5453] <... chdir resumed>)        = 0
[pid  5452] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5453] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5452] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5453] close(4 <unfinished ...>
[pid  5452] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5453] <... close resumed>)        = 0
[pid  5452] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5453] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5452] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5453] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5452] ftruncate(-1, 33587199 <unfinished ...>
[pid  5453] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5452] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5453] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5452] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5453] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5452] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5453] ftruncate(-1, 33587195 <unfinished ...>
[pid  5452] open(NULL, O_RDONLY <unfinished ...>
[pid  5453] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5452] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5457] close(3 <unfinished ...>
[pid  5453] read(-1,  <unfinished ...>
[pid  5452] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5457] <... close resumed>)        = 0
[pid  5453] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5457] mkdir("./file0", 0777 <unfinished ...>
[pid  5453] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5457] <... mkdir resumed>)        = 0
[pid  5453] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5457] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5453] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5452] <... openat resumed>)       = -1 EFAULT (Bad address)
[   88.043468][ T5457] loop4: detected capacity change from 0 to 32768
[pid  5453] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5452] read(-1,  <unfinished ...>
[pid  5454] <... mount resumed>)        = 0
[pid  5453] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5452] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5456] <... write resumed>)        = 16777216
[pid  5453] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5453] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5453] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5453] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5453] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5453] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5454] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5453] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5452] exit_group(0 <unfinished ...>
[pid  5456] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5452] <... exit_group resumed>)   = ?
[pid  5452] +++ exited with 0 +++
[pid  5454] <... openat resumed>)       = 3
[pid  5453] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5452, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=30 /* 0.30 s */} ---
[pid  5454] chdir("./file0" <unfinished ...>
[pid  5453] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5455] <... write resumed>)        = 16777216
[pid  5454] <... chdir resumed>)        = 0
[pid  5453] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5454] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5067] umount2("./7", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5454] <... ioctl resumed>)        = 0
[pid  5454] close(4 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5454] <... close resumed>)        = 0
[pid  5453] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] <... openat resumed>)       = 3
[pid  5454] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5453] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  5454] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5453] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5454] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5453] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5454] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5453] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5454] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5453] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5455] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5453] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5454] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5453] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[   88.076213][ T5454] XFS (loop1): Quotacheck: Done.
[   88.091202][ T5457] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[   88.101875][ T5457] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5454] ftruncate(-1, 33587195 <unfinished ...>
[pid  5456] <... munmap resumed>)       = 0
[pid  5454] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5453] <... openat resumed>)       = 4
[pid  5067] umount2("./7/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5454] read(-1,  <unfinished ...>
[pid  5453] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5454] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5453] <... openat resumed>)       = 5
[pid  5067] newfstatat(AT_FDCWD, "./7/binderfs",  <unfinished ...>
[pid  5454] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5453] sendfile(5, 4, [100] <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5456] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5454] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] unlink("./7/binderfs" <unfinished ...>
[pid  5455] <... munmap resumed>)       = 0
[pid  5454] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5067] <... unlink resumed>)       = 0
[pid  5455] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5456] <... openat resumed>)       = 4
[pid  5455] <... openat resumed>)       = 4
[pid  5454] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5456] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5455] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5454] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5454] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5454] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5454] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5454] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5454] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5454] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5454] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5454] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5456] <... ioctl resumed>)        = 0
[pid  5454] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5456] close(3 <unfinished ...>
[pid  5454] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5456] <... close resumed>)        = 0
[pid  5454] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5456] mkdir("./file0", 0777 <unfinished ...>
[pid  5454] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5456] <... mkdir resumed>)        = 0
[pid  5454] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5456] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5454] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5454] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[   88.169149][ T5453] syz-executor246 (5453): drop_caches: 2
[   88.183838][ T5456] loop0: detected capacity change from 0 to 32768
[   88.186603][ T5457] XFS (loop4): Ending clean mount
[   88.190591][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   88.206043][ T5457] XFS (loop4): Quotacheck needed: Please wait.
[   88.212639][ T5455] loop3: detected capacity change from 0 to 32768
[pid  5454] sendfile(5, 4, [100] <unfinished ...>
[pid  5455] <... ioctl resumed>)        = 0
[pid  5453] <... sendfile resumed> => [671], 571) = 571
[pid  5453] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5453] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5453] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5453] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5453] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5453] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5453] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5455] close(3 <unfinished ...>
[pid  5454] <... sendfile resumed> => [671], 571) = 571
[pid  5455] <... close resumed>)        = 0
[pid  5455] mkdir("./file0", 0777)      = 0
[pid  5454] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5453] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5453] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5454] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5454] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5454] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5455] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5454] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5453] exit_group(0 <unfinished ...>
[pid  5454] ftruncate(-1, 33587199 <unfinished ...>
[pid  5453] <... exit_group resumed>)   = ?
[pid  5454] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5453] +++ exited with 0 +++
[   88.224933][ T5454] syz-executor246 (5454): drop_caches: 2
[   88.226784][ T5453] syz-executor246 (5453): drop_caches: 2
[   88.231306][ T5454] syz-executor246 (5454): drop_caches: 2
[pid  5454] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5453, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=37 /* 0.37 s */} ---
[pid  5454] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5454] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5454] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5454] read(-1,  <unfinished ...>
[pid  5064] umount2("./7", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5454] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5454] exit_group(0 <unfinished ...>
[pid  5064] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5454] <... exit_group resumed>)   = ?
[pid  5064] <... openat resumed>)       = 3
[pid  5064] newfstatat(3, "",  <unfinished ...>
[pid  5454] +++ exited with 0 +++
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5454, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=31 /* 0.31 s */} ---
[pid  5063] umount2("./7", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./7/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] unlink("./7/binderfs")      = 0
[pid  5063] umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./7/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./7/binderfs")      = 0
[   88.274183][ T5456] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[   88.274557][ T5457] XFS (loop4): Quotacheck: Done.
[   88.302590][ T5456] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   88.313354][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5064] umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5457] <... mount resumed>)        = 0
[pid  5457] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5457] chdir("./file0")            = 0
[pid  5457] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5457] close(4)                    = 0
[pid  5457] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5457] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5457] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5457] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5457] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5457] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5457] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5457] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5457] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5457] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5457] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5457] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5457] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5457] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5457] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5457] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[   88.335338][ T5455] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[   88.347276][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5457] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5457] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5457] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5457] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5457] <... openat resumed>)       = 5
[pid  5067] umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5457] sendfile(5, 4, [100] <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./7/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./7/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[   88.390698][ T5455] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./7/file0")          = 0
[pid  5457] <... sendfile resumed> => [671], 571) = 571
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5457] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5457] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5067] close(3 <unfinished ...>
[pid  5457] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[   88.465995][ T5457] syz-executor246 (5457): drop_caches: 2
[   88.468732][ T5456] XFS (loop0): Ending clean mount
[   88.474391][ T5457] syz-executor246 (5457): drop_caches: 2
[pid  5457] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] rmdir("./7" <unfinished ...>
[pid  5457] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5457] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... rmdir resumed>)        = 0
[pid  5457] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5457] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5457] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5067] mkdir("./8", 0777 <unfinished ...>
[pid  5457] read(-1,  <unfinished ...>
[pid  5067] <... mkdir resumed>)        = 0
[pid  5457] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5457] exit_group(0 <unfinished ...>
[pid  5067] <... openat resumed>)       = 3
[pid  5457] <... exit_group resumed>)   = ?
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5457] +++ exited with 0 +++
[   88.514669][ T5456] XFS (loop0): Quotacheck needed: Please wait.
[pid  5067] close(3)                    = 0
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5457, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=34 /* 0.34 s */} ---
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5506 attached
 <unfinished ...>
[pid  5066] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5506] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5066] <... restart_syscall resumed>) = 0
[pid  5066] umount2("./7", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5506] <... set_robust_list resumed>) = 0
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 5506
[pid  5506] chdir("./8" <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5506] <... chdir resumed>)        = 0
[pid  5506] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5066] umount2("./7/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] unlink("./7/binderfs" <unfinished ...>
[pid  5506] <... prctl resumed>)        = 0
[pid  5066] <... unlink resumed>)       = 0
[pid  5066] umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5506] setpgid(0, 0)               = 0
[pid  5506] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5506] write(3, "1000", 4)         = 4
[pid  5506] close(3)                    = 0
[   88.591694][ T5455] XFS (loop3): Ending clean mount
[   88.603530][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   88.629270][ T5455] XFS (loop3): Quotacheck needed: Please wait.
[pid  5506] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5506] memfd_create("syzkaller", 0) = 3
[pid  5506] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[   88.638440][ T5456] XFS (loop0): Quotacheck: Done.
[pid  5456] <... mount resumed>)        = 0
[pid  5456] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5456] chdir("./file0" <unfinished ...>
[pid  5063] <... umount2 resumed>)      = 0
[pid  5456] <... chdir resumed>)        = 0
[pid  5456] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5063] umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5456] close(4)                    = 0
[pid  5456] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5455] <... mount resumed>)        = 0
[pid  5455] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5456] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./7/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./7/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5456] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5063] <... openat resumed>)       = 4
[pid  5456] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5456] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  5455] <... openat resumed>)       = 3
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4)                    = 0
[pid  5456] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5456] ftruncate(-1, 33587195 <unfinished ...>
[pid  5063] rmdir("./7/file0" <unfinished ...>
[pid  5456] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5456] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5063] <... rmdir resumed>)        = 0
[pid  5456] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5455] chdir("./file0" <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5456] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5455] <... chdir resumed>)        = 0
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5456] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5455] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5456] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5455] <... ioctl resumed>)        = 0
[pid  5456] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5455] close(4 <unfinished ...>
[pid  5456] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5455] <... close resumed>)        = 0
[pid  5456] read(-1,  <unfinished ...>
[pid  5063] close(3)                    = 0
[pid  5456] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5063] rmdir("./7" <unfinished ...>
[   88.713594][ T5455] XFS (loop3): Quotacheck: Done.
[pid  5456] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5455] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  5456] write(-1, NULL, 0 <unfinished ...>
[pid  5455] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5456] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5455] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5456] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5456] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5455] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] mkdir("./8", 0777)          = 0
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5456] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5063] <... openat resumed>)       = 3
[pid  5063] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5063] close(3)                    = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5456] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5455] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5455] ftruncate(-1, 33587195 <unfinished ...>
[pid  5456] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5455] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5456] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5455] read(-1, ./strace-static-x86_64: Process 5507 attached
 <unfinished ...>
[pid  5456] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5455] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 5507
[pid  5456] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5507] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5456] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5455] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5456] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5507] <... set_robust_list resumed>) = 0
[pid  5455] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5507] chdir("./8" <unfinished ...>
[pid  5456] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5455] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5455] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5456] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5455] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5507] <... chdir resumed>)        = 0
[pid  5455] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5507] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5456] <... openat resumed>)       = 4
[pid  5455] read(-1,  <unfinished ...>
[pid  5507] <... prctl resumed>)        = 0
[pid  5455] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5507] setpgid(0, 0 <unfinished ...>
[pid  5456] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5455] write(-1, NULL, 0 <unfinished ...>
[pid  5507] <... setpgid resumed>)      = 0
[pid  5455] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5456] <... openat resumed>)       = 5
[pid  5455] write(-1, NULL, 0 <unfinished ...>
[pid  5507] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5455] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5455] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5456] sendfile(5, 4, [100] <unfinished ...>
[pid  5507] <... openat resumed>)       = 3
[pid  5455] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5455] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5507] write(3, "1000", 4)         = 4
[pid  5455] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5507] close(3 <unfinished ...>
[pid  5455] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5507] <... close resumed>)        = 0
[pid  5455] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5507] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5455] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5507] <... symlink resumed>)      = 0
[pid  5455] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5455] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5064] <... umount2 resumed>)      = 0
[pid  5455] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5507] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5455] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5455] sendfile(5, 4, [100] <unfinished ...>
[pid  5507] <... memfd_create resumed>) = 3
[pid  5064] umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5507] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./7/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5507] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5064] openat(AT_FDCWD, "./7/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./7/file0")          = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./7")                = 0
[pid  5064] mkdir("./8", 0777)          = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5508 attached
[   88.887989][ T5456] syz-executor246 (5456): drop_caches: 2
[   88.905630][ T5455] syz-executor246 (5455): drop_caches: 2
[   88.912747][ T5455] syz-executor246 (5455): drop_caches: 2
 <unfinished ...>
[pid  5508] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 5508
[pid  5456] <... sendfile resumed> => [671], 571) = 571
[pid  5508] <... set_robust_list resumed>) = 0
[pid  5508] chdir("./8" <unfinished ...>
[pid  5455] <... sendfile resumed> => [671], 571) = 571
[pid  5508] <... chdir resumed>)        = 0
[pid  5508] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5455] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5508] <... prctl resumed>)        = 0
[pid  5508] setpgid(0, 0)               = 0
[pid  5455] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5508] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5455] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5508] <... openat resumed>)       = 3
[pid  5455] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5508] write(3, "1000", 4 <unfinished ...>
[pid  5455] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5455] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5455] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5508] <... write resumed>)        = 4
[pid  5455] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5508] close(3 <unfinished ...>
[pid  5455] open(NULL, O_RDONLY <unfinished ...>
[pid  5508] <... close resumed>)        = 0
[pid  5455] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5508] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5455] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5455] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5455] exit_group(0)               = ?
[pid  5455] +++ exited with 0 +++
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5455, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=31 /* 0.31 s */} ---
[pid  5065] umount2("./7", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5508] <... symlink resumed>)      = 0
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5508] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5508] <... memfd_create resumed>) = 3
[pid  5065] umount2("./7/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5508] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5065] newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] unlink("./7/binderfs")      = 0
[   88.936712][ T5456] syz-executor246 (5456): drop_caches: 2
[pid  5508] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5456] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5065] umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5456] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5506] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5456] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5456] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5456] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5456] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5456] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5456] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5456] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5456] exit_group(0)               = ?
[pid  5456] +++ exited with 0 +++
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5456, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=31 /* 0.31 s */} ---
[pid  5062] umount2("./7", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./7/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./7/binderfs")      = 0
[   88.985486][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5062] umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./7/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./7/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[   89.039491][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./7/file0")          = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./7")                = 0
[pid  5066] mkdir("./8", 0777)          = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] close(3)                    = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5509 attached
, child_tidptr=0x55555697c750) = 5509
[pid  5509] set_robust_list(0x55555697c760, 24) = 0
[pid  5509] chdir("./8")                = 0
[pid  5509] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5509] setpgid(0, 0)               = 0
[pid  5509] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5509] write(3, "1000", 4)         = 4
[pid  5509] close(3)                    = 0
[pid  5509] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5509] memfd_create("syzkaller", 0) = 3
[pid  5507] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5509] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5508] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  5065] umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./7/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./7/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./7/file0")          = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] <... umount2 resumed>)      = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./7")                = 0
[pid  5065] mkdir("./8", 0777 <unfinished ...>
[pid  5506] <... write resumed>)        = 16777216
[pid  5065] <... mkdir resumed>)        = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5065] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5062] umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5506] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./7/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5062] umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./7/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4 <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 5510
[pid  5062] <... close resumed>)        = 0
[pid  5062] rmdir("./7/file0")          = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./7")                = 0
[pid  5062] mkdir("./8", 0777)          = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5062] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 5510 attached
)       = -1 ENXIO (No such device or address)
[pid  5510] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5062] close(3 <unfinished ...>
[pid  5510] <... set_robust_list resumed>) = 0
[pid  5062] <... close resumed>)        = 0
[pid  5510] chdir("./8" <unfinished ...>
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5511 attached
 <unfinished ...>
[pid  5510] <... chdir resumed>)        = 0
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 5511
[pid  5510] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5510] setpgid(0, 0)               = 0
[pid  5510] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5511] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5510] <... openat resumed>)       = 3
[pid  5511] <... set_robust_list resumed>) = 0
[pid  5510] write(3, "1000", 4 <unfinished ...>
[pid  5511] chdir("./8")                = 0
[pid  5510] <... write resumed>)        = 4
[pid  5506] <... munmap resumed>)       = 0
[pid  5511] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5511] setpgid(0, 0 <unfinished ...>
[pid  5510] close(3 <unfinished ...>
[pid  5511] <... setpgid resumed>)      = 0
[pid  5510] <... close resumed>)        = 0
[pid  5510] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5511] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5510] <... symlink resumed>)      = 0
[pid  5511] <... openat resumed>)       = 3
[pid  5510] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5511] write(3, "1000", 4)         = 4
[pid  5510] <... memfd_create resumed>) = 3
[pid  5510] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5511] close(3)                    = 0
[pid  5511] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5506] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[pid  5506] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5511] <... symlink resumed>)      = 0
[pid  5511] memfd_create("syzkaller", 0) = 3
[pid  5511] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5506] <... ioctl resumed>)        = 0
[pid  5506] close(3)                    = 0
[pid  5506] mkdir("./file0", 0777)      = 0
[   89.554788][ T5506] loop5: detected capacity change from 0 to 32768
[pid  5506] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[   89.607645][ T5506] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[   89.628324][ T5506] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5509] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5507] <... write resumed>)        = 16777216
[pid  5507] munmap(0x7f6d986f1000, 138412032) = 0
[pid  5507] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[   89.795097][ T5506] XFS (loop5): Ending clean mount
[pid  5507] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5507] close(3)                    = 0
[pid  5507] mkdir("./file0", 0777)      = 0
[   89.825442][ T5507] loop1: detected capacity change from 0 to 32768
[   89.850739][ T5506] XFS (loop5): Quotacheck needed: Please wait.
[pid  5507] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5510] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5508] <... write resumed>)        = 16777216
[   89.890196][ T5507] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[pid  5508] munmap(0x7f6d986f1000, 138412032) = 0
[pid  5508] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid  5508] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5508] close(3)                    = 0
[pid  5508] mkdir("./file0", 0777 <unfinished ...>
[pid  5506] <... mount resumed>)        = 0
[pid  5508] <... mkdir resumed>)        = 0
[pid  5508] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5506] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5506] chdir("./file0")            = 0
[pid  5506] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5506] close(4)                    = 0
[   89.943491][ T5507] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   89.964093][ T5508] loop2: detected capacity change from 0 to 32768
[   89.971174][ T5506] XFS (loop5): Quotacheck: Done.
[pid  5506] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5506] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5506] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5506] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5506] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5506] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5506] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5506] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5506] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5506] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5506] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5506] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5506] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5506] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5506] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5506] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5506] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5506] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5506] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5506] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5511] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[   90.047084][ T5507] XFS (loop1): Ending clean mount
[   90.047858][ T5508] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[   90.075475][ T5507] XFS (loop1): Quotacheck needed: Please wait.
[   90.088682][ T5506] syz-executor246 (5506): drop_caches: 2
[pid  5506] sendfile(5, 4, [100] <unfinished ...>
[pid  5509] <... write resumed>)        = 16777216
[   90.105154][ T5508] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5509] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5507] <... mount resumed>)        = 0
[pid  5507] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5507] chdir("./file0")            = 0
[pid  5507] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5507] close(4)                    = 0
[pid  5507] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5506] <... sendfile resumed> => [671], 571) = 571
[pid  5509] <... munmap resumed>)       = 0
[pid  5507] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5506] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5506] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5506] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5506] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5506] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5507] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5509] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5506] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5509] <... openat resumed>)       = 4
[pid  5507] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5506] open(NULL, O_RDONLY <unfinished ...>
[pid  5509] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5507] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5506] <... open resumed>)         = -1 EFAULT (Bad address)
[   90.151130][ T5506] syz-executor246 (5506): drop_caches: 2
[   90.153578][ T5507] XFS (loop1): Quotacheck: Done.
[pid  5506] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5507] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5506] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5509] <... ioctl resumed>)        = 0
[pid  5507] ftruncate(-1, 33587195 <unfinished ...>
[pid  5506] read(-1,  <unfinished ...>
[pid  5507] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5507] read(-1,  <unfinished ...>
[pid  5506] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5507] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5506] exit_group(0 <unfinished ...>
[pid  5507] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5507] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5507] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5507] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5506] <... exit_group resumed>)   = ?
[pid  5507] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5506] +++ exited with 0 +++
[pid  5507] read(-1,  <unfinished ...>
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5506, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=33 /* 0.33 s */} ---
[pid  5507] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5507] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5507] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5067] umount2("./8", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./8/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5507] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5067] newfstatat(AT_FDCWD, "./8/binderfs",  <unfinished ...>
[pid  5507] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5507] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5067] unlink("./8/binderfs" <unfinished ...>
[pid  5507] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5067] <... unlink resumed>)       = 0
[pid  5507] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5067] umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5509] close(3 <unfinished ...>
[pid  5507] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5509] <... close resumed>)        = 0
[pid  5507] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5509] mkdir("./file0", 0777 <unfinished ...>
[pid  5507] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5509] <... mkdir resumed>)        = 0
[pid  5507] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5509] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5507] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5507] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5507] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[   90.204603][ T5509] loop4: detected capacity change from 0 to 32768
[   90.222984][ T5508] XFS (loop2): Ending clean mount
[   90.235225][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   90.241536][ T5508] XFS (loop2): Quotacheck needed: Please wait.
[pid  5507] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5507] sendfile(5, 4, [100] <unfinished ...>
[pid  5510] <... write resumed>)        = 16777216
[pid  5510] munmap(0x7f6d986f1000, 138412032) = 0
[   90.281167][ T5507] syz-executor246 (5507): drop_caches: 2
[   90.315379][ T5509] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[pid  5510] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid  5510] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5507] <... sendfile resumed> => [671], 571) = 571
[pid  5510] close(3)                    = 0
[pid  5510] mkdir("./file0", 0777)      = 0
[pid  5510] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5507] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5507] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[   90.330600][ T5509] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   90.343648][ T5510] loop3: detected capacity change from 0 to 32768
[   90.345729][ T5508] XFS (loop2): Quotacheck: Done.
[   90.356231][ T5507] syz-executor246 (5507): drop_caches: 2
[pid  5507] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5508] <... mount resumed>)        = 0
[pid  5507] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5508] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5507] ftruncate(-1, 33587199 <unfinished ...>
[pid  5508] <... openat resumed>)       = 3
[pid  5507] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5508] chdir("./file0" <unfinished ...>
[pid  5507] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5508] <... chdir resumed>)        = 0
[pid  5507] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5508] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5507] open(NULL, O_RDONLY <unfinished ...>
[pid  5508] <... ioctl resumed>)        = 0
[pid  5507] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5508] close(4 <unfinished ...>
[pid  5507] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5508] <... close resumed>)        = 0
[pid  5507] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5508] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5507] read(-1,  <unfinished ...>
[pid  5508] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5507] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5508] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5507] exit_group(0 <unfinished ...>
[pid  5508] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5507] <... exit_group resumed>)   = ?
[pid  5508] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5507] +++ exited with 0 +++
[pid  5508] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5507, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=24 /* 0.24 s */} ---
[pid  5508] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5508] read(-1,  <unfinished ...>
[pid  5063] umount2("./8", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5508] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5511] <... write resumed>)        = 16777216
[pid  5508] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5063] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5508] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5063] <... openat resumed>)       = 3
[pid  5508] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  5508] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5508] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5508] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5508] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5063] umount2("./8/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5511] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5508] write(-1, NULL, 0 <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5508] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5063] newfstatat(AT_FDCWD, "./8/binderfs",  <unfinished ...>
[pid  5508] write(-1, NULL, 0 <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[   90.436314][ T5510] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[   90.450995][ T5510] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5508] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5063] unlink("./8/binderfs" <unfinished ...>
[pid  5508] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5063] <... unlink resumed>)       = 0
[pid  5508] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5063] umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5508] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5508] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5508] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5508] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5508] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[   90.480051][ T5509] XFS (loop4): Ending clean mount
[   90.490043][ T5509] XFS (loop4): Quotacheck needed: Please wait.
[   90.500723][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5511] <... munmap resumed>)       = 0
[pid  5508] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5508] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5508] sendfile(5, 4, [100] <unfinished ...>
[pid  5509] <... mount resumed>)        = 0
[pid  5509] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5509] chdir("./file0")            = 0
[pid  5511] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[   90.534924][ T5509] XFS (loop4): Quotacheck: Done.
[   90.548451][ T5508] syz-executor246 (5508): drop_caches: 2
[   90.571938][ T5510] XFS (loop3): Ending clean mount
[   90.575228][ T5508] syz-executor246 (5508): drop_caches: 2
[pid  5511] <... openat resumed>)       = 4
[pid  5511] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5509] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5508] <... sendfile resumed> => [671], 571) = 571
[pid  5067] umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5509] <... ioctl resumed>)        = 0
[pid  5508] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5509] close(4 <unfinished ...>
[pid  5508] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5067] newfstatat(AT_FDCWD, "./8/file0",  <unfinished ...>
[pid  5509] <... close resumed>)        = 0
[pid  5508] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5508] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5508] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5509] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5508] ftruncate(-1, 33587199 <unfinished ...>
[pid  5067] openat(AT_FDCWD, "./8/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5509] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5508] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5067] <... openat resumed>)       = 4
[pid  5508] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5509] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5508] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5509] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] newfstatat(4, "",  <unfinished ...>
[pid  5508] open(NULL, O_RDONLY <unfinished ...>
[pid  5509] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5508] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5509] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5511] <... ioctl resumed>)        = 0
[pid  5508] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5509] ftruncate(-1, 33587195 <unfinished ...>
[pid  5508] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5511] close(3 <unfinished ...>
[pid  5509] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5508] read(-1,  <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5511] <... close resumed>)        = 0
[pid  5509] read(-1,  <unfinished ...>
[pid  5508] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5509] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5511] mkdir("./file0", 0777 <unfinished ...>
[pid  5508] exit_group(0 <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5509] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5067] close(4 <unfinished ...>
[pid  5511] <... mkdir resumed>)        = 0
[pid  5067] <... close resumed>)        = 0
[pid  5509] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] rmdir("./8/file0" <unfinished ...>
[pid  5511] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5508] <... exit_group resumed>)   = ?
[pid  5509] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5508] +++ exited with 0 +++
[pid  5509] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5067] <... rmdir resumed>)        = 0
[pid  5509] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5508, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=26 /* 0.26 s */} ---
[pid  5509] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5510] <... mount resumed>)        = 0
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5510] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5509] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5064] <... restart_syscall resumed>) = 0
[pid  5510] <... openat resumed>)       = 3
[pid  5509] read(-1,  <unfinished ...>
[pid  5510] chdir("./file0" <unfinished ...>
[pid  5509] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5067] close(3 <unfinished ...>
[pid  5510] <... chdir resumed>)        = 0
[pid  5509] write(-1, NULL, 0 <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  5510] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5509] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5067] rmdir("./8" <unfinished ...>
[pid  5510] <... ioctl resumed>)        = 0
[pid  5509] write(-1, NULL, 0 <unfinished ...>
[pid  5064] umount2("./8", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5510] close(4 <unfinished ...>
[pid  5509] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5067] <... rmdir resumed>)        = 0
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5510] <... close resumed>)        = 0
[pid  5509] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5064] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5067] mkdir("./9", 0777 <unfinished ...>
[pid  5064] <... openat resumed>)       = 3
[pid  5509] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5064] newfstatat(3, "",  <unfinished ...>
[pid  5509] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5067] <... mkdir resumed>)        = 0
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5510] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5509] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5064] getdents64(3,  <unfinished ...>
[pid  5509] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5510] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5509] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] <... openat resumed>)       = 3
[pid  5509] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5064] umount2("./8/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5510] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5509] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5510] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5509] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5510] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5509] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] close(3 <unfinished ...>
[pid  5510] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5509] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  5064] newfstatat(AT_FDCWD, "./8/binderfs",  <unfinished ...>
[pid  5510] ftruncate(-1, 33587195 <unfinished ...>
[pid  5509] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5510] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5509] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[   90.579101][ T5511] loop0: detected capacity change from 0 to 32768
[   90.586644][ T5510] XFS (loop3): Quotacheck needed: Please wait.
[   90.620606][ T5510] XFS (loop3): Quotacheck: Done.
[pid  5510] read(-1,  <unfinished ...>
[pid  5509] <... openat resumed>)       = 4
[pid  5064] unlink("./8/binderfs"./strace-static-x86_64: Process 5557 attached
 <unfinished ...>
[pid  5557] set_robust_list(0x55555697c760, 24) = 0
[pid  5557] chdir("./9" <unfinished ...>
[pid  5510] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5509] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 5557
[pid  5064] <... unlink resumed>)       = 0
[pid  5510] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5557] <... chdir resumed>)        = 0
[pid  5510] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5509] <... openat resumed>)       = 5
[pid  5064] umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5510] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5509] sendfile(5, 4, [100] <unfinished ...>
[pid  5510] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5557] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5510] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5557] <... prctl resumed>)        = 0
[pid  5557] setpgid(0, 0)               = 0
[pid  5557] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5510] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5557] write(3, "1000", 4 <unfinished ...>
[pid  5510] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5557] <... write resumed>)        = 4
[pid  5510] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5557] close(3 <unfinished ...>
[pid  5510] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5557] <... close resumed>)        = 0
[pid  5510] write(-1, NULL, 0 <unfinished ...>
[pid  5557] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5510] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5510] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5510] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5557] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5510] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5510] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5557] <... memfd_create resumed>) = 3
[pid  5510] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5510] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5557] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5510] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5510] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[   90.670872][ T5511] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[   90.687653][ T5509] syz-executor246 (5509): drop_caches: 2
[   90.708234][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5557] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5510] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5510] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5510] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5510] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5509] <... sendfile resumed> => [671], 571) = 571
[pid  5510] <... openat resumed>)       = 5
[pid  5509] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5510] sendfile(5, 4, [100] <unfinished ...>
[pid  5509] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5509] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5509] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5509] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5509] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5509] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5509] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5509] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5509] exit_group(0)               = ?
[pid  5509] +++ exited with 0 +++
[pid  5063] <... umount2 resumed>)      = 0
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5509, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=31 /* 0.31 s */} ---
[pid  5066] restart_syscall(<... resuming interrupted clone ...>) = 0
[   90.717480][ T5511] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   90.732297][ T5509] syz-executor246 (5509): drop_caches: 2
[   90.760295][ T5510] syz-executor246 (5510): drop_caches: 2
[pid  5066] umount2("./8", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./8/file0",  <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  5063] umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./8/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5066] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./8/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... openat resumed>)       = 4
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5066] newfstatat(AT_FDCWD, "./8/binderfs",  <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] unlink("./8/binderfs" <unfinished ...>
[pid  5063] close(4 <unfinished ...>
[pid  5066] <... unlink resumed>)       = 0
[pid  5063] <... close resumed>)        = 0
[   90.815973][ T5510] syz-executor246 (5510): drop_caches: 2
[pid  5066] umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] rmdir("./8/file0")          = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3)                    = 0
[pid  5510] <... sendfile resumed> => [671], 571) = 571
[pid  5063] rmdir("./8" <unfinished ...>
[pid  5510] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  5510] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5063] mkdir("./9", 0777 <unfinished ...>
[pid  5510] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5063] <... mkdir resumed>)        = 0
[pid  5510] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5063] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5063] close(3 <unfinished ...>
[pid  5510] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5510] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5510] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5510] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 5561
./strace-static-x86_64: Process 5561 attached
[pid  5510] open(NULL, O_RDONLY <unfinished ...>
[pid  5561] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5510] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5561] <... set_robust_list resumed>) = 0
[pid  5510] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5561] chdir("./9" <unfinished ...>
[pid  5510] <... openat resumed>)       = -1 EFAULT (Bad address)
[   90.871868][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   90.883348][ T5511] XFS (loop0): Ending clean mount
[pid  5561] <... chdir resumed>)        = 0
[pid  5510] read(-1,  <unfinished ...>
[pid  5561] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5510] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5561] <... prctl resumed>)        = 0
[pid  5510] exit_group(0 <unfinished ...>
[pid  5561] setpgid(0, 0)               = 0
[pid  5510] <... exit_group resumed>)   = ?
[pid  5561] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5510] +++ exited with 0 +++
[pid  5561] <... openat resumed>)       = 3
[pid  5561] write(3, "1000", 4)         = 4
[pid  5561] close(3)                    = 0
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5510, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=34 /* 0.34 s */} ---
[pid  5561] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5561] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5065] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5561] <... memfd_create resumed>) = 3
[pid  5561] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5065] <... restart_syscall resumed>) = 0
[pid  5065] umount2("./8", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[   90.928109][ T5511] XFS (loop0): Quotacheck needed: Please wait.
[pid  5065] umount2("./8/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] unlink("./8/binderfs")      = 0
[pid  5065] umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5511] <... mount resumed>)        = 0
[pid  5511] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5511] chdir("./file0")            = 0
[pid  5511] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5511] close(4)                    = 0
[pid  5511] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5511] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5511] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5511] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5511] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5511] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5511] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5511] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5511] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5511] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5511] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5511] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5511] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5511] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5511] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5511] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5511] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5511] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5511] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[   91.033460][ T5511] XFS (loop0): Quotacheck: Done.
[pid  5511] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5511] sendfile(5, 4, [100] <unfinished ...>
[pid  5557] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5511] <... sendfile resumed> => [671], 571) = 571
[pid  5511] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5511] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5511] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5511] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5511] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5511] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5511] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5511] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5511] exit_group(0)               = ?
[pid  5511] +++ exited with 0 +++
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5511, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=35 /* 0.35 s */} ---
[pid  5062] restart_syscall(<... resuming interrupted clone ...>) = 0
[   91.072344][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   91.072582][ T5511] syz-executor246 (5511): drop_caches: 2
[   91.089357][ T5511] syz-executor246 (5511): drop_caches: 2
[pid  5062] umount2("./8", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./8/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./8/binderfs")      = 0
[pid  5062] umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] <... umount2 resumed>)      = 0
[pid  5066] newfstatat(AT_FDCWD, "./8/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./8/file0",  <unfinished ...>
[pid  5066] openat(AT_FDCWD, "./8/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] <... openat resumed>)       = 4
[pid  5064] umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] newfstatat(4, "",  <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] openat(AT_FDCWD, "./8/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] <... openat resumed>)       = 4
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5064] newfstatat(4, "",  <unfinished ...>
[pid  5066] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[   91.195566][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5066] close(4 <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] <... close resumed>)        = 0
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5066] rmdir("./8/file0" <unfinished ...>
[pid  5064] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  5064] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5064] close(4 <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] <... close resumed>)        = 0
[pid  5064] rmdir("./8/file0" <unfinished ...>
[pid  5066] close(3 <unfinished ...>
[pid  5064] <... rmdir resumed>)        = 0
[pid  5066] <... close resumed>)        = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] rmdir("./8" <unfinished ...>
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./8" <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  5064] <... rmdir resumed>)        = 0
[pid  5066] mkdir("./9", 0777 <unfinished ...>
[pid  5064] mkdir("./9", 0777 <unfinished ...>
[pid  5066] <... mkdir resumed>)        = 0
[pid  5064] <... mkdir resumed>)        = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  5064] <... openat resumed>)       = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5066] close(3)                    = 0
[pid  5064] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5062] <... umount2 resumed>)      = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5562
./strace-static-x86_64: Process 5563 attached
./strace-static-x86_64: Process 5562 attached
[pid  5062] umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./8/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 5563
[pid  5062] umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5563] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5562] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5563] <... set_robust_list resumed>) = 0
[pid  5562] <... set_robust_list resumed>) = 0
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./8/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4 <unfinished ...>
[pid  5563] chdir("./9" <unfinished ...>
[pid  5562] chdir("./9" <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5563] <... chdir resumed>)        = 0
[pid  5562] <... chdir resumed>)        = 0
[pid  5563] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5562] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5563] <... prctl resumed>)        = 0
[pid  5562] <... prctl resumed>)        = 0
[pid  5563] setpgid(0, 0 <unfinished ...>
[pid  5562] setpgid(0, 0 <unfinished ...>
[pid  5062] rmdir("./8/file0")          = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./8")                = 0
[pid  5062] mkdir("./9", 0777 <unfinished ...>
[pid  5563] <... setpgid resumed>)      = 0
[pid  5562] <... setpgid resumed>)      = 0
[pid  5062] <... mkdir resumed>)        = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5563] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5562] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5563] <... openat resumed>)       = 3
[pid  5562] <... openat resumed>)       = 3
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5062] close(3)                    = 0
[pid  5563] write(3, "1000", 4 <unfinished ...>
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5563] <... write resumed>)        = 4
[pid  5562] write(3, "1000", 4 <unfinished ...>
[pid  5563] close(3)                    = 0
[pid  5563] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5562] <... write resumed>)        = 4
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 5564
./strace-static-x86_64: Process 5564 attached
[pid  5563] <... symlink resumed>)      = 0
[pid  5564] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5562] close(3 <unfinished ...>
[pid  5564] <... set_robust_list resumed>) = 0
[pid  5562] <... close resumed>)        = 0
[pid  5564] chdir("./9")                = 0
[pid  5564] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5564] setpgid(0, 0)               = 0
[pid  5562] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5564] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5564] write(3, "1000", 4)         = 4
[pid  5564] close(3)                    = 0
[pid  5564] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5564] memfd_create("syzkaller", 0) = 3
[pid  5563] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5562] <... symlink resumed>)      = 0
[pid  5564] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5562] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5563] <... memfd_create resumed>) = 3
[pid  5562] <... memfd_create resumed>) = 3
[pid  5562] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5563] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5561] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  5065] umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./8/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./8/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./8/file0")          = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./8")                = 0
[pid  5065] mkdir("./9", 0777)          = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5565
./strace-static-x86_64: Process 5565 attached
[pid  5565] set_robust_list(0x55555697c760, 24) = 0
[pid  5565] chdir("./9")                = 0
[pid  5565] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5565] setpgid(0, 0)               = 0
[pid  5565] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5565] write(3, "1000", 4)         = 4
[pid  5565] close(3)                    = 0
[pid  5565] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5565] memfd_create("syzkaller", 0) = 3
[pid  5565] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5557] <... write resumed>)        = 16777216
[pid  5557] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5564] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5557] <... munmap resumed>)       = 0
[pid  5562] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5557] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[pid  5557] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5563] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5557] close(3)                    = 0
[pid  5557] mkdir("./file0", 0777)      = 0
[   91.854779][ T5557] loop5: detected capacity change from 0 to 32768
[   91.901549][ T5557] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[   91.954117][ T5557] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5557] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5565] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5561] <... write resumed>)        = 16777216
[pid  5561] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5563] <... write resumed>)        = 16777216
[   92.097714][ T5557] XFS (loop5): Ending clean mount
[pid  5563] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5561] <... munmap resumed>)       = 0
[pid  5563] <... munmap resumed>)       = 0
[pid  5563] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5561] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5563] <... openat resumed>)       = 4
[pid  5561] <... openat resumed>)       = 4
[pid  5563] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5561] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5564] <... write resumed>)        = 16777216
[pid  5563] <... ioctl resumed>)        = 0
[pid  5564] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5563] close(3)                    = 0
[pid  5563] mkdir("./file0", 0777)      = 0
[pid  5563] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5561] <... ioctl resumed>)        = 0
[   92.145042][ T5557] XFS (loop5): Quotacheck needed: Please wait.
[   92.176783][ T5561] loop1: detected capacity change from 0 to 32768
[   92.183869][ T5563] loop4: detected capacity change from 0 to 32768
[pid  5561] close(3 <unfinished ...>
[pid  5557] <... mount resumed>)        = 0
[pid  5557] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5564] <... munmap resumed>)       = 0
[pid  5561] <... close resumed>)        = 0
[pid  5564] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5561] mkdir("./file0", 0777 <unfinished ...>
[pid  5557] <... openat resumed>)       = 3
[pid  5564] <... openat resumed>)       = 4
[pid  5564] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5557] chdir("./file0")            = 0
[pid  5557] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5557] close(4)                    = 0
[pid  5557] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5557] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5557] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5561] <... mkdir resumed>)        = 0
[pid  5557] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5557] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5557] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[   92.213026][ T5557] XFS (loop5): Quotacheck: Done.
[   92.237247][ T5564] loop0: detected capacity change from 0 to 32768
[   92.242299][ T5563] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[pid  5557] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5557] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5557] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5557] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5564] <... ioctl resumed>)        = 0
[pid  5561] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5557] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5557] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5557] write(-1, NULL, 0 <unfinished ...>
[pid  5564] close(3 <unfinished ...>
[pid  5557] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5564] <... close resumed>)        = 0
[pid  5557] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5564] mkdir("./file0", 0777 <unfinished ...>
[pid  5557] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5564] <... mkdir resumed>)        = 0
[pid  5557] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5564] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5557] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5557] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5557] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5557] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5557] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5557] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5557] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[   92.268845][ T5563] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   92.298683][ T5561] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[pid  5557] sendfile(5, 4, [100] <unfinished ...>
[pid  5565] <... write resumed>)        = 16777216
[   92.334337][ T5561] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   92.362442][ T5557] syz-executor246 (5557): drop_caches: 2
[   92.371439][ T5564] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[pid  5565] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5557] <... sendfile resumed> => [671], 571) = 571
[pid  5557] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5565] <... munmap resumed>)       = 0
[pid  5557] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5557] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5565] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5557] <... open resumed>)         = -1 EFAULT (Bad address)
[   92.385810][ T5564] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   92.401733][ T5557] syz-executor246 (5557): drop_caches: 2
[pid  5557] ftruncate(-1, 33587199 <unfinished ...>
[pid  5565] <... openat resumed>)       = 4
[pid  5562] <... write resumed>)        = 16777216
[pid  5557] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5562] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5565] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5557] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5557] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5557] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5557] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5557] exit_group(0 <unfinished ...>
[pid  5565] <... ioctl resumed>)        = 0
[pid  5562] <... munmap resumed>)       = 0
[pid  5557] <... exit_group resumed>)   = ?
[pid  5565] close(3 <unfinished ...>
[pid  5562] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5557] +++ exited with 0 +++
[   92.448603][ T5561] XFS (loop1): Ending clean mount
[   92.458015][ T5565] loop3: detected capacity change from 0 to 32768
[   92.471313][ T5564] XFS (loop0): Ending clean mount
[   92.472257][ T5561] XFS (loop1): Quotacheck needed: Please wait.
[   92.483081][ T5563] XFS (loop4): Ending clean mount
[pid  5565] <... close resumed>)        = 0
[pid  5562] <... openat resumed>)       = 4
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5557, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=32 /* 0.32 s */} ---
[pid  5565] mkdir("./file0", 0777 <unfinished ...>
[pid  5562] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5565] <... mkdir resumed>)        = 0
[pid  5562] <... ioctl resumed>)        = 0
[pid  5562] close(3)                    = 0
[pid  5562] mkdir("./file0", 0777)      = 0
[pid  5565] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5561] <... mount resumed>)        = 0
[pid  5562] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5561] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5067] umount2("./9", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5561] chdir("./file0" <unfinished ...>
[pid  5067] <... openat resumed>)       = 3
[   92.495319][ T5564] XFS (loop0): Quotacheck needed: Please wait.
[   92.504820][ T5562] loop2: detected capacity change from 0 to 32768
[   92.513068][ T5563] XFS (loop4): Quotacheck needed: Please wait.
[   92.518224][ T5561] XFS (loop1): Quotacheck: Done.
[pid  5561] <... chdir resumed>)        = 0
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  5564] <... mount resumed>)        = 0
[pid  5561] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5561] close(4)                    = 0
[pid  5561] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5561] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5561] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5561] ftruncate(-1, 33587195 <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5561] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5561] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5561] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5564] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5561] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5564] <... openat resumed>)       = 3
[pid  5067] umount2("./9/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5561] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5564] chdir("./file0" <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5564] <... chdir resumed>)        = 0
[pid  5564] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5561] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5561] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5067] newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5564] close(4)                    = 0
[pid  5564] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5067] unlink("./9/binderfs" <unfinished ...>
[pid  5564] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... unlink resumed>)       = 0
[pid  5564] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5561] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5067] umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5561] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5561] read(-1,  <unfinished ...>
[pid  5564] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5561] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5561] write(-1, NULL, 0 <unfinished ...>
[pid  5564] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5561] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5561] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5561] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5561] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5561] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5563] <... mount resumed>)        = 0
[pid  5561] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5563] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5561] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5561] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5563] <... openat resumed>)       = 3
[pid  5561] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5563] chdir("./file0" <unfinished ...>
[pid  5561] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5563] <... chdir resumed>)        = 0
[pid  5561] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5563] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5561] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5564] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5563] <... ioctl resumed>)        = 0
[pid  5561] <... openat resumed>)       = 4
[pid  5564] ftruncate(-1, 33587195 <unfinished ...>
[pid  5563] close(4 <unfinished ...>
[pid  5561] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5564] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5563] <... close resumed>)        = 0
[pid  5561] <... openat resumed>)       = 5
[pid  5564] read(-1,  <unfinished ...>
[pid  5563] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5561] sendfile(5, 4, [100] <unfinished ...>
[pid  5564] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5564] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5563] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5564] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5563] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5564] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5563] <... open resumed>)         = -1 EFAULT (Bad address)
[   92.544921][ T5564] XFS (loop0): Quotacheck: Done.
[   92.545541][ T5563] XFS (loop4): Quotacheck: Done.
[   92.569621][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   92.581710][ T5562] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[pid  5564] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5563] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5564] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5563] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5564] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5563] ftruncate(-1, 33587195 <unfinished ...>
[pid  5564] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5563] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5564] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5563] read(-1,  <unfinished ...>
[pid  5564] read(-1,  <unfinished ...>
[pid  5563] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5564] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5563] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5564] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5563] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5564] write(-1, NULL, 0 <unfinished ...>
[pid  5563] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5564] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5563] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5564] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5563] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5564] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5564] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5563] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5564] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5563] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5564] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5563] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5564] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5563] read(-1,  <unfinished ...>
[pid  5564] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5563] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5564] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5563] write(-1, NULL, 0 <unfinished ...>
[pid  5564] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5563] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5564] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5563] write(-1, NULL, 0 <unfinished ...>
[pid  5564] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5563] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5564] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5563] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5564] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5563] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5564] <... openat resumed>)       = 4
[   92.611348][ T5561] syz-executor246 (5561): drop_caches: 2
[   92.630757][ T5565] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[pid  5564] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5563] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5564] sendfile(5, 4, [100] <unfinished ...>
[pid  5561] <... sendfile resumed> => [671], 571) = 571
[pid  5563] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5561] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5563] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5563] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5561] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5563] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5561] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5563] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5561] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5563] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5563] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5561] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5563] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5563] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5561] <... open resumed>)         = -1 EFAULT (Bad address)
[   92.655276][ T5562] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   92.655680][ T5561] syz-executor246 (5561): drop_caches: 2
[   92.668113][ T5564] syz-executor246 (5564): drop_caches: 2
[   92.679927][ T5565] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   92.706390][ T5563] syz-executor246 (5563): drop_caches: 2
[pid  5563] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5563] sendfile(5, 4, [100] <unfinished ...>
[pid  5561] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5561] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5561] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5561] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5561] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5561] exit_group(0)               = ?
[pid  5561] +++ exited with 0 +++
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5561, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=34 /* 0.34 s */} ---
[pid  5063] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5063] umount2("./9", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5563] <... sendfile resumed> => [671], 571) = 571
[pid  5063] <... openat resumed>)       = 3
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./9/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] unlink("./9/binderfs")      = 0
[pid  5063] umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5563] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5564] <... sendfile resumed> => [671], 571) = 571
[pid  5564] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5564] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5564] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5564] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5564] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5564] open(NULL, O_RDONLY <unfinished ...>
[pid  5563] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5564] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5564] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5564] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5563] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5564] exit_group(0)               = ?
[pid  5564] +++ exited with 0 +++
[pid  5563] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5563] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5564, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=31 /* 0.31 s */} ---
[pid  5062] umount2("./9", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5563] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  5563] ftruncate(-1, 33587199 <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5563] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5563] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5563] <... openat resumed>)       = -1 EFAULT (Bad address)
[   92.722306][ T5564] syz-executor246 (5564): drop_caches: 2
[   92.734393][ T5563] syz-executor246 (5563): drop_caches: 2
[   92.751811][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5062] umount2("./9/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5563] open(NULL, O_RDONLY <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5563] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] newfstatat(AT_FDCWD, "./9/binderfs",  <unfinished ...>
[pid  5563] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5563] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] unlink("./9/binderfs" <unfinished ...>
[pid  5563] read(-1,  <unfinished ...>
[pid  5062] <... unlink resumed>)       = 0
[pid  5062] umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5563] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5563] exit_group(0)               = ?
[pid  5563] +++ exited with 0 +++
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5563, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=36 /* 0.36 s */} ---
[pid  5066] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5066] umount2("./9", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./9/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] unlink("./9/binderfs")      = 0
[   92.782721][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   92.839744][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   92.865353][ T5565] XFS (loop3): Ending clean mount
[   92.870553][ T5562] XFS (loop2): Ending clean mount
[   92.894728][ T5565] XFS (loop3): Quotacheck needed: Please wait.
[   92.902697][ T5562] XFS (loop2): Quotacheck needed: Please wait.
[pid  5066] umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5565] <... mount resumed>)        = 0
[   92.944372][ T5565] XFS (loop3): Quotacheck: Done.
[pid  5565] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5565] chdir("./file0")            = 0
[pid  5565] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5565] close(4)                    = 0
[pid  5565] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5565] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5565] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5565] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5565] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5565] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5565] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5565] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5565] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5565] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5565] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5565] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5565] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5565] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5565] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5562] <... mount resumed>)        = 0
[pid  5565] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5565] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5565] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5562] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5565] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5562] <... openat resumed>)       = 3
[pid  5565] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5562] chdir("./file0" <unfinished ...>
[pid  5565] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5562] <... chdir resumed>)        = 0
[pid  5565] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5562] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5565] <... openat resumed>)       = 4
[pid  5562] <... ioctl resumed>)        = 0
[pid  5565] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5562] close(4 <unfinished ...>
[pid  5565] <... openat resumed>)       = 5
[pid  5562] <... close resumed>)        = 0
[pid  5565] sendfile(5, 4, [100] <unfinished ...>
[pid  5562] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5562] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5562] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5562] ftruncate(-1, 33587195 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5562] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5562] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5562] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5562] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5562] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[   92.969229][ T5562] XFS (loop2): Quotacheck: Done.
[pid  5562] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5562] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5562] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5562] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5562] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5562] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5562] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5562] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5562] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5562] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5562] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5562] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5562] sendfile(5, 4, [100] <unfinished ...>
[pid  5067] umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./9/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./9/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./9/file0")          = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./9")                = 0
[pid  5067] mkdir("./10", 0777)         = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[   93.018703][ T5565] syz-executor246 (5565): drop_caches: 2
[   93.029115][ T5562] syz-executor246 (5562): drop_caches: 2
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5614 attached
, child_tidptr=0x55555697c750) = 5614
[pid  5614] set_robust_list(0x55555697c760, 24) = 0
[pid  5614] chdir("./10")               = 0
[pid  5614] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5614] setpgid(0, 0)               = 0
[pid  5614] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5614] write(3, "1000", 4)         = 4
[pid  5614] close(3)                    = 0
[pid  5614] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5614] memfd_create("syzkaller", 0) = 3
[pid  5614] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5562] <... sendfile resumed> => [671], 571) = 571
[pid  5565] <... sendfile resumed> => [671], 571) = 571
[pid  5565] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5565] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5565] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5565] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5565] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5565] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5565] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5565] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5565] exit_group(0)               = ?
[   93.080680][ T5565] syz-executor246 (5565): drop_caches: 2
[   93.094398][ T5562] syz-executor246 (5562): drop_caches: 2
[pid  5565] +++ exited with 0 +++
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5565, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=32 /* 0.32 s */} ---
[pid  5065] umount2("./9", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5562] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5562] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5065] <... openat resumed>)       = 3
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  5562] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5562] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] umount2("./9/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5562] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5065] newfstatat(AT_FDCWD, "./9/binderfs",  <unfinished ...>
[pid  5562] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5562] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5562] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5065] unlink("./9/binderfs" <unfinished ...>
[pid  5562] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5562] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5065] <... unlink resumed>)       = 0
[pid  5562] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5065] umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5562] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5562] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5562] exit_group(0)               = ?
[pid  5562] +++ exited with 0 +++
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5562, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=27 /* 0.27 s */} ---
[pid  5064] umount2("./9", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./9/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./9/binderfs")      = 0
[   93.165878][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   93.213395][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5064] umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... umount2 resumed>)      = 0
[pid  5063] umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./9/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] <... umount2 resumed>)      = 0
[pid  5063] openat(AT_FDCWD, "./9/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4)                    = 0
[pid  5063] rmdir("./9/file0" <unfinished ...>
[pid  5062] umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] newfstatat(AT_FDCWD, "./9/file0",  <unfinished ...>
[pid  5063] close(3)                    = 0
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] rmdir("./9" <unfinished ...>
[pid  5062] umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] mkdir("./10", 0777 <unfinished ...>
[pid  5062] openat(AT_FDCWD, "./9/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] <... mkdir resumed>)        = 0
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] <... openat resumed>)       = 3
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5063] close(3 <unfinished ...>
[pid  5062] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] <... close resumed>)        = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./9/file0"./strace-static-x86_64: Process 5617 attached
 <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 5617
[pid  5062] <... rmdir resumed>)        = 0
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5617] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./9")                = 0
[pid  5617] <... set_robust_list resumed>) = 0
[pid  5062] mkdir("./10", 0777)         = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3)                    = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5617] chdir("./10")               = 0
./strace-static-x86_64: Process 5618 attached
[pid  5617] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 5618
[pid  5617] <... prctl resumed>)        = 0
[pid  5618] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5617] setpgid(0, 0)               = 0
[pid  5618] <... set_robust_list resumed>) = 0
[pid  5618] chdir("./10" <unfinished ...>
[pid  5617] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5618] <... chdir resumed>)        = 0
[pid  5618] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5618] setpgid(0, 0)               = 0
[pid  5617] <... openat resumed>)       = 3
[pid  5066] <... umount2 resumed>)      = 0
[pid  5618] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5618] write(3, "1000", 4)         = 4
[pid  5618] close(3)                    = 0
[pid  5618] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5618] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5617] write(3, "1000", 4 <unfinished ...>
[pid  5618] <... memfd_create resumed>) = 3
[pid  5066] umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5618] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5618] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5066] newfstatat(AT_FDCWD, "./9/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5617] <... write resumed>)        = 4
[pid  5066] umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./9/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./9/file0")          = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./9" <unfinished ...>
[pid  5617] close(3 <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  5066] mkdir("./10", 0777 <unfinished ...>
[pid  5617] <... close resumed>)        = 0
[pid  5066] <... mkdir resumed>)        = 0
[pid  5617] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5617] <... symlink resumed>)      = 0
[pid  5066] <... openat resumed>)       = 3
[pid  5066] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5617] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5066] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5617] <... memfd_create resumed>) = 3
[pid  5066] close(3)                    = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5619 attached
 <unfinished ...>
[pid  5619] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5617] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5619] <... set_robust_list resumed>) = 0
[pid  5617] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 5619
[pid  5619] chdir("./10")               = 0
[pid  5619] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5619] setpgid(0, 0)               = 0
[pid  5619] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5619] write(3, "1000", 4)         = 4
[pid  5619] close(3)                    = 0
[pid  5619] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5619] memfd_create("syzkaller", 0) = 3
[pid  5619] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5614] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  5065] umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./9/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./9/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] <... umount2 resumed>)      = 0
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./9/file0")          = 0
[pid  5064] umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] newfstatat(AT_FDCWD, "./9/file0",  <unfinished ...>
[pid  5065] close(3 <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] <... close resumed>)        = 0
[pid  5064] umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./9/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] rmdir("./9" <unfinished ...>
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./9/file0" <unfinished ...>
[pid  5065] <... rmdir resumed>)        = 0
[pid  5064] <... rmdir resumed>)        = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./9")                = 0
[pid  5064] mkdir("./10", 0777)         = 0
[pid  5065] mkdir("./10", 0777 <unfinished ...>
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5065] <... mkdir resumed>)        = 0
[pid  5064] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5064] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5064] close(3 <unfinished ...>
[pid  5065] <... openat resumed>)       = 3
[pid  5064] <... close resumed>)        = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5065] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 5621
[pid  5065] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
./strace-static-x86_64: Process 5621 attached
[pid  5621] set_robust_list(0x55555697c760, 24) = 0
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5622 attached
 <unfinished ...>
[pid  5621] chdir("./10" <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 5622
[pid  5621] <... chdir resumed>)        = 0
[pid  5621] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5621] setpgid(0, 0)               = 0
[pid  5621] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5622] set_robust_list(0x55555697c760, 24) = 0
[pid  5621] write(3, "1000", 4 <unfinished ...>
[pid  5622] chdir("./10")               = 0
[pid  5622] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5622] setpgid(0, 0)               = 0
[pid  5622] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5621] <... write resumed>)        = 4
[pid  5621] close(3)                    = 0
[pid  5621] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5622] <... openat resumed>)       = 3
[pid  5621] <... symlink resumed>)      = 0
[pid  5621] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5622] write(3, "1000", 4)         = 4
[pid  5622] close(3 <unfinished ...>
[pid  5621] <... memfd_create resumed>) = 3
[pid  5622] <... close resumed>)        = 0
[pid  5621] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5622] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5622] memfd_create("syzkaller", 0) = 3
[pid  5622] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5617] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5618] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5619] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5614] <... write resumed>)        = 16777216
[pid  5614] munmap(0x7f6d986f1000, 138412032) = 0
[pid  5614] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[pid  5614] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5622] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5621] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5614] <... ioctl resumed>)        = 0
[pid  5614] close(3)                    = 0
[   94.161747][ T5614] loop5: detected capacity change from 0 to 32768
[pid  5614] mkdir("./file0", 0777)      = 0
[pid  5614] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5618] <... write resumed>)        = 16777216
[   94.277344][ T5614] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[   94.317315][ T5614] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5618] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5622] <... write resumed>)        = 16777216
[pid  5622] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5618] <... munmap resumed>)       = 0
[pid  5617] <... write resumed>)        = 16777216
[pid  5618] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5617] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5618] <... openat resumed>)       = 4
[pid  5618] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5618] close(3)                    = 0
[pid  5618] mkdir("./file0", 0777 <unfinished ...>
[pid  5622] <... munmap resumed>)       = 0
[pid  5618] <... mkdir resumed>)        = 0
[pid  5617] <... munmap resumed>)       = 0
[pid  5622] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5618] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5622] <... openat resumed>)       = 4
[pid  5622] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[   94.452519][ T5618] loop0: detected capacity change from 0 to 32768
[   94.460659][ T5614] XFS (loop5): Ending clean mount
[   94.469797][ T5614] XFS (loop5): Quotacheck needed: Please wait.
[pid  5617] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid  5617] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5622] <... ioctl resumed>)        = 0
[pid  5614] <... mount resumed>)        = 0
[pid  5622] close(3 <unfinished ...>
[pid  5614] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5622] <... close resumed>)        = 0
[pid  5619] <... write resumed>)        = 16777216
[pid  5617] <... ioctl resumed>)        = 0
[pid  5614] chdir("./file0" <unfinished ...>
[pid  5617] close(3)                    = 0
[pid  5617] mkdir("./file0", 0777 <unfinished ...>
[pid  5622] mkdir("./file0", 0777 <unfinished ...>
[pid  5617] <... mkdir resumed>)        = 0
[pid  5614] <... chdir resumed>)        = 0
[pid  5614] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5617] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5622] <... mkdir resumed>)        = 0
[pid  5614] <... ioctl resumed>)        = 0
[pid  5614] close(4 <unfinished ...>
[pid  5622] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5614] <... close resumed>)        = 0
[pid  5614] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5614] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5614] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5614] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5614] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5614] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5614] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5614] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5614] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5614] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5619] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5614] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5614] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[   94.504089][ T5622] loop3: detected capacity change from 0 to 32768
[   94.518457][ T5614] XFS (loop5): Quotacheck: Done.
[   94.519795][ T5617] loop1: detected capacity change from 0 to 32768
[   94.534993][ T5618] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[pid  5614] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5614] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5621] <... write resumed>)        = 16777216
[pid  5619] <... munmap resumed>)       = 0
[pid  5619] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5621] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5619] <... openat resumed>)       = 4
[pid  5619] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5614] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5614] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5614] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5614] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[   94.571637][ T5618] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   94.593035][ T5617] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[   94.609008][ T5619] loop4: detected capacity change from 0 to 32768
[pid  5614] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5614] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5614] sendfile(5, 4, [100] <unfinished ...>
[pid  5619] <... ioctl resumed>)        = 0
[pid  5619] close(3)                    = 0
[pid  5619] mkdir("./file0", 0777 <unfinished ...>
[pid  5621] <... munmap resumed>)       = 0
[pid  5619] <... mkdir resumed>)        = 0
[pid  5619] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5621] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[   94.612189][ T5622] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[   94.629652][ T5617] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   94.647439][ T5622] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5621] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5621] close(3)                    = 0
[pid  5621] mkdir("./file0", 0777)      = 0
[pid  5621] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5614] <... sendfile resumed> => [671], 571) = 571
[pid  5614] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[   94.675100][ T5614] syz-executor246 (5614): drop_caches: 2
[   94.681928][ T5621] loop2: detected capacity change from 0 to 32768
[   94.685413][ T5614] syz-executor246 (5614): drop_caches: 2
[   94.698142][ T5619] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[   94.707648][ T5619] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   94.711732][ T5618] XFS (loop0): Ending clean mount
[pid  5614] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[   94.729019][ T5618] XFS (loop0): Quotacheck needed: Please wait.
[   94.745705][ T5617] XFS (loop1): Ending clean mount
[   94.756034][ T5622] XFS (loop3): Ending clean mount
[pid  5614] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5614] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5614] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5614] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5614] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5618] <... mount resumed>)        = 0
[pid  5614] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5618] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5618] chdir("./file0")            = 0
[pid  5618] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5618] close(4)                    = 0
[pid  5618] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5618] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5618] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5614] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5618] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5614] exit_group(0 <unfinished ...>
[pid  5618] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5618] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5618] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5618] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5618] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5618] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5614] <... exit_group resumed>)   = ?
[pid  5618] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5614] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5614, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=35 /* 0.35 s */} ---
[   94.774138][ T5617] XFS (loop1): Quotacheck needed: Please wait.
[   94.780371][ T5618] XFS (loop0): Quotacheck: Done.
[   94.782374][ T5622] XFS (loop3): Quotacheck needed: Please wait.
[   94.793814][ T5621] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[   94.794627][ T5619] XFS (loop4): Ending clean mount
[   94.810523][ T5619] XFS (loop4): Quotacheck needed: Please wait.
[pid  5618] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5617] <... mount resumed>)        = 0
[pid  5619] <... mount resumed>)        = 0
[pid  5619] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5067] umount2("./10", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5619] chdir("./file0")            = 0
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5619] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5067] <... openat resumed>)       = 3
[pid  5618] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5618] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5618] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5622] <... mount resumed>)        = 0
[pid  5619] <... ioctl resumed>)        = 0
[pid  5618] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5617] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  5622] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5619] close(4 <unfinished ...>
[pid  5618] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5617] <... openat resumed>)       = 3
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5622] <... openat resumed>)       = 3
[pid  5619] <... close resumed>)        = 0
[pid  5618] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5617] chdir("./file0" <unfinished ...>
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5622] chdir("./file0" <unfinished ...>
[pid  5619] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5618] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5617] <... chdir resumed>)        = 0
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5622] <... chdir resumed>)        = 0
[pid  5619] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5618] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5617] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5067] umount2("./10/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5619] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5618] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5617] <... ioctl resumed>)        = 0
[pid  5622] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5618] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5617] close(4 <unfinished ...>
[pid  5622] <... ioctl resumed>)        = 0
[pid  5619] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5618] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5617] <... close resumed>)        = 0
[pid  5622] close(4 <unfinished ...>
[pid  5619] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5618] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5617] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5067] newfstatat(AT_FDCWD, "./10/binderfs",  <unfinished ...>
[pid  5622] <... close resumed>)        = 0
[pid  5622] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5622] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5622] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5622] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5622] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5622] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5617] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5618] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5622] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5619] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5618] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5617] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5067] unlink("./10/binderfs" <unfinished ...>
[pid  5622] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5619] ftruncate(-1, 33587195 <unfinished ...>
[pid  5618] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5617] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... unlink resumed>)       = 0
[pid  5622] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5619] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5618] <... openat resumed>)       = 4
[pid  5617] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5067] umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5622] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5619] read(-1,  <unfinished ...>
[pid  5618] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5617] <... open resumed>)         = -1 EFAULT (Bad address)
[   94.854584][ T5621] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   94.866362][ T5617] XFS (loop1): Quotacheck: Done.
[   94.871676][ T5619] XFS (loop4): Quotacheck: Done.
[   94.878444][ T5622] XFS (loop3): Quotacheck: Done.
[pid  5622] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5622] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5622] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5622] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5622] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5622] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5622] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5619] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5618] <... openat resumed>)       = 5
[pid  5617] ftruncate(-1, 33587195 <unfinished ...>
[pid  5619] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5618] sendfile(5, 4, [100] <unfinished ...>
[pid  5617] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5622] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5619] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5617] read(-1,  <unfinished ...>
[pid  5622] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5619] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5617] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5622] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5619] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[   94.926871][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5617] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5622] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5619] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5617] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5622] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5617] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5617] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5617] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5617] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5617] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5617] write(-1, NULL, 0 <unfinished ...>
[pid  5619] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5617] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5617] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5622] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5619] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5617] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5619] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5617] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5617] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5617] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5617] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5617] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5617] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5622] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5619] read(-1,  <unfinished ...>
[pid  5617] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[   94.968293][ T5618] syz-executor246 (5618): drop_caches: 2
[   94.982066][ T5621] XFS (loop2): Ending clean mount
[   95.002064][ T5621] XFS (loop2): Quotacheck needed: Please wait.
[   95.004938][ T5617] syz-executor246 (5617): drop_caches: 2
[pid  5617] sendfile(5, 4, [100] <unfinished ...>
[pid  5622] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5619] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5619] write(-1, NULL, 0 <unfinished ...>
[pid  5622] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5619] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5622] <... openat resumed>)       = 4
[pid  5619] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5619] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5619] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5619] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5619] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5622] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5619] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5622] <... openat resumed>)       = 5
[pid  5619] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[   95.009650][ T5618] syz-executor246 (5618): drop_caches: 2
[pid  5618] <... sendfile resumed> => [671], 571) = 571
[pid  5622] sendfile(5, 4, [100] <unfinished ...>
[pid  5619] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5619] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5619] sendfile(5, 4, [100] <unfinished ...>
[pid  5618] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5618] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5618] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[   95.040112][ T5622] syz-executor246 (5622): drop_caches: 2
[   95.061930][ T5617] syz-executor246 (5617): drop_caches: 2
[   95.069715][ T5621] XFS (loop2): Quotacheck: Done.
[   95.070525][ T5622] syz-executor246 (5622): drop_caches: 2
[pid  5621] <... mount resumed>)        = 0
[pid  5618] ftruncate(-1, 33587199 <unfinished ...>
[pid  5622] <... sendfile resumed> => [671], 571) = 571
[pid  5621] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5618] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5617] <... sendfile resumed> => [671], 571) = 571
[pid  5618] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5621] <... openat resumed>)       = 3
[pid  5617] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5621] chdir("./file0" <unfinished ...>
[pid  5618] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5621] <... chdir resumed>)        = 0
[pid  5618] open(NULL, O_RDONLY <unfinished ...>
[pid  5622] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5621] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5618] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5617] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5621] <... ioctl resumed>)        = 0
[pid  5618] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5621] close(4 <unfinished ...>
[pid  5618] <... openat resumed>)       = -1 EFAULT (Bad address)
[   95.085396][ T5619] syz-executor246 (5619): drop_caches: 2
[pid  5621] <... close resumed>)        = 0
[pid  5618] read(-1,  <unfinished ...>
[pid  5622] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5618] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5617] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5621] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5618] exit_group(0 <unfinished ...>
[pid  5621] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5618] <... exit_group resumed>)   = ?
[pid  5617] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5621] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5622] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5621] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5618] +++ exited with 0 +++
[pid  5617] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5618, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=33 /* 0.33 s */} ---
[pid  5062] umount2("./10", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5617] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5622] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5621] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5622] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5617] ftruncate(-1, 33587199 <unfinished ...>
[pid  5621] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5622] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5617] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5622] ftruncate(-1, 33587199 <unfinished ...>
[pid  5617] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5617] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5622] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5062] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5622] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5617] open(NULL, O_RDONLY <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  5617] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5622] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5617] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5622] open(NULL, O_RDONLY <unfinished ...>
[pid  5621] ftruncate(-1, 33587195 <unfinished ...>
[pid  5617] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5622] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5621] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5617] read(-1,  <unfinished ...>
[pid  5622] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5617] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5622] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5622] read(-1,  <unfinished ...>
[pid  5621] read(-1,  <unfinished ...>
[pid  5617] exit_group(0 <unfinished ...>
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  5622] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5617] <... exit_group resumed>)   = ?
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5622] exit_group(0 <unfinished ...>
[pid  5617] +++ exited with 0 +++
[pid  5621] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5622] <... exit_group resumed>)   = ?
[pid  5621] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5617, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=30 /* 0.30 s */} ---
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5621] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] umount2("./10/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5621] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] umount2("./10", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./10/binderfs",  <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] unlink("./10/binderfs" <unfinished ...>
[pid  5621] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5063] <... openat resumed>)       = 3
[pid  5062] <... unlink resumed>)       = 0
[pid  5621] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  5062] umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5622] +++ exited with 0 +++
[pid  5621] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5622, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} ---
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5619] <... sendfile resumed> => [671], 571) = 571
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5621] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5619] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5063] umount2("./10/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5621] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5621] read(-1,  <unfinished ...>
[pid  5619] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5065] umount2("./10", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5621] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5619] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./10/binderfs",  <unfinished ...>
[pid  5621] write(-1, NULL, 0 <unfinished ...>
[pid  5619] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5621] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5619] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5065] <... openat resumed>)       = 3
[   95.121153][ T5619] syz-executor246 (5619): drop_caches: 2
[   95.155375][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5063] unlink("./10/binderfs" <unfinished ...>
[pid  5621] write(-1, NULL, 0 <unfinished ...>
[pid  5619] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  5063] <... unlink resumed>)       = 0
[pid  5621] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5619] ftruncate(-1, 33587199 <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5621] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5619] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5621] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5619] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5621] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5619] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5065] umount2("./10/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5621] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5619] open(NULL, O_RDONLY <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5619] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] newfstatat(AT_FDCWD, "./10/binderfs",  <unfinished ...>
[pid  5619] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5621] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5619] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5065] unlink("./10/binderfs" <unfinished ...>
[pid  5621] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5619] read(-1,  <unfinished ...>
[pid  5065] <... unlink resumed>)       = 0
[pid  5619] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5065] umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5621] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5619] exit_group(0 <unfinished ...>
[pid  5621] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5619] <... exit_group resumed>)   = ?
[pid  5621] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5619] +++ exited with 0 +++
[pid  5621] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5619, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=35 /* 0.35 s */} ---
[pid  5621] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5066] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5621] <... openat resumed>)       = 4
[pid  5621] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5066] <... restart_syscall resumed>) = 0
[   95.184452][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5621] sendfile(5, 4, [100] <unfinished ...>
[pid  5066] umount2("./10", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] <... umount2 resumed>)      = 0
[pid  5066] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  5067] umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5621] <... sendfile resumed> => [671], 571) = 571
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5067] newfstatat(AT_FDCWD, "./10/file0",  <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5621] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5066] umount2("./10/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[   95.230672][ T5621] syz-executor246 (5621): drop_caches: 2
[   95.243408][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   95.266216][ T5621] syz-executor246 (5621): drop_caches: 2
[pid  5066] unlink("./10/binderfs" <unfinished ...>
[pid  5621] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5067] openat(AT_FDCWD, "./10/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5066] <... unlink resumed>)       = 0
[pid  5066] umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... openat resumed>)       = 4
[pid  5621] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5067] newfstatat(4, "",  <unfinished ...>
[pid  5621] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5621] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5621] ftruncate(-1, 33587199 <unfinished ...>
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5621] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5067] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5621] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5621] open(NULL, O_RDONLY <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4 <unfinished ...>
[pid  5621] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5621] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5067] <... close resumed>)        = 0
[pid  5621] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5067] rmdir("./10/file0" <unfinished ...>
[pid  5621] exit_group(0 <unfinished ...>
[pid  5067] <... rmdir resumed>)        = 0
[pid  5621] <... exit_group resumed>)   = ?
[pid  5621] +++ exited with 0 +++
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5621, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=31 /* 0.31 s */} ---
[pid  5064] umount2("./10", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./10/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./10/binderfs",  <unfinished ...>
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./10/binderfs" <unfinished ...>
[pid  5067] close(3 <unfinished ...>
[pid  5064] <... unlink resumed>)       = 0
[pid  5064] umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[   95.334431][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5067] rmdir("./10")               = 0
[pid  5067] mkdir("./11", 0777)         = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5673
./strace-static-x86_64: Process 5673 attached
[pid  5673] set_robust_list(0x55555697c760, 24) = 0
[   95.391348][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5673] chdir("./11")               = 0
[pid  5673] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5673] setpgid(0, 0)               = 0
[pid  5673] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5673] write(3, "1000", 4)         = 4
[pid  5673] close(3)                    = 0
[pid  5673] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5673] memfd_create("syzkaller", 0) = 3
[pid  5673] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5062] <... umount2 resumed>)      = 0
[pid  5062] umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./10/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./10/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./10/file0")         = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] <... umount2 resumed>)      = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./10")               = 0
[pid  5062] mkdir("./11", 0777)         = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3)                    = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5674
./strace-static-x86_64: Process 5674 attached
[pid  5674] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5065] umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5674] <... set_robust_list resumed>) = 0
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./10/file0",  <unfinished ...>
[pid  5674] chdir("./11" <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5674] <... chdir resumed>)        = 0
[pid  5065] umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5674] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./10/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5674] setpgid(0, 0)               = 0
[pid  5065] <... openat resumed>)       = 4
[pid  5065] newfstatat(4, "",  <unfinished ...>
[pid  5674] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5674] <... openat resumed>)       = 3
[pid  5065] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./10/file0" <unfinished ...>
[pid  5674] write(3, "1000", 4 <unfinished ...>
[pid  5065] <... rmdir resumed>)        = 0
[pid  5674] <... write resumed>)        = 4
[pid  5674] close(3 <unfinished ...>
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5674] <... close resumed>)        = 0
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5674] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5065] close(3 <unfinished ...>
[pid  5674] <... symlink resumed>)      = 0
[pid  5065] <... close resumed>)        = 0
[pid  5674] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5065] rmdir("./10")               = 0
[pid  5674] <... memfd_create resumed>) = 3
[pid  5065] mkdir("./11", 0777 <unfinished ...>
[pid  5674] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5065] <... mkdir resumed>)        = 0
[pid  5674] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5063] <... umount2 resumed>)      = 0
[pid  5065] close(3)                    = 0
[pid  5063] umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./10/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./10/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5063] rmdir("./10/file0")         = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3)                    = 0
[pid  5063] rmdir("./10")               = 0
[pid  5063] mkdir("./11", 0777)         = 0
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5063] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5063] close(3)                    = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 5675
./strace-static-x86_64: Process 5675 attached
[pid  5675] set_robust_list(0x55555697c760, 24) = 0
[pid  5675] chdir("./11" <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 5676
./strace-static-x86_64: Process 5676 attached
[pid  5676] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5675] <... chdir resumed>)        = 0
[pid  5676] <... set_robust_list resumed>) = 0
[pid  5675] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5676] chdir("./11" <unfinished ...>
[pid  5675] <... prctl resumed>)        = 0
[pid  5675] setpgid(0, 0)               = 0
[pid  5676] <... chdir resumed>)        = 0
[pid  5675] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5676] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5675] <... openat resumed>)       = 3
[pid  5676] setpgid(0, 0 <unfinished ...>
[pid  5675] write(3, "1000", 4 <unfinished ...>
[pid  5676] <... setpgid resumed>)      = 0
[pid  5675] <... write resumed>)        = 4
[pid  5676] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5675] close(3 <unfinished ...>
[pid  5676] write(3, "1000", 4)         = 4
[pid  5676] close(3)                    = 0
[pid  5676] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5675] <... close resumed>)        = 0
[pid  5675] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5676] memfd_create("syzkaller", 0) = 3
[pid  5676] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5675] <... symlink resumed>)      = 0
[pid  5675] memfd_create("syzkaller", 0) = 3
[pid  5675] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./10/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./10/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./10/file0")         = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./10")               = 0
[pid  5066] mkdir("./11", 0777)         = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] close(3)                    = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5677
[pid  5064] <... umount2 resumed>)      = 0
./strace-static-x86_64: Process 5677 attached
[pid  5677] set_robust_list(0x55555697c760, 24) = 0
[pid  5677] chdir("./11")               = 0
[pid  5677] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5677] setpgid(0, 0)               = 0
[pid  5677] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5064] umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5677] write(3, "1000", 4)         = 4
[pid  5677] close(3)                    = 0
[pid  5677] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5677] memfd_create("syzkaller", 0) = 3
[pid  5677] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./10/file0",  <unfinished ...>
[pid  5673] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./10/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./10/file0")         = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./10")               = 0
[pid  5064] mkdir("./11", 0777)         = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5678 attached
, child_tidptr=0x55555697c750) = 5678
[pid  5678] set_robust_list(0x55555697c760, 24) = 0
[pid  5678] chdir("./11")               = 0
[pid  5678] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5678] setpgid(0, 0)               = 0
[pid  5678] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5678] write(3, "1000", 4)         = 4
[pid  5678] close(3)                    = 0
[pid  5678] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5678] memfd_create("syzkaller", 0) = 3
[pid  5678] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5674] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5676] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5675] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5677] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5678] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5673] <... write resumed>)        = 16777216
[pid  5673] munmap(0x7f6d986f1000, 138412032) = 0
[pid  5673] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[pid  5673] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5673] close(3)                    = 0
[pid  5673] mkdir("./file0", 0777)      = 0
[   96.584602][ T5673] loop5: detected capacity change from 0 to 32768
[pid  5674] <... write resumed>)        = 16777216
[pid  5673] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5674] munmap(0x7f6d986f1000, 138412032) = 0
[pid  5676] <... write resumed>)        = 16777216
[pid  5674] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5676] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5675] <... write resumed>)        = 16777216
[pid  5674] <... openat resumed>)       = 4
[   96.706095][ T5673] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[pid  5676] <... munmap resumed>)       = 0
[pid  5675] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5674] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5676] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5674] <... ioctl resumed>)        = 0
[pid  5676] <... openat resumed>)       = 4
[pid  5676] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5674] close(3)                    = 0
[pid  5674] mkdir("./file0", 0777)      = 0
[pid  5674] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5678] <... write resumed>)        = 16777216
[pid  5678] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5676] <... ioctl resumed>)        = 0
[pid  5676] close(3)                    = 0
[pid  5676] mkdir("./file0", 0777)      = 0
[pid  5678] <... munmap resumed>)       = 0
[   96.754151][ T5673] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   96.783567][ T5674] loop0: detected capacity change from 0 to 32768
[   96.795710][ T5676] loop1: detected capacity change from 0 to 32768
[pid  5676] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5678] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid  5675] <... munmap resumed>)       = 0
[pid  5678] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5675] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[   96.844510][ T5678] loop2: detected capacity change from 0 to 32768
[   96.850042][ T5674] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[   96.857509][ T5673] XFS (loop5): Ending clean mount
[   96.860046][ T5674] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   96.869015][ T5675] loop3: detected capacity change from 0 to 32768
[   96.887261][ T5673] XFS (loop5): Quotacheck needed: Please wait.
[pid  5675] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5677] <... write resumed>)        = 16777216
[pid  5678] <... ioctl resumed>)        = 0
[pid  5675] <... ioctl resumed>)        = 0
[pid  5678] close(3 <unfinished ...>
[pid  5677] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5675] close(3 <unfinished ...>
[pid  5678] <... close resumed>)        = 0
[pid  5675] <... close resumed>)        = 0
[pid  5678] mkdir("./file0", 0777)      = 0
[pid  5677] <... munmap resumed>)       = 0
[pid  5675] mkdir("./file0", 0777 <unfinished ...>
[pid  5678] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5677] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5675] <... mkdir resumed>)        = 0
[pid  5677] <... openat resumed>)       = 4
[   96.897259][ T5676] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[   96.931096][ T5676] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   96.939606][ T5677] loop4: detected capacity change from 0 to 32768
[pid  5677] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5675] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5677] <... ioctl resumed>)        = 0
[pid  5677] close(3)                    = 0
[pid  5677] mkdir("./file0", 0777 <unfinished ...>
[pid  5673] <... mount resumed>)        = 0
[pid  5673] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5673] chdir("./file0" <unfinished ...>
[pid  5677] <... mkdir resumed>)        = 0
[pid  5673] <... chdir resumed>)        = 0
[pid  5673] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5673] close(4 <unfinished ...>
[pid  5677] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5673] <... close resumed>)        = 0
[pid  5673] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5673] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5673] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5673] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5673] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5673] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[   96.946944][ T5673] XFS (loop5): Quotacheck: Done.
[   96.965037][ T5678] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[   96.978416][ T5674] XFS (loop0): Ending clean mount
[pid  5673] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5673] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5673] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5673] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5673] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5673] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5673] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5673] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5673] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5673] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5673] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5673] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5673] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5673] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[   97.001706][ T5677] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[   97.002610][ T5675] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[   97.015086][ T5674] XFS (loop0): Quotacheck needed: Please wait.
[   97.027549][ T5678] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   97.036627][ T5675] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   97.053840][ T5677] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   97.065294][ T5676] XFS (loop1): Ending clean mount
[   97.089735][ T5674] XFS (loop0): Quotacheck: Done.
[   97.097747][ T5673] syz-executor246 (5673): drop_caches: 2
[pid  5673] sendfile(5, 4, [100] <unfinished ...>
[pid  5674] <... mount resumed>)        = 0
[pid  5674] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5674] chdir("./file0")            = 0
[pid  5674] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5674] close(4)                    = 0
[pid  5674] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5674] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5674] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[   97.098232][ T5676] XFS (loop1): Quotacheck needed: Please wait.
[   97.129723][ T5677] XFS (loop4): Ending clean mount
[   97.132623][ T5675] XFS (loop3): Ending clean mount
[   97.141586][ T5677] XFS (loop4): Quotacheck needed: Please wait.
[   97.146264][ T5673] syz-executor246 (5673): drop_caches: 2
[pid  5674] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5674] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5674] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5677] <... mount resumed>)        = 0
[pid  5674] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5674] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5674] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5674] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5674] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5674] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5674] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5674] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5674] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5674] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5673] <... sendfile resumed> => [671], 571) = 571
[pid  5674] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5673] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5677] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5674] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5673] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5677] <... openat resumed>)       = 3
[pid  5676] <... mount resumed>)        = 0
[pid  5674] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5673] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5677] chdir("./file0" <unfinished ...>
[pid  5676] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5674] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5673] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5677] <... chdir resumed>)        = 0
[pid  5676] <... openat resumed>)       = 3
[pid  5674] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5673] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5677] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5676] chdir("./file0" <unfinished ...>
[pid  5674] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5673] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5677] <... ioctl resumed>)        = 0
[pid  5676] <... chdir resumed>)        = 0
[pid  5674] <... openat resumed>)       = 4
[pid  5673] ftruncate(-1, 33587199 <unfinished ...>
[pid  5677] close(4 <unfinished ...>
[pid  5676] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5674] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5673] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5677] <... close resumed>)        = 0
[pid  5676] <... ioctl resumed>)        = 0
[pid  5674] <... openat resumed>)       = 5
[pid  5673] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5677] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5676] close(4 <unfinished ...>
[pid  5674] sendfile(5, 4, [100] <unfinished ...>
[pid  5673] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5677] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5677] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5677] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5676] <... close resumed>)        = 0
[pid  5673] open(NULL, O_RDONLY <unfinished ...>
[pid  5676] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5673] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5677] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5676] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5673] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5677] ftruncate(-1, 33587195 <unfinished ...>
[pid  5676] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5673] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5676] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5673] read(-1,  <unfinished ...>
[pid  5677] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5676] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5673] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5677] read(-1,  <unfinished ...>
[pid  5673] exit_group(0 <unfinished ...>
[pid  5677] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5676] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5673] <... exit_group resumed>)   = ?
[pid  5677] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5676] ftruncate(-1, 33587195 <unfinished ...>
[pid  5677] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5677] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5676] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5677] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5676] read(-1,  <unfinished ...>
[pid  5673] +++ exited with 0 +++
[pid  5676] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5673, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=32 /* 0.32 s */} ---
[pid  5676] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5677] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5676] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5067] umount2("./11", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5677] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5676] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5677] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5676] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5067] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5677] read(-1,  <unfinished ...>
[pid  5676] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... openat resumed>)       = 3
[pid  5677] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5676] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  5677] write(-1, NULL, 0 <unfinished ...>
[pid  5676] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5677] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5676] read(-1,  <unfinished ...>
[   97.171985][ T5677] XFS (loop4): Quotacheck: Done.
[   97.172122][ T5676] XFS (loop1): Quotacheck: Done.
[   97.185076][ T5675] XFS (loop3): Quotacheck needed: Please wait.
[   97.206913][ T5674] syz-executor246 (5674): drop_caches: 2
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5677] write(-1, NULL, 0 <unfinished ...>
[pid  5676] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5677] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5676] write(-1, NULL, 0 <unfinished ...>
[pid  5067] umount2("./11/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5677] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5676] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5677] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5676] write(-1, NULL, 0 <unfinished ...>
[pid  5067] newfstatat(AT_FDCWD, "./11/binderfs",  <unfinished ...>
[pid  5677] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5676] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5677] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5676] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5067] unlink("./11/binderfs" <unfinished ...>
[pid  5677] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5676] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5067] <... unlink resumed>)       = 0
[pid  5676] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5067] umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5676] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5675] <... mount resumed>)        = 0
[pid  5674] <... sendfile resumed> => [671], 571) = 571
[pid  5675] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5674] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5677] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5676] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5675] <... openat resumed>)       = 3
[pid  5674] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5675] chdir("./file0" <unfinished ...>
[pid  5674] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5675] <... chdir resumed>)        = 0
[pid  5674] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5675] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5677] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5676] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5675] <... ioctl resumed>)        = 0
[pid  5677] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5676] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5674] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5677] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5676] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5675] close(4 <unfinished ...>
[pid  5674] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5674] ftruncate(-1, 33587199 <unfinished ...>
[pid  5675] <... close resumed>)        = 0
[pid  5674] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5677] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5676] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[   97.231369][ T5675] XFS (loop3): Quotacheck: Done.
[   97.238576][ T5674] syz-executor246 (5674): drop_caches: 2
[   97.245055][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5675] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5674] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5677] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5676] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5674] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5677] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5676] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5675] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5674] open(NULL, O_RDONLY <unfinished ...>
[pid  5677] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5676] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5675] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5674] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5677] <... openat resumed>)       = 4
[pid  5675] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5674] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5675] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5677] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5676] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5675] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5674] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5677] <... openat resumed>)       = 5
[pid  5676] <... openat resumed>)       = 4
[pid  5677] sendfile(5, 4, [100] <unfinished ...>
[pid  5676] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5675] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5674] read(-1,  <unfinished ...>
[pid  5676] <... openat resumed>)       = 5
[   97.276448][ T5678] XFS (loop2): Ending clean mount
[pid  5675] read(-1,  <unfinished ...>
[pid  5674] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5676] sendfile(5, 4, [100] <unfinished ...>
[pid  5675] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5674] exit_group(0 <unfinished ...>
[pid  5675] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5674] <... exit_group resumed>)   = ?
[pid  5675] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5675] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5674] +++ exited with 0 +++
[pid  5675] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5674, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=32 /* 0.32 s */} ---
[pid  5675] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5062] umount2("./11", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5675] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5062] umount2("./11/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5675] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5675] write(-1, NULL, 0 <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./11/binderfs",  <unfinished ...>
[pid  5675] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5675] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5062] unlink("./11/binderfs" <unfinished ...>
[pid  5675] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5062] <... unlink resumed>)       = 0
[pid  5675] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5062] umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5675] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5675] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5675] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5675] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5675] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[   97.314524][ T5676] syz-executor246 (5676): drop_caches: 2
[   97.320173][ T5678] XFS (loop2): Quotacheck needed: Please wait.
[   97.332290][ T5677] syz-executor246 (5677): drop_caches: 2
[pid  5675] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5675] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5678] <... mount resumed>)        = 0
[pid  5675] sendfile(5, 4, [100] <unfinished ...>
[pid  5678] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5678] chdir("./file0" <unfinished ...>
[pid  5677] <... sendfile resumed> => [671], 571) = 571
[pid  5678] <... chdir resumed>)        = 0
[pid  5677] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5678] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5677] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5678] <... ioctl resumed>)        = 0
[pid  5677] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5678] close(4 <unfinished ...>
[pid  5677] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5677] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5677] ftruncate(-1, 33587199 <unfinished ...>
[pid  5678] <... close resumed>)        = 0
[pid  5677] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5676] <... sendfile resumed> => [671], 571) = 571
[pid  5678] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5678] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5677] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5676] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5678] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5677] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5676] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5677] open(NULL, O_RDONLY <unfinished ...>
[pid  5676] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5677] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5676] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5677] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5676] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5677] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5676] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5677] read(-1,  <unfinished ...>
[pid  5676] ftruncate(-1, 33587199 <unfinished ...>
[pid  5677] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5676] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5677] exit_group(0 <unfinished ...>
[pid  5676] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5677] <... exit_group resumed>)   = ?
[pid  5676] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5678] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5677] +++ exited with 0 +++
[pid  5676] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5677, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=44 /* 0.44 s */} ---
[pid  5678] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5676] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5678] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[   97.382655][ T5678] XFS (loop2): Quotacheck: Done.
[   97.385481][ T5676] syz-executor246 (5676): drop_caches: 2
[   97.409764][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   97.415006][ T5675] syz-executor246 (5675): drop_caches: 2
[   97.420086][ T5677] syz-executor246 (5677): drop_caches: 2
[pid  5678] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5676] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5676] exit_group(0)               = ?
[pid  5066] umount2("./11", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5676] +++ exited with 0 +++
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./11/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] unlink("./11/binderfs" <unfinished ...>
[pid  5678] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5066] <... unlink resumed>)       = 0
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5676, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=35 /* 0.35 s */} ---
[pid  5678] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5675] <... sendfile resumed> => [671], 571) = 571
[pid  5066] umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5678] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5675] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5678] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5678] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5063] umount2("./11", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5678] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5675] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5678] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5675] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5678] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5063] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5678] read(-1,  <unfinished ...>
[pid  5675] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5678] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5675] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5063] <... openat resumed>)       = 3
[pid  5678] write(-1, NULL, 0 <unfinished ...>
[pid  5675] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  5678] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5675] ftruncate(-1, 33587199 <unfinished ...>
[pid  5678] write(-1, NULL, 0 <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5675] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5678] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5678] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5675] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5678] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5675] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5675] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5678] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5675] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5063] umount2("./11/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5678] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5063] newfstatat(AT_FDCWD, "./11/binderfs",  <unfinished ...>
[pid  5678] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5678] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5063] unlink("./11/binderfs" <unfinished ...>
[pid  5675] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5675] read(-1,  <unfinished ...>
[pid  5063] <... unlink resumed>)       = 0
[pid  5678] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5675] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5063] umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5678] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5675] exit_group(0 <unfinished ...>
[pid  5678] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5675] <... exit_group resumed>)   = ?
[pid  5678] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5675] +++ exited with 0 +++
[pid  5678] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5678] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5675, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=29 /* 0.29 s */} ---
[pid  5678] <... openat resumed>)       = 4
[   97.462613][ T5675] syz-executor246 (5675): drop_caches: 2
[   97.485538][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5065] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5678] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5065] <... restart_syscall resumed>) = 0
[pid  5678] <... openat resumed>)       = 5
[pid  5065] umount2("./11", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5678] sendfile(5, 4, [100] <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] umount2("./11/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] unlink("./11/binderfs")     = 0
[   97.539679][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   97.578405][ T5678] syz-executor246 (5678): drop_caches: 2
[pid  5065] umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5678] <... sendfile resumed> => [671], 571) = 571
[pid  5678] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5678] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5678] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5678] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5678] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5678] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5678] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5678] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5678] exit_group(0)               = ?
[pid  5678] +++ exited with 0 +++
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5678, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=29 /* 0.29 s */} ---
[pid  5064] restart_syscall(<... resuming interrupted clone ...>) = 0
[   97.625612][ T5678] syz-executor246 (5678): drop_caches: 2
[   97.631549][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5064] umount2("./11", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./11/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./11/binderfs" <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5064] <... unlink resumed>)       = 0
[pid  5064] umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./11/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./11/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./11/file0")         = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./11")               = 0
[pid  5067] mkdir("./12", 0777)         = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5727
./strace-static-x86_64: Process 5727 attached
[pid  5727] set_robust_list(0x55555697c760, 24) = 0
[pid  5727] chdir("./12")               = 0
[pid  5727] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[   97.720493][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5727] setpgid(0, 0)               = 0
[pid  5727] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5727] write(3, "1000", 4)         = 4
[pid  5727] close(3)                    = 0
[pid  5727] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5727] memfd_create("syzkaller", 0) = 3
[pid  5727] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  5062] umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./11/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5727] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5062] umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./11/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./11/file0")         = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./11")               = 0
[pid  5062] mkdir("./12", 0777)         = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3)                    = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5728
./strace-static-x86_64: Process 5728 attached
[pid  5728] set_robust_list(0x55555697c760, 24) = 0
[pid  5728] chdir("./12")               = 0
[pid  5728] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5728] setpgid(0, 0)               = 0
[pid  5728] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5728] write(3, "1000", 4)         = 4
[pid  5728] close(3)                    = 0
[pid  5728] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5728] memfd_create("syzkaller", 0) = 3
[pid  5728] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./11/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./11/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./11/file0")         = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./11")               = 0
[pid  5066] mkdir("./12", 0777)         = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5063] <... umount2 resumed>)      = 0
[pid  5065] <... umount2 resumed>)      = 0
[pid  5065] umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./11/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./11/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] <... openat resumed>)       = 3
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5063] umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5065] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5065] close(4 <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./11/file0",  <unfinished ...>
[pid  5066] close(3 <unfinished ...>
[pid  5065] <... close resumed>)        = 0
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] <... close resumed>)        = 0
[pid  5065] rmdir("./11/file0" <unfinished ...>
[pid  5063] umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5065] <... rmdir resumed>)        = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./11/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 5730 attached
 <unfinished ...>
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5063] <... openat resumed>)       = 4
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 5730
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5730] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5065] close(3 <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] <... close resumed>)        = 0
[pid  5065] rmdir("./11" <unfinished ...>
[pid  5730] <... set_robust_list resumed>) = 0
[pid  5065] <... rmdir resumed>)        = 0
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5730] chdir("./12" <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5730] <... chdir resumed>)        = 0
[pid  5063] close(4 <unfinished ...>
[pid  5730] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5065] mkdir("./12", 0777 <unfinished ...>
[pid  5730] <... prctl resumed>)        = 0
[pid  5730] setpgid(0, 0 <unfinished ...>
[pid  5065] <... mkdir resumed>)        = 0
[pid  5730] <... setpgid resumed>)      = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5063] <... close resumed>)        = 0
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5063] rmdir("./11/file0" <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 5731
./strace-static-x86_64: Process 5731 attached
[pid  5063] <... rmdir resumed>)        = 0
[pid  5731] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5731] <... set_robust_list resumed>) = 0
[pid  5731] chdir("./12")               = 0
[pid  5731] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5064] <... umount2 resumed>)      = 0
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5731] setpgid(0, 0 <unfinished ...>
[pid  5730] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5727] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5064] umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] close(3 <unfinished ...>
[pid  5731] <... setpgid resumed>)      = 0
[pid  5730] <... openat resumed>)       = 3
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... close resumed>)        = 0
[pid  5064] newfstatat(AT_FDCWD, "./11/file0",  <unfinished ...>
[pid  5063] rmdir("./11" <unfinished ...>
[pid  5730] write(3, "1000", 4 <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5731] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5730] <... write resumed>)        = 4
[pid  5064] umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  5731] <... openat resumed>)       = 3
[pid  5731] write(3, "1000", 4)         = 4
[pid  5730] close(3 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] mkdir("./12", 0777 <unfinished ...>
[pid  5731] close(3 <unfinished ...>
[pid  5730] <... close resumed>)        = 0
[pid  5064] openat(AT_FDCWD, "./11/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5731] <... close resumed>)        = 0
[pid  5730] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5064] <... openat resumed>)       = 4
[pid  5063] <... mkdir resumed>)        = 0
[pid  5731] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5730] <... symlink resumed>)      = 0
[pid  5064] newfstatat(4, "",  <unfinished ...>
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5731] <... symlink resumed>)      = 0
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5731] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5730] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5063] <... openat resumed>)       = 3
[pid  5730] <... memfd_create resumed>) = 3
[pid  5064] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5730] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5730] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5064] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(3)                    = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5064] close(4)                    = 0
./strace-static-x86_64: Process 5732 attached
[pid  5731] <... memfd_create resumed>) = 3
[pid  5064] rmdir("./11/file0" <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 5732
[pid  5732] set_robust_list(0x55555697c760, 24) = 0
[pid  5731] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5064] <... rmdir resumed>)        = 0
[pid  5732] chdir("./12" <unfinished ...>
[pid  5064] getdents64(3,  <unfinished ...>
[pid  5732] <... chdir resumed>)        = 0
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5732] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5064] close(3 <unfinished ...>
[pid  5732] <... prctl resumed>)        = 0
[pid  5064] <... close resumed>)        = 0
[pid  5732] setpgid(0, 0 <unfinished ...>
[pid  5064] rmdir("./11" <unfinished ...>
[pid  5732] <... setpgid resumed>)      = 0
[pid  5732] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5064] <... rmdir resumed>)        = 0
[pid  5064] mkdir("./12", 0777 <unfinished ...>
[pid  5732] <... openat resumed>)       = 3
[pid  5064] <... mkdir resumed>)        = 0
[pid  5732] write(3, "1000", 4)         = 4
[pid  5732] close(3)                    = 0
[pid  5732] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5732] <... symlink resumed>)      = 0
[pid  5064] <... openat resumed>)       = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5732] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5733
[pid  5732] <... memfd_create resumed>) = 3
[pid  5732] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
./strace-static-x86_64: Process 5733 attached
[pid  5728] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5733] set_robust_list(0x55555697c760, 24) = 0
[pid  5733] chdir("./12")               = 0
[pid  5733] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5733] setpgid(0, 0)               = 0
[pid  5733] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5733] write(3, "1000", 4)         = 4
[pid  5733] close(3)                    = 0
[pid  5733] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5733] memfd_create("syzkaller", 0) = 3
[pid  5733] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5730] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5731] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5732] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5727] <... write resumed>)        = 16777216
[pid  5727] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5733] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5727] <... munmap resumed>)       = 0
[pid  5727] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[pid  5727] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5727] close(3)                    = 0
[pid  5727] mkdir("./file0", 0777)      = 0
[   98.710327][ T5727] loop5: detected capacity change from 0 to 32768
[pid  5727] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5728] <... write resumed>)        = 16777216
[pid  5728] munmap(0x7f6d986f1000, 138412032) = 0
[   98.823886][ T5727] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[pid  5728] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5728] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5728] close(3)                    = 0
[pid  5732] <... write resumed>)        = 16777216
[pid  5728] mkdir("./file0", 0777 <unfinished ...>
[pid  5732] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5728] <... mkdir resumed>)        = 0
[   98.867668][ T5727] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   98.878467][ T5728] loop0: detected capacity change from 0 to 32768
[pid  5728] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5732] <... munmap resumed>)       = 0
[pid  5732] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid  5732] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5732] close(3)                    = 0
[pid  5732] mkdir("./file0", 0777)      = 0
[pid  5732] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5731] <... write resumed>)        = 16777216
[   98.945992][ T5732] loop1: detected capacity change from 0 to 32768
[   98.950055][ T5727] XFS (loop5): Ending clean mount
[   98.983317][ T5727] XFS (loop5): Quotacheck needed: Please wait.
[pid  5731] munmap(0x7f6d986f1000, 138412032) = 0
[pid  5731] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[   99.013054][ T5732] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[   99.024904][ T5728] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[   99.031075][ T5732] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   99.048649][ T5728] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5731] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5727] <... mount resumed>)        = 0
[pid  5731] close(3 <unfinished ...>
[pid  5730] <... write resumed>)        = 16777216
[pid  5727] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5731] <... close resumed>)        = 0
[pid  5730] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5727] <... openat resumed>)       = 3
[pid  5731] mkdir("./file0", 0777 <unfinished ...>
[pid  5727] chdir("./file0" <unfinished ...>
[pid  5731] <... mkdir resumed>)        = 0
[pid  5727] <... chdir resumed>)        = 0
[pid  5727] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5731] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5727] <... ioctl resumed>)        = 0
[pid  5727] close(4)                    = 0
[   99.049093][ T5731] loop3: detected capacity change from 0 to 32768
[   99.066596][ T5727] XFS (loop5): Quotacheck: Done.
[pid  5727] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5727] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5727] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5727] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5727] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5727] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5727] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5727] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5727] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5727] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5727] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5727] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5727] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5727] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5727] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5727] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5727] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5727] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5730] <... munmap resumed>)       = 0
[pid  5727] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5730] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5727] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5730] <... openat resumed>)       = 4
[pid  5727] <... openat resumed>)       = 4
[   99.139312][ T5728] XFS (loop0): Ending clean mount
[   99.146386][ T5732] XFS (loop1): Ending clean mount
[   99.147837][ T5728] XFS (loop0): Quotacheck needed: Please wait.
[   99.174452][ T5731] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[pid  5730] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5727] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5727] sendfile(5, 4, [100] <unfinished ...>
[pid  5728] <... mount resumed>)        = 0
[pid  5730] <... ioctl resumed>)        = 0
[pid  5728] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5730] close(3 <unfinished ...>
[pid  5728] <... openat resumed>)       = 3
[pid  5730] <... close resumed>)        = 0
[pid  5728] chdir("./file0" <unfinished ...>
[pid  5730] mkdir("./file0", 0777 <unfinished ...>
[pid  5728] <... chdir resumed>)        = 0
[pid  5730] <... mkdir resumed>)        = 0
[pid  5728] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5730] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5728] close(4)                    = 0
[pid  5728] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5728] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5728] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5728] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5728] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5728] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5728] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5728] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5728] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5728] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5728] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5728] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5728] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[   99.190707][ T5728] XFS (loop0): Quotacheck: Done.
[   99.191278][ T5732] XFS (loop1): Quotacheck needed: Please wait.
[   99.196065][ T5731] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   99.211482][ T5730] loop4: detected capacity change from 0 to 32768
[pid  5728] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5728] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5728] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5728] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5728] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5728] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5728] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5728] sendfile(5, 4, [100] <unfinished ...>
[pid  5732] <... mount resumed>)        = 0
[   99.255710][ T5731] XFS (loop3): Ending clean mount
[   99.268501][ T5731] XFS (loop3): Quotacheck needed: Please wait.
[   99.273111][ T5732] XFS (loop1): Quotacheck: Done.
[pid  5732] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5732] chdir("./file0")            = 0
[pid  5732] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5732] close(4)                    = 0
[pid  5732] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5732] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5732] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5732] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5732] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5732] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5732] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5732] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5732] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5732] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5732] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5732] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5732] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5732] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5732] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5732] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[   99.299291][ T5727] syz-executor246 (5727): drop_caches: 2
[   99.299291][ T5728] syz-executor246 (5728): drop_caches: 2
[   99.300094][ T5728] syz-executor246 (5728): drop_caches: 2
[   99.324695][ T5730] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[pid  5732] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5733] <... write resumed>)        = 16777216
[pid  5732] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5728] <... sendfile resumed> => [671], 571) = 571
[pid  5732] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5732] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5732] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5733] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5732] <... openat resumed>)       = 5
[pid  5728] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5732] sendfile(5, 4, [100] <unfinished ...>
[pid  5728] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[   99.343342][ T5730] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5728] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5728] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5728] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5728] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5728] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5728] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5728] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5728] exit_group(0)               = ?
[pid  5728] +++ exited with 0 +++
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5728, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=39 /* 0.39 s */} ---
[pid  5062] umount2("./12", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./12/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./12/binderfs")     = 0
[   99.382279][ T5732] syz-executor246 (5732): drop_caches: 2
[   99.384183][ T5727] syz-executor246 (5727): drop_caches: 2
[   99.408974][ T5731] XFS (loop3): Quotacheck: Done.
[   99.418273][ T5732] syz-executor246 (5732): drop_caches: 2
[pid  5062] umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5733] <... munmap resumed>)       = 0
[pid  5731] <... mount resumed>)        = 0
[pid  5732] <... sendfile resumed> => [671], 571) = 571
[pid  5731] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5727] <... sendfile resumed> => [671], 571) = 571
[pid  5727] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5727] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5727] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5727] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5727] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5727] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5727] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5727] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5727] exit_group(0 <unfinished ...>
[pid  5732] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5731] <... openat resumed>)       = 3
[pid  5727] <... exit_group resumed>)   = ?
[pid  5732] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5732] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5731] chdir("./file0" <unfinished ...>
[pid  5732] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5731] <... chdir resumed>)        = 0
[pid  5727] +++ exited with 0 +++
[pid  5732] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5731] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5727, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=33 /* 0.33 s */} ---
[pid  5732] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5731] <... ioctl resumed>)        = 0
[pid  5732] ftruncate(-1, 33587199 <unfinished ...>
[pid  5731] close(4 <unfinished ...>
[pid  5067] umount2("./12", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5731] <... close resumed>)        = 0
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5732] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5731] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5067] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5732] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5731] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... openat resumed>)       = 3
[pid  5732] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5731] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  5732] open(NULL, O_RDONLY <unfinished ...>
[pid  5731] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5732] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5731] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5732] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5731] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[   99.433969][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   99.444445][ T5730] XFS (loop4): Ending clean mount
[   99.460603][ T5730] XFS (loop4): Quotacheck needed: Please wait.
[pid  5733] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5732] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5731] ftruncate(-1, 33587195 <unfinished ...>
[pid  5067] umount2("./12/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5732] read(-1,  <unfinished ...>
[pid  5731] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5733] <... openat resumed>)       = 4
[pid  5732] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5731] read(-1,  <unfinished ...>
[pid  5730] <... mount resumed>)        = 0
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5733] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5732] exit_group(0 <unfinished ...>
[pid  5731] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5730] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5067] newfstatat(AT_FDCWD, "./12/binderfs",  <unfinished ...>
[pid  5731] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5731] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5731] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5730] <... openat resumed>)       = 3
[pid  5067] unlink("./12/binderfs" <unfinished ...>
[pid  5732] <... exit_group resumed>)   = ?
[pid  5731] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5730] chdir("./file0" <unfinished ...>
[pid  5731] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5067] <... unlink resumed>)       = 0
[pid  5732] +++ exited with 0 +++
[pid  5731] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5730] <... chdir resumed>)        = 0
[pid  5067] umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5731] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5730] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5732, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=26 /* 0.26 s */} ---
[pid  5063] umount2("./12", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5730] <... ioctl resumed>)        = 0
[pid  5731] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5731] read(-1,  <unfinished ...>
[pid  5063] umount2("./12/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5731] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5733] <... ioctl resumed>)        = 0
[pid  5063] newfstatat(AT_FDCWD, "./12/binderfs",  <unfinished ...>
[pid  5733] close(3 <unfinished ...>
[pid  5731] write(-1, NULL, 0 <unfinished ...>
[pid  5730] close(4 <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5733] <... close resumed>)        = 0
[pid  5731] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5730] <... close resumed>)        = 0
[pid  5733] mkdir("./file0", 0777 <unfinished ...>
[pid  5731] write(-1, NULL, 0 <unfinished ...>
[pid  5730] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5731] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5730] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5731] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5730] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5733] <... mkdir resumed>)        = 0
[pid  5731] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5730] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] unlink("./12/binderfs" <unfinished ...>
[pid  5730] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5063] <... unlink resumed>)       = 0
[pid  5063] umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5733] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5730] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5731] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5730] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[   99.484455][ T5730] XFS (loop4): Quotacheck: Done.
[   99.497169][ T5733] loop2: detected capacity change from 0 to 32768
[   99.517104][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5731] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5730] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5731] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5730] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5731] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5730] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5731] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5730] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5731] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5731] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5730] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5731] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5730] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5731] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5731] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5730] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5731] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5731] sendfile(5, 4, [100] <unfinished ...>
[pid  5730] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5730] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[   99.567903][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   99.601272][ T5733] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[pid  5730] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5730] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5730] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5730] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5730] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5730] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[   99.617629][ T5733] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   99.648711][ T5731] syz-executor246 (5731): drop_caches: 2
[pid  5730] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5731] <... sendfile resumed> => [671], 571) = 571
[pid  5730] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5731] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5731] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5731] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5730] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5731] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5730] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5730] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5731] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5730] <... openat resumed>)       = 4
[pid  5730] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5731] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5730] <... openat resumed>)       = 5
[pid  5731] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5730] sendfile(5, 4, [100] <unfinished ...>
[pid  5731] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5731] exit_group(0)               = ?
[pid  5731] +++ exited with 0 +++
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5731, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=34 /* 0.34 s */} ---
[pid  5065] umount2("./12", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] umount2("./12/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[   99.686525][ T5731] syz-executor246 (5731): drop_caches: 2
[   99.705172][ T5730] syz-executor246 (5730): drop_caches: 2
[   99.711575][ T5730] syz-executor246 (5730): drop_caches: 2
[pid  5065] newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] unlink("./12/binderfs")     = 0
[pid  5065] umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5730] <... sendfile resumed> => [671], 571) = 571
[pid  5067] umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5730] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./12/file0",  <unfinished ...>
[pid  5730] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5730] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5067] umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5730] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5730] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5730] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] openat(AT_FDCWD, "./12/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5730] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... openat resumed>)       = 4
[pid  5730] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5067] newfstatat(4, "",  <unfinished ...>
[pid  5730] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5730] open(NULL, O_RDONLY <unfinished ...>
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5730] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5730] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5730] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[   99.770091][ T5733] XFS (loop2): Ending clean mount
[pid  5730] read(-1,  <unfinished ...>
[pid  5067] close(4 <unfinished ...>
[pid  5730] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5067] <... close resumed>)        = 0
[pid  5730] exit_group(0 <unfinished ...>
[pid  5067] rmdir("./12/file0" <unfinished ...>
[pid  5730] <... exit_group resumed>)   = ?
[pid  5730] +++ exited with 0 +++
[pid  5067] <... rmdir resumed>)        = 0
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5730, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=30 /* 0.30 s */} ---
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5066] umount2("./12", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] rmdir("./12" <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5067] <... rmdir resumed>)        = 0
[pid  5066] <... openat resumed>)       = 3
[pid  5067] mkdir("./13", 0777 <unfinished ...>
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5067] <... mkdir resumed>)        = 0
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./12/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] <... openat resumed>)       = 3
[pid  5066] newfstatat(AT_FDCWD, "./12/binderfs",  <unfinished ...>
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5066] unlink("./12/binderfs" <unfinished ...>
[pid  5067] close(3 <unfinished ...>
[pid  5066] <... unlink resumed>)       = 0
[pid  5067] <... close resumed>)        = 0
[pid  5066] umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5782
./strace-static-x86_64: Process 5782 attached
[pid  5782] set_robust_list(0x55555697c760, 24) = 0
[pid  5782] chdir("./13")               = 0
[pid  5782] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5782] setpgid(0, 0)               = 0
[   99.798615][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   99.837320][ T5733] XFS (loop2): Quotacheck needed: Please wait.
[pid  5782] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5782] write(3, "1000", 4)         = 4
[pid  5782] close(3)                    = 0
[pid  5782] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5782] memfd_create("syzkaller", 0) = 3
[pid  5782] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[   99.885942][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5733] <... mount resumed>)        = 0
[   99.927907][ T5733] XFS (loop2): Quotacheck: Done.
[pid  5733] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5733] chdir("./file0")            = 0
[pid  5733] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5733] close(4)                    = 0
[pid  5733] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5733] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5733] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5733] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5733] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5733] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5733] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5733] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  5733] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5733] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5733] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5733] write(-1, NULL, 0 <unfinished ...>
[pid  5062] umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5733] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5733] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5733] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5733] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5733] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5062] newfstatat(AT_FDCWD, "./12/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5733] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5063] <... umount2 resumed>)      = 0
[pid  5733] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5733] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5062] umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5733] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5733] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5733] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5733] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./12/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  5733] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5733] <... openat resumed>)       = 5
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5733] sendfile(5, 4, [100] <unfinished ...>
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./12/file0")         = 0
[pid  5063] umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./12/file0",  <unfinished ...>
[pid  5062] close(3 <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] <... close resumed>)        = 0
[pid  5063] umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] rmdir("./12" <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] <... rmdir resumed>)        = 0
[pid  5063] openat(AT_FDCWD, "./12/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] mkdir("./13", 0777 <unfinished ...>
[pid  5063] <... openat resumed>)       = 4
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  5062] <... mkdir resumed>)        = 0
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5063] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] <... openat resumed>)       = 3
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4 <unfinished ...>
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5063] <... close resumed>)        = 0
[pid  5063] rmdir("./12/file0" <unfinished ...>
[pid  5062] close(3 <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  5062] <... close resumed>)        = 0
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
./strace-static-x86_64: Process 5783 attached
[pid  5063] close(3 <unfinished ...>
[pid  5783] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 5783
[pid  5063] rmdir("./12")               = 0
[pid  5063] mkdir("./13", 0777)         = 0
[  100.071597][ T5733] syz-executor246 (5733): drop_caches: 2
[pid  5783] <... set_robust_list resumed>) = 0
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5783] chdir("./13" <unfinished ...>
[pid  5063] <... openat resumed>)       = 3
[pid  5783] <... chdir resumed>)        = 0
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5783] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5063] close(3 <unfinished ...>
[pid  5783] <... prctl resumed>)        = 0
[pid  5063] <... close resumed>)        = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5783] setpgid(0, 0./strace-static-x86_64: Process 5784 attached
)               = 0
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 5784
[pid  5784] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5783] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5784] <... set_robust_list resumed>) = 0
[pid  5783] write(3, "1000", 4 <unfinished ...>
[pid  5733] <... sendfile resumed> => [671], 571) = 571
[pid  5783] <... write resumed>)        = 4
[pid  5783] close(3)                    = 0
[pid  5784] chdir("./13" <unfinished ...>
[pid  5783] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5733] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5783] <... symlink resumed>)      = 0
[pid  5733] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5733] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5783] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5733] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5784] <... chdir resumed>)        = 0
[pid  5733] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5783] <... memfd_create resumed>) = 3
[pid  5784] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5733] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5784] <... prctl resumed>)        = 0
[pid  5783] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5784] setpgid(0, 0 <unfinished ...>
[pid  5783] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5784] <... setpgid resumed>)      = 0
[pid  5784] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5733] ftruncate(-1, 33587199 <unfinished ...>
[pid  5784] <... openat resumed>)       = 3
[  100.139171][ T5733] syz-executor246 (5733): drop_caches: 2
[pid  5784] write(3, "1000", 4)         = 4
[pid  5784] close(3 <unfinished ...>
[pid  5733] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5733] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5784] <... close resumed>)        = 0
[pid  5733] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5784] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5733] open(NULL, O_RDONLY <unfinished ...>
[pid  5784] <... symlink resumed>)      = 0
[pid  5733] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5733] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5733] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5784] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5733] exit_group(0 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  5733] <... exit_group resumed>)   = ?
[pid  5733] +++ exited with 0 +++
[pid  5784] <... memfd_create resumed>) = 3
[pid  5065] umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5784] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5733, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=37 /* 0.37 s */} ---
[pid  5064] umount2("./12", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5784] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5065] newfstatat(AT_FDCWD, "./12/file0",  <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(3, "",  <unfinished ...>
[pid  5065] openat(AT_FDCWD, "./12/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] <... openat resumed>)       = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3,  <unfinished ...>
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] umount2("./12/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  5065] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] close(4 <unfinished ...>
[pid  5064] newfstatat(AT_FDCWD, "./12/binderfs",  <unfinished ...>
[pid  5065] <... close resumed>)        = 0
[pid  5064] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] rmdir("./12/file0")         = 0
[pid  5064] unlink("./12/binderfs")     = 0
[pid  5066] umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./12/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5064] umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] openat(AT_FDCWD, "./12/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] <... openat resumed>)       = 4
[pid  5782] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5065] close(3 <unfinished ...>
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5065] <... close resumed>)        = 0
[pid  5066] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] rmdir("./12" <unfinished ...>
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./12/file0")         = 0
[pid  5065] <... rmdir resumed>)        = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./12")               = 0
[pid  5065] mkdir("./13", 0777 <unfinished ...>
[pid  5066] mkdir("./13", 0777)         = 0
[pid  5065] <... mkdir resumed>)        = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  5065] <... openat resumed>)       = 3
[pid  5066] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5066] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5066] close(3 <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 5785
[pid  5066] <... close resumed>)        = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5785 attached
 <unfinished ...>
[pid  5785] set_robust_list(0x55555697c760, 24) = 0
./strace-static-x86_64: Process 5786 attached
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 5786
[pid  5786] set_robust_list(0x55555697c760, 24) = 0
[  100.276564][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5786] chdir("./13" <unfinished ...>
[pid  5785] chdir("./13" <unfinished ...>
[pid  5786] <... chdir resumed>)        = 0
[pid  5785] <... chdir resumed>)        = 0
[pid  5786] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5785] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5786] <... prctl resumed>)        = 0
[pid  5785] <... prctl resumed>)        = 0
[pid  5786] setpgid(0, 0 <unfinished ...>
[pid  5785] setpgid(0, 0 <unfinished ...>
[pid  5786] <... setpgid resumed>)      = 0
[pid  5785] <... setpgid resumed>)      = 0
[pid  5785] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5785] write(3, "1000", 4)         = 4
[pid  5785] close(3)                    = 0
[pid  5785] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5785] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5786] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5786] write(3, "1000", 4 <unfinished ...>
[pid  5785] <... memfd_create resumed>) = 3
[pid  5786] <... write resumed>)        = 4
[pid  5785] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5786] close(3 <unfinished ...>
[pid  5785] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5786] <... close resumed>)        = 0
[pid  5786] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5786] memfd_create("syzkaller", 0) = 3
[pid  5786] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5783] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5784] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  5064] umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./12/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./12/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./12/file0" <unfinished ...>
[pid  5785] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5064] <... rmdir resumed>)        = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./12" <unfinished ...>
[pid  5786] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5064] <... rmdir resumed>)        = 0
[pid  5064] mkdir("./13", 0777)         = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5787
./strace-static-x86_64: Process 5787 attached
[pid  5787] set_robust_list(0x55555697c760, 24) = 0
[pid  5787] chdir("./13")               = 0
[pid  5787] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5787] setpgid(0, 0)               = 0
[pid  5787] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5787] write(3, "1000", 4)         = 4
[pid  5787] close(3)                    = 0
[pid  5787] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5787] memfd_create("syzkaller", 0) = 3
[pid  5787] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5782] <... write resumed>)        = 16777216
[pid  5782] munmap(0x7f6d986f1000, 138412032) = 0
[pid  5782] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[pid  5782] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5782] close(3)                    = 0
[pid  5782] mkdir("./file0", 0777)      = 0
[  101.004285][ T5782] loop5: detected capacity change from 0 to 32768
[pid  5782] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5783] <... write resumed>)        = 16777216
[pid  5784] <... write resumed>)        = 16777216
[pid  5783] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[  101.105568][ T5782] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  101.133135][ T5782] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5784] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5786] <... write resumed>)        = 16777216
[pid  5783] <... munmap resumed>)       = 0
[pid  5786] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5784] <... munmap resumed>)       = 0
[pid  5783] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5783] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5784] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid  5784] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5783] close(3)                    = 0
[pid  5783] mkdir("./file0", 0777 <unfinished ...>
[pid  5784] <... ioctl resumed>)        = 0
[pid  5787] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5784] close(3)                    = 0
[pid  5784] mkdir("./file0", 0777)      = 0
[  101.224406][ T5783] loop0: detected capacity change from 0 to 32768
[  101.244265][ T5784] loop1: detected capacity change from 0 to 32768
[  101.260142][ T5782] XFS (loop5): Ending clean mount
[pid  5784] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5786] <... munmap resumed>)       = 0
[pid  5783] <... mkdir resumed>)        = 0
[pid  5786] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5783] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5786] <... openat resumed>)       = 4
[pid  5786] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5785] <... write resumed>)        = 16777216
[pid  5786] close(3)                    = 0
[pid  5785] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5786] mkdir("./file0", 0777)      = 0
[  101.273593][ T5782] XFS (loop5): Quotacheck needed: Please wait.
[  101.276158][ T5786] loop4: detected capacity change from 0 to 32768
[  101.294168][ T5784] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  101.308510][ T5782] XFS (loop5): Quotacheck: Done.
[pid  5786] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5782] <... mount resumed>)        = 0
[pid  5782] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5782] chdir("./file0")            = 0
[pid  5782] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5782] close(4)                    = 0
[pid  5782] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5782] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5785] <... munmap resumed>)       = 0
[pid  5782] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5785] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5782] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5785] <... openat resumed>)       = 4
[pid  5782] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5782] read(-1,  <unfinished ...>
[  101.318787][ T5784] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  101.331434][ T5783] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  101.350987][ T5783] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  101.360556][ T5786] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[pid  5785] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5782] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5782] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5782] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5782] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5782] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5785] <... ioctl resumed>)        = 0
[pid  5782] read(-1,  <unfinished ...>
[pid  5785] close(3 <unfinished ...>
[pid  5782] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5785] <... close resumed>)        = 0
[pid  5782] write(-1, NULL, 0 <unfinished ...>
[pid  5785] mkdir("./file0", 0777 <unfinished ...>
[pid  5782] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5785] <... mkdir resumed>)        = 0
[pid  5782] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5782] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5785] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5782] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5782] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5782] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5782] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5782] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5782] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5782] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5782] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  101.369043][ T5785] loop3: detected capacity change from 0 to 32768
[  101.387838][ T5786] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  101.471320][ T5782] syz-executor246 (5782): drop_caches: 2
[  101.481585][ T5785] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  101.493869][ T5783] XFS (loop0): Ending clean mount
[  101.500763][ T5786] XFS (loop4): Ending clean mount
[  101.501617][ T5782] syz-executor246 (5782): drop_caches: 2
[  101.505925][ T5784] XFS (loop1): Ending clean mount
[pid  5782] sendfile(5, 4, [100] => [671], 571) = 571
[pid  5782] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5782] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5782] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5782] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5782] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5782] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5782] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5782] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5782] exit_group(0)               = ?
[pid  5782] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5782, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=32 /* 0.32 s */} ---
[pid  5067] umount2("./13", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[  101.511780][ T5785] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  101.530262][ T5786] XFS (loop4): Quotacheck needed: Please wait.
[  101.531265][ T5783] XFS (loop0): Quotacheck needed: Please wait.
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./13/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./13/binderfs")     = 0
[pid  5067] umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5783] <... mount resumed>)        = 0
[pid  5783] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5786] <... mount resumed>)        = 0
[pid  5783] chdir("./file0" <unfinished ...>
[pid  5786] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5783] <... chdir resumed>)        = 0
[pid  5786] <... openat resumed>)       = 3
[pid  5783] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5786] chdir("./file0" <unfinished ...>
[pid  5783] <... ioctl resumed>)        = 0
[pid  5786] <... chdir resumed>)        = 0
[pid  5783] close(4 <unfinished ...>
[pid  5786] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5783] <... close resumed>)        = 0
[pid  5786] <... ioctl resumed>)        = 0
[pid  5783] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5786] close(4 <unfinished ...>
[pid  5783] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5786] <... close resumed>)        = 0
[pid  5783] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5786] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5783] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5786] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[  101.566187][ T5784] XFS (loop1): Quotacheck needed: Please wait.
[  101.580513][ T5783] XFS (loop0): Quotacheck: Done.
[  101.592318][ T5786] XFS (loop4): Quotacheck: Done.
[  101.602832][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5783] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5786] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5783] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5786] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5783] ftruncate(-1, 33587195 <unfinished ...>
[pid  5786] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5783] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5786] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5783] read(-1,  <unfinished ...>
[pid  5786] ftruncate(-1, 33587195 <unfinished ...>
[pid  5783] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5786] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5783] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5783] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5786] read(-1,  <unfinished ...>
[pid  5783] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5786] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5783] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5786] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5783] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5786] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5783] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5786] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5783] read(-1,  <unfinished ...>
[pid  5786] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5783] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5786] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5783] write(-1, NULL, 0 <unfinished ...>
[pid  5786] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[  101.631861][ T5784] XFS (loop1): Quotacheck: Done.
[pid  5784] <... mount resumed>)        = 0
[pid  5784] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5784] chdir("./file0")            = 0
[pid  5784] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5784] close(4)                    = 0
[pid  5784] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5784] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5784] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5786] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5784] ftruncate(-1, 33587195 <unfinished ...>
[pid  5783] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5784] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5784] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5784] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5786] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5784] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5783] write(-1, NULL, 0 <unfinished ...>
[pid  5786] read(-1,  <unfinished ...>
[pid  5784] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5783] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5786] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5784] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5783] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5786] write(-1, NULL, 0 <unfinished ...>
[pid  5784] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5786] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5784] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[  101.655535][ T5785] XFS (loop3): Ending clean mount
[pid  5783] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5786] write(-1, NULL, 0 <unfinished ...>
[pid  5784] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5784] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5784] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5784] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5784] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5786] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5784] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5783] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5786] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5784] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5783] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5783] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5786] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5784] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5783] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5783] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5786] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5783] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5783] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5787] <... write resumed>)        = 16777216
[pid  5786] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5784] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5783] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5787] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5786] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5784] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5783] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5786] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5784] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5783] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5786] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5784] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5783] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5786] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5784] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5786] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5784] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5783] <... openat resumed>)       = 4
[pid  5784] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5783] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5784] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5786] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5784] <... openat resumed>)       = 4
[pid  5783] <... openat resumed>)       = 5
[pid  5786] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5784] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5783] sendfile(5, 4, [100] <unfinished ...>
[pid  5786] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5784] <... openat resumed>)       = 5
[pid  5784] sendfile(5, 4, [100] <unfinished ...>
[  101.681426][ T5785] XFS (loop3): Quotacheck needed: Please wait.
[pid  5786] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5786] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5787] <... munmap resumed>)       = 0
[pid  5786] sendfile(5, 4, [100] <unfinished ...>
[pid  5787] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[  101.737448][ T5783] syz-executor246 (5783): drop_caches: 2
[  101.748562][ T5786] syz-executor246 (5786): drop_caches: 2
[  101.756051][ T5784] syz-executor246 (5784): drop_caches: 2
[  101.756810][ T5786] syz-executor246 (5786): drop_caches: 2
[  101.768892][ T5783] syz-executor246 (5783): drop_caches: 2
[  101.777209][ T5787] loop2: detected capacity change from 0 to 32768
[pid  5787] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5786] <... sendfile resumed> => [671], 571) = 571
[pid  5783] <... sendfile resumed> => [671], 571) = 571
[pid  5787] close(3 <unfinished ...>
[pid  5786] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5783] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5787] <... close resumed>)        = 0
[pid  5786] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5783] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5787] mkdir("./file0", 0777 <unfinished ...>
[pid  5786] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5783] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5786] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5783] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5787] <... mkdir resumed>)        = 0
[pid  5786] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[  101.798999][ T5785] XFS (loop3): Quotacheck: Done.
[pid  5783] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5787] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5786] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5785] <... mount resumed>)        = 0
[pid  5783] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5786] ftruncate(-1, 33587199 <unfinished ...>
[pid  5785] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5783] ftruncate(-1, 33587199 <unfinished ...>
[pid  5786] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5785] <... openat resumed>)       = 3
[pid  5783] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5786] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5785] chdir("./file0" <unfinished ...>
[pid  5783] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5786] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5785] <... chdir resumed>)        = 0
[pid  5783] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5786] open(NULL, O_RDONLY <unfinished ...>
[pid  5785] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5783] open(NULL, O_RDONLY <unfinished ...>
[pid  5786] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5785] <... ioctl resumed>)        = 0
[pid  5783] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5786] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5785] close(4 <unfinished ...>
[pid  5783] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5786] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5785] <... close resumed>)        = 0
[pid  5783] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5786] read(-1,  <unfinished ...>
[pid  5785] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5783] read(-1,  <unfinished ...>
[pid  5786] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5785] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5783] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5785] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5786] exit_group(0 <unfinished ...>
[pid  5785] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5783] exit_group(0 <unfinished ...>
[pid  5786] <... exit_group resumed>)   = ?
[pid  5785] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5784] <... sendfile resumed> => [671], 571) = 571
[pid  5785] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5784] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5785] ftruncate(-1, 33587195 <unfinished ...>
[pid  5784] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5785] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5784] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5783] <... exit_group resumed>)   = ?
[pid  5785] read(-1,  <unfinished ...>
[pid  5784] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5785] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5784] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5785] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5784] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5785] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5784] ftruncate(-1, 33587199 <unfinished ...>
[pid  5785] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5784] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5785] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5784] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5785] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5784] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5785] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5784] open(NULL, O_RDONLY <unfinished ...>
[pid  5783] +++ exited with 0 +++
[  101.831954][ T5784] syz-executor246 (5784): drop_caches: 2
[pid  5785] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5784] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5783, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=31 /* 0.31 s */} ---
[pid  5786] +++ exited with 0 +++
[pid  5785] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5784] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5785] read(-1,  <unfinished ...>
[pid  5784] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5785] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5784] read(-1,  <unfinished ...>
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5786, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=33 /* 0.33 s */} ---
[pid  5785] write(-1, NULL, 0 <unfinished ...>
[pid  5784] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5066] umount2("./13", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5785] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5784] exit_group(0 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5785] write(-1, NULL, 0 <unfinished ...>
[pid  5784] <... exit_group resumed>)   = ?
[pid  5066] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5785] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5784] +++ exited with 0 +++
[pid  5785] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5784, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=34 /* 0.34 s */} ---
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  5785] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] umount2("./13", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... restart_syscall resumed>) = 0
[pid  5785] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] <... openat resumed>)       = 3
[pid  5785] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5066] umount2("./13/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  5785] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5785] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5062] umount2("./13", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5785] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5066] newfstatat(AT_FDCWD, "./13/binderfs",  <unfinished ...>
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5785] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5785] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] umount2("./13/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] unlink("./13/binderfs" <unfinished ...>
[pid  5785] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5785] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5785] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5066] <... unlink resumed>)       = 0
[pid  5063] newfstatat(AT_FDCWD, "./13/binderfs",  <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5785] <... openat resumed>)       = 4
[pid  5066] umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./13/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5785] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5063] unlink("./13/binderfs" <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... unlink resumed>)       = 0
[pid  5062] newfstatat(AT_FDCWD, "./13/binderfs",  <unfinished ...>
[pid  5785] <... openat resumed>)       = 5
[pid  5063] umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5785] sendfile(5, 4, [100] <unfinished ...>
[pid  5062] unlink("./13/binderfs")     = 0
[  101.873380][ T5787] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  101.911571][ T5787] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5062] umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5067] umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  101.922139][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  101.931874][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  101.931898][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  101.959695][ T5785] syz-executor246 (5785): drop_caches: 2
[pid  5067] newfstatat(AT_FDCWD, "./13/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5785] <... sendfile resumed> => [671], 571) = 571
[pid  5785] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5785] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5067] openat(AT_FDCWD, "./13/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5785] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5067] <... openat resumed>)       = 4
[pid  5785] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] newfstatat(4, "",  <unfinished ...>
[pid  5785] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5785] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5785] ftruncate(-1, 33587199 <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5785] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5785] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5785] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5785] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5785] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5785] exit_group(0 <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5785] <... exit_group resumed>)   = ?
[pid  5067] close(4 <unfinished ...>
[pid  5785] +++ exited with 0 +++
[pid  5067] <... close resumed>)        = 0
[pid  5067] rmdir("./13/file0" <unfinished ...>
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5785, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=36 /* 0.36 s */} ---
[pid  5067] <... rmdir resumed>)        = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./13")               = 0
[pid  5067] mkdir("./14", 0777)         = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5065] umount2("./13", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 5836
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
./strace-static-x86_64: Process 5836 attached
[  101.986356][ T5785] syz-executor246 (5785): drop_caches: 2
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5836] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5836] <... set_robust_list resumed>) = 0
[pid  5836] chdir("./14" <unfinished ...>
[pid  5065] umount2("./13/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5836] <... chdir resumed>)        = 0
[pid  5836] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5065] newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5836] <... prctl resumed>)        = 0
[pid  5836] setpgid(0, 0 <unfinished ...>
[pid  5065] unlink("./13/binderfs" <unfinished ...>
[pid  5836] <... setpgid resumed>)      = 0
[pid  5065] <... unlink resumed>)       = 0
[pid  5065] umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5836] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5836] write(3, "1000", 4)         = 4
[pid  5836] close(3)                    = 0
[pid  5836] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5836] memfd_create("syzkaller", 0) = 3
[pid  5836] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  102.105852][ T5787] XFS (loop2): Ending clean mount
[  102.127098][ T5787] XFS (loop2): Quotacheck needed: Please wait.
[  102.133719][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  102.191897][ T5787] XFS (loop2): Quotacheck: Done.
[pid  5787] <... mount resumed>)        = 0
[pid  5787] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5787] chdir("./file0")            = 0
[pid  5787] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5787] close(4)                    = 0
[pid  5787] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5787] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5787] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5787] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5787] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5787] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5787] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5787] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5787] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5787] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5787] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5787] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5787] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5787] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5787] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5787] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5787] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5787] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5787] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5787] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  102.289262][ T5787] syz-executor246 (5787): drop_caches: 2
[pid  5787] sendfile(5, 4, [100] <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  5062] umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./13/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./13/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./13/file0")         = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./13")               = 0
[pid  5062] mkdir("./14", 0777)         = 0
[pid  5787] <... sendfile resumed> => [671], 571) = 571
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5787] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  5787] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5787] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5787] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] close(3 <unfinished ...>
[pid  5787] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5787] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5787] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5787] openat(-1, NULL, O_RDONLY./strace-static-x86_64: Process 5837 attached
)  = -1 EFAULT (Bad address)
[pid  5837] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5787] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5837] <... set_robust_list resumed>) = 0
[pid  5787] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 5837
[pid  5837] chdir("./14" <unfinished ...>
[pid  5787] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5787] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5836] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5787] exit_group(0 <unfinished ...>
[pid  5837] <... chdir resumed>)        = 0
[pid  5787] <... exit_group resumed>)   = ?
[pid  5787] +++ exited with 0 +++
[pid  5837] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5787, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=33 /* 0.33 s */} ---
[  102.362194][ T5787] syz-executor246 (5787): drop_caches: 2
[pid  5837] <... prctl resumed>)        = 0
[pid  5064] umount2("./13", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5837] setpgid(0, 0 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5837] <... setpgid resumed>)      = 0
[pid  5064] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5837] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5064] <... openat resumed>)       = 3
[pid  5837] <... openat resumed>)       = 3
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./13/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5837] write(3, "1000", 4 <unfinished ...>
[pid  5064] newfstatat(AT_FDCWD, "./13/binderfs",  <unfinished ...>
[pid  5837] <... write resumed>)        = 4
[pid  5064] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5837] close(3 <unfinished ...>
[pid  5064] unlink("./13/binderfs" <unfinished ...>
[pid  5837] <... close resumed>)        = 0
[pid  5064] <... unlink resumed>)       = 0
[pid  5837] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5064] umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5837] <... symlink resumed>)      = 0
[pid  5837] memfd_create("syzkaller", 0) = 3
[pid  5837] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5063] <... umount2 resumed>)      = 0
[pid  5063] umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./13/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./13/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4)                    = 0
[pid  5063] rmdir("./13/file0")         = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3)                    = 0
[pid  5063] rmdir("./13")               = 0
[pid  5063] mkdir("./14", 0777 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  5063] <... mkdir resumed>)        = 0
[pid  5065] <... umount2 resumed>)      = 0
[pid  5065] umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5065] newfstatat(AT_FDCWD, "./13/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./13/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5063] close(3 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] <... close resumed>)        = 0
[pid  5066] newfstatat(AT_FDCWD, "./13/file0",  <unfinished ...>
[  102.464616][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5065] close(4 <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] <... close resumed>)        = 0
[pid  5065] rmdir("./13/file0" <unfinished ...>
[pid  5066] umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] <... rmdir resumed>)        = 0
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5066] openat(AT_FDCWD, "./13/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 5838
[pid  5065] close(3)                    = 0
[pid  5066] <... openat resumed>)       = 4
[pid  5066] newfstatat(4, "",  <unfinished ...>
[pid  5065] rmdir("./13" <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] <... rmdir resumed>)        = 0
[pid  5066] getdents64(4, ./strace-static-x86_64: Process 5838 attached
0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] mkdir("./14", 0777 <unfinished ...>
[pid  5838] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5838] <... set_robust_list resumed>) = 0
[pid  5066] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] <... mkdir resumed>)        = 0
[pid  5838] chdir("./14" <unfinished ...>
[pid  5066] close(4 <unfinished ...>
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5838] <... chdir resumed>)        = 0
[pid  5065] <... openat resumed>)       = 3
[pid  5066] <... close resumed>)        = 0
[pid  5065] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5838] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5066] rmdir("./13/file0" <unfinished ...>
[pid  5065] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5838] setpgid(0, 0 <unfinished ...>
[pid  5065] close(3 <unfinished ...>
[pid  5838] <... setpgid resumed>)      = 0
[pid  5838] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  5065] <... close resumed>)        = 0
[pid  5838] <... openat resumed>)       = 3
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5838] write(3, "1000", 4)         = 4
[pid  5838] close(3)                    = 0
[pid  5838] symlink("/dev/binderfs", "./binderfs") = 0
./strace-static-x86_64: Process 5839 attached
[pid  5838] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3 <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 5839
[pid  5839] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  5839] <... set_robust_list resumed>) = 0
[pid  5838] <... memfd_create resumed>) = 3
[pid  5066] rmdir("./13")               = 0
[pid  5839] chdir("./14" <unfinished ...>
[pid  5838] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5066] mkdir("./14", 0777 <unfinished ...>
[pid  5838] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5839] <... chdir resumed>)        = 0
[pid  5066] <... mkdir resumed>)        = 0
[pid  5839] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5839] <... prctl resumed>)        = 0
[pid  5839] setpgid(0, 0 <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  5839] <... setpgid resumed>)      = 0
[pid  5066] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5839] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5066] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5839] <... openat resumed>)       = 3
[pid  5066] close(3 <unfinished ...>
[pid  5839] write(3, "1000", 4 <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5839] <... write resumed>)        = 4
./strace-static-x86_64: Process 5840 attached
[pid  5839] close(3)                    = 0
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 5840
[pid  5840] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5839] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5840] <... set_robust_list resumed>) = 0
[pid  5839] <... symlink resumed>)      = 0
[pid  5840] chdir("./14" <unfinished ...>
[pid  5839] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5840] <... chdir resumed>)        = 0
[pid  5839] <... memfd_create resumed>) = 3
[pid  5840] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5839] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5840] <... prctl resumed>)        = 0
[pid  5839] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5840] setpgid(0, 0)               = 0
[pid  5840] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5840] write(3, "1000", 4)         = 4
[pid  5840] close(3)                    = 0
[pid  5840] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5840] memfd_create("syzkaller", 0) = 3
[pid  5840] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5836] <... write resumed>)        = 16777216
[pid  5836] munmap(0x7f6d986f1000, 138412032) = 0
[pid  5836] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[pid  5836] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5837] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  5836] <... ioctl resumed>)        = 0
[pid  5836] close(3)                    = 0
[pid  5836] mkdir("./file0", 0777)      = 0
[pid  5064] umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5836] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./13/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./13/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[  102.853930][ T5836] loop5: detected capacity change from 0 to 32768
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./13/file0")         = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./13")               = 0
[pid  5064] mkdir("./14", 0777)         = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5846
[pid  5838] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216./strace-static-x86_64: Process 5846 attached
 <unfinished ...>
[pid  5839] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5846] set_robust_list(0x55555697c760, 24) = 0
[pid  5846] chdir("./14")               = 0
[pid  5846] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5846] setpgid(0, 0)               = 0
[pid  5846] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5846] write(3, "1000", 4)         = 4
[pid  5846] close(3)                    = 0
[pid  5846] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5846] memfd_create("syzkaller", 0) = 3
[  102.973826][ T5836] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  102.987505][ T5836] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5846] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  103.139261][ T5836] XFS (loop5): Ending clean mount
[pid  5840] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5838] <... write resumed>)        = 16777216
[  103.181264][ T5836] XFS (loop5): Quotacheck needed: Please wait.
[pid  5838] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5836] <... mount resumed>)        = 0
[pid  5836] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5836] chdir("./file0")            = 0
[  103.247311][ T5836] XFS (loop5): Quotacheck: Done.
[pid  5836] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5836] close(4)                    = 0
[pid  5836] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5836] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5836] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5836] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5836] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5836] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5836] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5836] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5836] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5836] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5836] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5836] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5838] <... munmap resumed>)       = 0
[pid  5836] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5838] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5836] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5838] <... openat resumed>)       = 4
[pid  5836] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5838] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5836] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5838] <... ioctl resumed>)        = 0
[pid  5836] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5838] close(3 <unfinished ...>
[pid  5836] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5836] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5838] <... close resumed>)        = 0
[pid  5838] mkdir("./file0", 0777 <unfinished ...>
[pid  5836] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5836] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5838] <... mkdir resumed>)        = 0
[pid  5836] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5836] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5836] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5838] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[  103.331997][ T5838] loop1: detected capacity change from 0 to 32768
[pid  5836] sendfile(5, 4, [100] => [671], 571) = 571
[pid  5836] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5836] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5836] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5840] <... write resumed>)        = 16777216
[pid  5836] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5840] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5836] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5846] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5836] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5836] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5836] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[  103.423171][ T5836] syz-executor246 (5836): drop_caches: 2
[  103.445208][ T5836] syz-executor246 (5836): drop_caches: 2
[  103.449664][ T5838] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  103.459861][ T5838] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5836] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5836] exit_group(0)               = ?
[pid  5840] <... munmap resumed>)       = 0
[pid  5836] +++ exited with 0 +++
[pid  5840] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5836, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=30 /* 0.30 s */} ---
[pid  5840] <... openat resumed>)       = 4
[pid  5837] <... write resumed>)        = 16777216
[pid  5840] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5837] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5067] umount2("./14", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./14/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./14/binderfs")     = 0
[pid  5067] umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5840] <... ioctl resumed>)        = 0
[pid  5840] close(3)                    = 0
[pid  5840] mkdir("./file0", 0777)      = 0
[pid  5837] <... munmap resumed>)       = 0
[  103.520357][ T5838] XFS (loop1): Ending clean mount
[  103.528096][ T5840] loop4: detected capacity change from 0 to 32768
[  103.535401][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5840] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5837] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5837] ioctl(4, LOOP_SET_FD, 3)    = 0
[  103.566439][ T5838] XFS (loop1): Quotacheck needed: Please wait.
[  103.584013][ T5840] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  103.604308][ T5837] loop0: detected capacity change from 0 to 32768
[pid  5837] close(3)                    = 0
[pid  5837] mkdir("./file0", 0777)      = 0
[pid  5837] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5838] <... mount resumed>)        = 0
[pid  5838] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5838] chdir("./file0")            = 0
[pid  5838] ioctl(4, LOOP_CLR_FD)       = 0
[  103.630958][ T5840] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  103.655684][ T5838] XFS (loop1): Quotacheck: Done.
[pid  5838] close(4)                    = 0
[pid  5838] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5838] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5838] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5838] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5839] <... write resumed>)        = 16777216
[pid  5838] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5838] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5838] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5838] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5838] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5838] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5838] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5838] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5838] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5839] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5838] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5838] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5838] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5838] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5838] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5838] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5838] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5838] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  103.689111][ T5837] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  103.720380][ T5837] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5838] sendfile(5, 4, [100] <unfinished ...>
[pid  5839] <... munmap resumed>)       = 0
[pid  5846] <... write resumed>)        = 16777216
[pid  5846] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5839] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[  103.765278][ T5838] syz-executor246 (5838): drop_caches: 2
[  103.792797][ T5840] XFS (loop4): Ending clean mount
[pid  5839] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5838] <... sendfile resumed> => [671], 571) = 571
[pid  5839] close(3 <unfinished ...>
[pid  5838] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5839] <... close resumed>)        = 0
[pid  5838] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5838] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5839] mkdir("./file0", 0777 <unfinished ...>
[pid  5838] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5839] <... mkdir resumed>)        = 0
[  103.809588][ T5839] loop3: detected capacity change from 0 to 32768
[  103.812189][ T5840] XFS (loop4): Quotacheck needed: Please wait.
[  103.818425][ T5838] syz-executor246 (5838): drop_caches: 2
[pid  5838] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5839] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5838] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5838] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5838] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5838] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5838] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5846] <... munmap resumed>)       = 0
[pid  5838] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[  103.865231][ T5840] XFS (loop4): Quotacheck: Done.
[pid  5838] exit_group(0)               = ?
[pid  5846] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5840] <... mount resumed>)        = 0
[pid  5838] +++ exited with 0 +++
[pid  5067] <... umount2 resumed>)      = 0
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5838, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=30 /* 0.30 s */} ---
[pid  5063] umount2("./14", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5846] <... openat resumed>)       = 4
[pid  5063] umount2("./14/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./14/binderfs",  <unfinished ...>
[pid  5846] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5840] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5840] <... openat resumed>)       = 3
[pid  5067] umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] unlink("./14/binderfs" <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./14/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5840] chdir("./file0" <unfinished ...>
[pid  5063] <... unlink resumed>)       = 0
[pid  5067] openat(AT_FDCWD, "./14/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5840] <... chdir resumed>)        = 0
[pid  5067] <... openat resumed>)       = 4
[pid  5063] umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5846] <... ioctl resumed>)        = 0
[pid  5840] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5846] close(3 <unfinished ...>
[pid  5840] <... ioctl resumed>)        = 0
[pid  5067] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5846] <... close resumed>)        = 0
[pid  5846] mkdir("./file0", 0777 <unfinished ...>
[pid  5067] close(4 <unfinished ...>
[pid  5846] <... mkdir resumed>)        = 0
[pid  5067] <... close resumed>)        = 0
[  103.886854][ T5837] XFS (loop0): Ending clean mount
[  103.895313][ T5839] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  103.899081][ T5837] XFS (loop0): Quotacheck needed: Please wait.
[  103.910629][ T5846] loop2: detected capacity change from 0 to 32768
[  103.918508][ T5839] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5067] rmdir("./14/file0")         = 0
[pid  5846] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5840] close(4 <unfinished ...>
[pid  5837] <... mount resumed>)        = 0
[pid  5837] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5837] <... openat resumed>)       = 3
[pid  5837] chdir("./file0" <unfinished ...>
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5837] <... chdir resumed>)        = 0
[pid  5837] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5067] close(3 <unfinished ...>
[pid  5837] <... ioctl resumed>)        = 0
[pid  5067] <... close resumed>)        = 0
[pid  5837] close(4)                    = 0
[pid  5067] rmdir("./14" <unfinished ...>
[pid  5837] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5067] <... rmdir resumed>)        = 0
[pid  5837] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5837] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5837] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5067] mkdir("./15", 0777 <unfinished ...>
[pid  5837] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... mkdir resumed>)        = 0
[pid  5837] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5837] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5067] <... openat resumed>)       = 3
[pid  5837] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5837] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5837] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5840] <... close resumed>)        = 0
[pid  5837] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5067] close(3 <unfinished ...>
[pid  5840] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5837] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... close resumed>)        = 0
[  103.931606][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  103.937914][ T5837] XFS (loop0): Quotacheck: Done.
[pid  5840] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5837] read(-1,  <unfinished ...>
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5840] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5837] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5840] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5837] write(-1, NULL, 0 <unfinished ...>
[pid  5840] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5837] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5840] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5837] write(-1, NULL, 0 <unfinished ...>
[pid  5840] ftruncate(-1, 33587195 <unfinished ...>
[pid  5837] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5840] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5837] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5840] read(-1,  <unfinished ...>
[pid  5837] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 5887
./strace-static-x86_64: Process 5887 attached
[pid  5840] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5837] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5887] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5840] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5837] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5887] <... set_robust_list resumed>) = 0
[pid  5887] chdir("./15" <unfinished ...>
[pid  5837] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5887] <... chdir resumed>)        = 0
[pid  5840] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5837] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5887] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5840] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5837] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5887] <... prctl resumed>)        = 0
[pid  5840] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5837] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5887] setpgid(0, 0 <unfinished ...>
[pid  5840] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5837] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5887] <... setpgid resumed>)      = 0
[pid  5840] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5837] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5887] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5840] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5837] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5887] <... openat resumed>)       = 3
[pid  5840] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5837] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5840] read(-1,  <unfinished ...>
[pid  5837] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5840] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5837] <... openat resumed>)       = 4
[pid  5840] write(-1, NULL, 0 <unfinished ...>
[pid  5837] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5840] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5837] <... openat resumed>)       = 5
[pid  5840] write(-1, NULL, 0 <unfinished ...>
[pid  5837] sendfile(5, 4, [100] <unfinished ...>
[pid  5840] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5887] write(3, "1000", 4 <unfinished ...>
[pid  5840] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5887] <... write resumed>)        = 4
[pid  5840] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5887] close(3 <unfinished ...>
[pid  5840] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5887] <... close resumed>)        = 0
[pid  5840] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5887] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5887] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5840] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5887] <... memfd_create resumed>) = 3
[  103.981735][ T5839] XFS (loop3): Ending clean mount
[  103.987769][ T5846] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  103.999370][ T5839] XFS (loop3): Quotacheck needed: Please wait.
[pid  5840] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5887] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5840] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5887] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5840] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5840] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5840] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[  104.024950][ T5846] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  104.064956][ T5839] XFS (loop3): Quotacheck: Done.
[pid  5840] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5839] <... mount resumed>)        = 0
[pid  5840] <... openat resumed>)       = 5
[pid  5840] sendfile(5, 4, [100] <unfinished ...>
[pid  5839] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5839] chdir("./file0")            = 0
[pid  5839] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5839] close(4)                    = 0
[pid  5839] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5839] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5840] <... sendfile resumed> => [671], 571) = 571
[pid  5839] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5837] <... sendfile resumed> => [671], 571) = 571
[pid  5839] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5837] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5839] ftruncate(-1, 33587195 <unfinished ...>
[pid  5837] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5839] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5837] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5839] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5837] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5839] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5837] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5839] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5837] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5839] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5837] ftruncate(-1, 33587199 <unfinished ...>
[pid  5839] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5837] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5839] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5837] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5839] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[  104.077690][ T5837] syz-executor246 (5837): drop_caches: 2
[  104.082782][ T5840] syz-executor246 (5840): drop_caches: 2
[  104.109023][ T5837] syz-executor246 (5837): drop_caches: 2
[  104.111645][ T5840] syz-executor246 (5840): drop_caches: 2
[pid  5837] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5840] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5839] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5837] open(NULL, O_RDONLY <unfinished ...>
[pid  5839] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5839] read(-1,  <unfinished ...>
[pid  5837] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5839] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5837] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5839] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5837] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5839] write(-1, NULL, 0 <unfinished ...>
[pid  5837] read(-1,  <unfinished ...>
[pid  5839] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5837] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5839] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5840] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5839] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5837] exit_group(0 <unfinished ...>
[pid  5839] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5837] <... exit_group resumed>)   = ?
[pid  5840] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5839] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5839] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5840] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5839] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5837] +++ exited with 0 +++
[pid  5839] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5837, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=31 /* 0.31 s */} ---
[pid  5839] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5840] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5839] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5839] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5062] umount2("./14", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5887] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5840] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5839] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5840] ftruncate(-1, 33587199 <unfinished ...>
[pid  5839] <... openat resumed>)       = 4
[pid  5062] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5840] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5839] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  5840] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5839] <... openat resumed>)       = 5
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5839] sendfile(5, 4, [100] <unfinished ...>
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5840] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./14/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5840] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5840] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./14/binderfs",  <unfinished ...>
[pid  5840] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5840] read(-1,  <unfinished ...>
[pid  5062] unlink("./14/binderfs" <unfinished ...>
[pid  5840] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5840] exit_group(0 <unfinished ...>
[pid  5062] <... unlink resumed>)       = 0
[pid  5840] <... exit_group resumed>)   = ?
[pid  5062] umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5840] +++ exited with 0 +++
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5840, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=35 /* 0.35 s */} ---
[  104.226870][ T5846] XFS (loop2): Ending clean mount
[pid  5066] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5066] umount2("./14", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./14/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[  104.257445][ T5846] XFS (loop2): Quotacheck needed: Please wait.
[  104.263083][ T5839] syz-executor246 (5839): drop_caches: 2
[  104.273311][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5066] unlink("./14/binderfs" <unfinished ...>
[pid  5846] <... mount resumed>)        = 0
[pid  5846] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5839] <... sendfile resumed> => [671], 571) = 571
[pid  5846] <... openat resumed>)       = 3
[pid  5846] chdir("./file0")            = 0
[pid  5846] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5846] close(4)                    = 0
[pid  5066] <... unlink resumed>)       = 0
[pid  5846] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5839] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[  104.318769][ T5846] XFS (loop2): Quotacheck: Done.
[  104.319809][ T5839] syz-executor246 (5839): drop_caches: 2
[pid  5066] umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5846] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5839] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5063] <... umount2 resumed>)      = 0
[pid  5846] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5063] umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5846] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5839] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5846] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5839] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] newfstatat(AT_FDCWD, "./14/file0",  <unfinished ...>
[pid  5846] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5839] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5846] ftruncate(-1, 33587195 <unfinished ...>
[pid  5839] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5846] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5839] ftruncate(-1, 33587199 <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./14/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5846] read(-1,  <unfinished ...>
[pid  5839] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5846] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5839] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5063] <... openat resumed>)       = 4
[pid  5846] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5839] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  5846] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5839] open(NULL, O_RDONLY <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5846] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5839] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5846] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5839] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5846] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5839] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5846] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5839] read(-1,  <unfinished ...>
[pid  5846] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5839] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5846] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5846] read(-1,  <unfinished ...>
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5846] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5846] write(-1, NULL, 0 <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5846] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5846] write(-1, NULL, 0 <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5846] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5063] close(4 <unfinished ...>
[pid  5846] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5063] rmdir("./14/file0" <unfinished ...>
[pid  5846] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5839] exit_group(0 <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  5846] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5839] <... exit_group resumed>)   = ?
[pid  5846] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5839] +++ exited with 0 +++
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5839, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=36 /* 0.36 s */} ---
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3)                    = 0
[pid  5063] rmdir("./14")               = 0
[pid  5063] mkdir("./15", 0777 <unfinished ...>
[pid  5846] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[  104.364221][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5846] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5063] <... mkdir resumed>)        = 0
[pid  5846] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5065] umount2("./14", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5846] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5846] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5846] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5065] <... openat resumed>)       = 3
[pid  5846] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5063] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5063] close(3)                    = 0
[pid  5846] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  5846] <... openat resumed>)       = 4
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5846] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 5891
./strace-static-x86_64: Process 5891 attached
[pid  5846] sendfile(5, 4, [100] <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] umount2("./14/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./14/binderfs",  <unfinished ...>
[pid  5891] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5891] <... set_robust_list resumed>) = 0
[pid  5846] <... sendfile resumed> => [671], 571) = 571
[pid  5065] unlink("./14/binderfs" <unfinished ...>
[pid  5891] chdir("./15" <unfinished ...>
[pid  5846] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5065] <... unlink resumed>)       = 0
[pid  5891] <... chdir resumed>)        = 0
[pid  5065] umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5891] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5846] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5891] <... prctl resumed>)        = 0
[pid  5846] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5891] setpgid(0, 0)               = 0
[pid  5846] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5891] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5846] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5891] <... openat resumed>)       = 3
[pid  5846] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5846] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5891] write(3, "1000", 4 <unfinished ...>
[pid  5846] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5891] <... write resumed>)        = 4
[pid  5846] open(NULL, O_RDONLY <unfinished ...>
[pid  5891] close(3 <unfinished ...>
[pid  5846] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5891] <... close resumed>)        = 0
[pid  5891] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5846] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5891] <... symlink resumed>)      = 0
[pid  5846] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5891] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5846] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5846] exit_group(0)               = ?
[pid  5846] +++ exited with 0 +++
[pid  5891] <... memfd_create resumed>) = 3
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5846, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=34 /* 0.34 s */} ---
[pid  5891] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5064] umount2("./14", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5891] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5064] <... openat resumed>)       = 3
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./14/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./14/binderfs")     = 0
[  104.476125][ T5846] syz-executor246 (5846): drop_caches: 2
[  104.496759][ T5846] syz-executor246 (5846): drop_caches: 2
[  104.515956][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  104.548395][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5064] umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5887] <... write resumed>)        = 16777216
[pid  5887] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  5062] umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5887] <... munmap resumed>)       = 0
[pid  5887] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[pid  5887] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./14/file0",  <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./14/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./14/file0")         = 0
[pid  5066] umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./14")               = 0
[pid  5062] mkdir("./15", 0777 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] <... mkdir resumed>)        = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] newfstatat(AT_FDCWD, "./14/file0",  <unfinished ...>
[pid  5062] close(3)                    = 0
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5887] <... ioctl resumed>)        = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./14/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5887] close(3 <unfinished ...>
[pid  5066] <... openat resumed>)       = 4
[pid  5887] <... close resumed>)        = 0
[pid  5066] newfstatat(4, "", ./strace-static-x86_64: Process 5892 attached
 <unfinished ...>
[pid  5887] mkdir("./file0", 0777 <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5892] set_robust_list(0x55555697c760, 24) = 0
[pid  5887] <... mkdir resumed>)        = 0
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 5892
[pid  5892] chdir("./15" <unfinished ...>
[pid  5887] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5066] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5892] <... chdir resumed>)        = 0
[pid  5892] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4 <unfinished ...>
[  104.764201][ T5887] loop5: detected capacity change from 0 to 32768
[pid  5892] setpgid(0, 0)               = 0
[pid  5066] <... close resumed>)        = 0
[pid  5066] rmdir("./14/file0" <unfinished ...>
[pid  5892] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  5892] <... openat resumed>)       = 3
[pid  5892] write(3, "1000", 4 <unfinished ...>
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5892] <... write resumed>)        = 4
[pid  5892] close(3 <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5892] <... close resumed>)        = 0
[pid  5066] close(3 <unfinished ...>
[pid  5892] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  5066] rmdir("./14" <unfinished ...>
[pid  5892] <... symlink resumed>)      = 0
[pid  5066] <... rmdir resumed>)        = 0
[pid  5066] mkdir("./15", 0777 <unfinished ...>
[pid  5892] memfd_create("syzkaller", 0) = 3
[pid  5066] <... mkdir resumed>)        = 0
[pid  5892] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5892] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5066] <... openat resumed>)       = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] close(3)                    = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5898 attached
, child_tidptr=0x55555697c750) = 5898
[pid  5065] <... umount2 resumed>)      = 0
[pid  5898] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5891] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5065] umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5898] <... set_robust_list resumed>) = 0
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./14/file0",  <unfinished ...>
[pid  5898] chdir("./15" <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5898] <... chdir resumed>)        = 0
[pid  5065] umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5898] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5898] <... prctl resumed>)        = 0
[pid  5065] openat(AT_FDCWD, "./14/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[  104.865592][ T5887] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[pid  5898] setpgid(0, 0)               = 0
[pid  5065] <... openat resumed>)       = 4
[pid  5898] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5065] newfstatat(4, "",  <unfinished ...>
[pid  5898] <... openat resumed>)       = 3
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5898] write(3, "1000", 4 <unfinished ...>
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5898] <... write resumed>)        = 4
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5898] close(3 <unfinished ...>
[pid  5065] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5898] <... close resumed>)        = 0
[pid  5898] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5065] close(4)                    = 0
[pid  5898] <... symlink resumed>)      = 0
[pid  5065] rmdir("./14/file0" <unfinished ...>
[pid  5898] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5065] <... rmdir resumed>)        = 0
[pid  5898] <... memfd_create resumed>) = 3
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5898] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5898] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5065] close(3)                    = 0
[  104.920211][ T5887] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5065] rmdir("./14")               = 0
[pid  5065] mkdir("./15", 0777)         = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5902 attached
, child_tidptr=0x55555697c750) = 5902
[pid  5902] set_robust_list(0x55555697c760, 24) = 0
[  104.980802][ T5887] XFS (loop5): Ending clean mount
[  104.989118][ T5887] XFS (loop5): Quotacheck needed: Please wait.
[pid  5902] chdir("./15" <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  5902] <... chdir resumed>)        = 0
[pid  5902] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5902] setpgid(0, 0)               = 0
[pid  5902] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5902] write(3, "1000", 4 <unfinished ...>
[pid  5064] umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5902] <... write resumed>)        = 4
[pid  5887] <... mount resumed>)        = 0
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5902] close(3 <unfinished ...>
[pid  5887] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[  105.051327][ T5887] XFS (loop5): Quotacheck: Done.
[pid  5902] <... close resumed>)        = 0
[pid  5064] newfstatat(AT_FDCWD, "./14/file0",  <unfinished ...>
[pid  5887] <... openat resumed>)       = 3
[pid  5902] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5887] chdir("./file0" <unfinished ...>
[pid  5902] <... symlink resumed>)      = 0
[pid  5887] <... chdir resumed>)        = 0
[pid  5887] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5887] <... ioctl resumed>)        = 0
[pid  5887] close(4 <unfinished ...>
[pid  5064] umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5902] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5887] <... close resumed>)        = 0
[pid  5902] <... memfd_create resumed>) = 3
[pid  5887] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5902] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5887] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5887] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5902] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5887] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5064] openat(AT_FDCWD, "./14/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5887] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5064] <... openat resumed>)       = 4
[pid  5887] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5064] newfstatat(4, "",  <unfinished ...>
[pid  5887] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5887] read(-1,  <unfinished ...>
[pid  5064] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5887] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5887] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5064] close(4 <unfinished ...>
[pid  5887] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5064] <... close resumed>)        = 0
[pid  5887] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5064] rmdir("./14/file0" <unfinished ...>
[pid  5887] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5064] <... rmdir resumed>)        = 0
[pid  5887] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5064] getdents64(3,  <unfinished ...>
[pid  5887] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5887] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5064] close(3 <unfinished ...>
[pid  5887] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5064] <... close resumed>)        = 0
[pid  5887] read(-1,  <unfinished ...>
[pid  5064] rmdir("./14" <unfinished ...>
[pid  5887] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5064] <... rmdir resumed>)        = 0
[pid  5887] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5887] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5887] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5887] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5064] mkdir("./15", 0777 <unfinished ...>
[pid  5887] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5891] <... write resumed>)        = 16777216
[pid  5887] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5064] <... mkdir resumed>)        = 0
[pid  5891] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5887] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5887] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5887] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5887] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5887] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5887] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5887] sendfile(5, 4, [100] <unfinished ...>
[pid  5891] <... munmap resumed>)       = 0
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5903
./strace-static-x86_64: Process 5903 attached
[pid  5887] <... sendfile resumed> => [671], 571) = 571
[pid  5903] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5891] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5903] <... set_robust_list resumed>) = 0
[pid  5903] chdir("./15")               = 0
[pid  5903] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5903] setpgid(0, 0)               = 0
[pid  5903] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5891] <... openat resumed>)       = 4
[pid  5887] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5903] write(3, "1000", 4 <unfinished ...>
[pid  5891] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5887] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5903] <... write resumed>)        = 4
[pid  5903] close(3)                    = 0
[pid  5903] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5903] memfd_create("syzkaller", 0) = 3
[pid  5903] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5887] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5887] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5887] ftruncate(-1, 33587199 <unfinished ...>
[pid  5891] <... ioctl resumed>)        = 0
[pid  5887] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5891] close(3 <unfinished ...>
[pid  5887] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5891] <... close resumed>)        = 0
[pid  5887] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5891] mkdir("./file0", 0777 <unfinished ...>
[pid  5887] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5887] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5891] <... mkdir resumed>)        = 0
[pid  5891] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5887] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5887] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5887] exit_group(0)               = ?
[pid  5887] +++ exited with 0 +++
[  105.207089][ T5887] syz-executor246 (5887): drop_caches: 2
[  105.214737][ T5887] syz-executor246 (5887): drop_caches: 2
[  105.244029][ T5891] loop1: detected capacity change from 0 to 32768
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5887, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=29 /* 0.29 s */} ---
[pid  5067] umount2("./15", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./15/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./15/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./15/binderfs")     = 0
[pid  5898] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[  105.291886][ T5891] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  105.316533][ T5891] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  105.325673][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5067] umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5892] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[  105.542027][ T5891] XFS (loop1): Ending clean mount
[  105.569168][ T5891] XFS (loop1): Quotacheck needed: Please wait.
[pid  5902] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5891] <... mount resumed>)        = 0
[pid  5891] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5891] chdir("./file0")            = 0
[pid  5891] ioctl(4, LOOP_CLR_FD)       = 0
[  105.626809][ T5891] XFS (loop1): Quotacheck: Done.
[pid  5891] close(4)                    = 0
[pid  5891] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5891] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5891] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5891] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5891] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5891] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5891] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5891] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5891] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5891] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5891] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5891] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5891] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5891] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5891] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5891] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5891] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5903] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5891] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5891] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5891] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5891] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5891] <... openat resumed>)       = 5
[pid  5891] sendfile(5, 4, [100] <unfinished ...>
[pid  5067] umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./15/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./15/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./15/file0")         = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./15")               = 0
[pid  5067] mkdir("./16", 0777)         = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5912 attached
 <unfinished ...>
[pid  5912] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 5912
[  105.728491][ T5891] syz-executor246 (5891): drop_caches: 2
[pid  5912] <... set_robust_list resumed>) = 0
[pid  5912] chdir("./16")               = 0
[pid  5912] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5912] setpgid(0, 0)               = 0
[pid  5912] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5891] <... sendfile resumed> => [671], 571) = 571
[pid  5912] write(3, "1000", 4)         = 4
[pid  5912] close(3)                    = 0
[pid  5912] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5912] memfd_create("syzkaller", 0) = 3
[pid  5912] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5891] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5891] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5891] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5891] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5891] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5891] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5891] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5891] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5891] exit_group(0)               = ?
[pid  5891] +++ exited with 0 +++
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5891, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=31 /* 0.31 s */} ---
[pid  5063] umount2("./15", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[  105.796619][ T5891] syz-executor246 (5891): drop_caches: 2
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./15/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./15/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] unlink("./15/binderfs")     = 0
[pid  5063] umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5898] <... write resumed>)        = 16777216
[  105.874226][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5898] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5892] <... write resumed>)        = 16777216
[pid  5892] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5898] <... munmap resumed>)       = 0
[pid  5892] <... munmap resumed>)       = 0
[pid  5898] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  5898] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5892] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5892] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5898] <... ioctl resumed>)        = 0
[pid  5898] close(3)                    = 0
[pid  5898] mkdir("./file0", 0777 <unfinished ...>
[pid  5892] <... ioctl resumed>)        = 0
[pid  5892] close(3)                    = 0
[pid  5898] <... mkdir resumed>)        = 0
[pid  5892] mkdir("./file0", 0777 <unfinished ...>
[pid  5898] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5892] <... mkdir resumed>)        = 0
[  106.030124][ T5898] loop4: detected capacity change from 0 to 32768
[  106.045669][ T5892] loop0: detected capacity change from 0 to 32768
[pid  5892] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5902] <... write resumed>)        = 16777216
[  106.088109][ T5892] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  106.119391][ T5898] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  106.119489][ T5892] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5902] munmap(0x7f6d986f1000, 138412032) = 0
[pid  5902] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid  5902] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5903] <... write resumed>)        = 16777216
[pid  5902] <... ioctl resumed>)        = 0
[pid  5903] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5902] close(3)                    = 0
[pid  5902] mkdir("./file0", 0777 <unfinished ...>
[pid  5912] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5902] <... mkdir resumed>)        = 0
[  106.147285][ T5898] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  106.164865][ T5902] loop3: detected capacity change from 0 to 32768
[pid  5902] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5903] <... munmap resumed>)       = 0
[pid  5903] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[  106.225561][ T5898] XFS (loop4): Ending clean mount
[  106.234376][ T5892] XFS (loop0): Ending clean mount
[  106.236167][ T5898] XFS (loop4): Quotacheck needed: Please wait.
[  106.249168][ T5903] loop2: detected capacity change from 0 to 32768
[  106.257323][ T5902] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  106.264632][ T5892] XFS (loop0): Quotacheck needed: Please wait.
[pid  5903] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5903] close(3)                    = 0
[pid  5903] mkdir("./file0", 0777 <unfinished ...>
[pid  5892] <... mount resumed>)        = 0
[pid  5063] <... umount2 resumed>)      = 0
[pid  5903] <... mkdir resumed>)        = 0
[pid  5892] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5903] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5892] <... openat resumed>)       = 3
[pid  5892] chdir("./file0")            = 0
[pid  5892] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5892] close(4)                    = 0
[pid  5892] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5063] umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./15/file0",  <unfinished ...>
[pid  5892] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5892] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5892] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5063] umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5892] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5892] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5898] <... mount resumed>)        = 0
[pid  5063] openat(AT_FDCWD, "./15/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5892] read(-1,  <unfinished ...>
[pid  5063] <... openat resumed>)       = 4
[pid  5892] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5892] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  5898] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5892] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5898] <... openat resumed>)       = 3
[  106.280993][ T5902] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  106.293452][ T5892] XFS (loop0): Quotacheck: Done.
[  106.309914][ T5898] XFS (loop4): Quotacheck: Done.
[pid  5892] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5892] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5892] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5898] chdir("./file0" <unfinished ...>
[pid  5892] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5898] <... chdir resumed>)        = 0
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5898] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5898] <... ioctl resumed>)        = 0
[pid  5892] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5898] close(4 <unfinished ...>
[pid  5892] read(-1,  <unfinished ...>
[pid  5063] close(4 <unfinished ...>
[pid  5898] <... close resumed>)        = 0
[pid  5892] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5892] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5898] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5898] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5063] rmdir("./15/file0" <unfinished ...>
[pid  5898] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5892] write(-1, NULL, 0 <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  5892] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5898] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5892] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5898] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5898] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5898] ftruncate(-1, 33587195 <unfinished ...>
[pid  5063] close(3 <unfinished ...>
[pid  5898] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5063] <... close resumed>)        = 0
[pid  5898] read(-1,  <unfinished ...>
[pid  5892] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5063] rmdir("./15" <unfinished ...>
[pid  5898] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5063] <... rmdir resumed>)        = 0
[pid  5898] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5892] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5898] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5063] mkdir("./16", 0777 <unfinished ...>
[pid  5898] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5892] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5898] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5892] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5063] <... mkdir resumed>)        = 0
[pid  5898] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5892] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5898] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5892] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5898] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5892] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5898] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5063] <... openat resumed>)       = 3
[pid  5898] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[  106.351771][ T5903] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  106.387586][ T5902] XFS (loop3): Ending clean mount
[pid  5898] write(-1, NULL, 0 <unfinished ...>
[pid  5892] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5898] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5898] write(-1, NULL, 0 <unfinished ...>
[pid  5892] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5898] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5892] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5898] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5892] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5063] close(3 <unfinished ...>
[pid  5898] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5892] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5898] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5892] <... openat resumed>)       = 4
[pid  5063] <... close resumed>)        = 0
[pid  5892] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5898] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5892] <... openat resumed>)       = 5
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5942 attached
 <unfinished ...>
[pid  5898] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5892] sendfile(5, 4, [100] <unfinished ...>
[pid  5942] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5898] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5942] <... set_robust_list resumed>) = 0
[pid  5898] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 5942
[pid  5942] chdir("./16" <unfinished ...>
[pid  5898] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5942] <... chdir resumed>)        = 0
[pid  5898] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5942] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5898] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5942] setpgid(0, 0 <unfinished ...>
[pid  5898] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5942] <... setpgid resumed>)      = 0
[pid  5898] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5942] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5898] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5942] <... openat resumed>)       = 3
[pid  5898] <... openat resumed>)       = 4
[pid  5898] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5942] write(3, "1000", 4 <unfinished ...>
[pid  5898] sendfile(5, 4, [100] <unfinished ...>
[pid  5942] <... write resumed>)        = 4
[pid  5942] close(3)                    = 0
[pid  5942] symlink("/dev/binderfs", "./binderfs") = 0
[  106.405084][ T5902] XFS (loop3): Quotacheck needed: Please wait.
[  106.416968][ T5903] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  106.441423][ T5902] XFS (loop3): Quotacheck: Done.
[pid  5942] memfd_create("syzkaller", 0) = 3
[pid  5942] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5902] <... mount resumed>)        = 0
[pid  5942] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5902] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5902] chdir("./file0")            = 0
[pid  5902] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5902] close(4)                    = 0
[pid  5902] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5892] <... sendfile resumed> => [671], 571) = 571
[pid  5902] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5892] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5902] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5892] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5902] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5892] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5902] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5892] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5902] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5892] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5902] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5892] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5902] read(-1,  <unfinished ...>
[pid  5892] ftruncate(-1, 33587199 <unfinished ...>
[pid  5902] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5892] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5902] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5892] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5902] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5892] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5902] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5892] open(NULL, O_RDONLY <unfinished ...>
[pid  5902] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5892] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5892] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5902] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5892] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5902] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5892] read(-1,  <unfinished ...>
[pid  5902] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5892] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5902] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5902] read(-1,  <unfinished ...>
[pid  5912] <... write resumed>)        = 16777216
[pid  5902] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5892] exit_group(0 <unfinished ...>
[pid  5902] write(-1, NULL, 0 <unfinished ...>
[pid  5892] <... exit_group resumed>)   = ?
[pid  5902] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5892] +++ exited with 0 +++
[pid  5902] write(-1, NULL, 0 <unfinished ...>
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5892, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=39 /* 0.39 s */} ---
[pid  5912] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5902] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5902] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5062] umount2("./15", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[  106.456508][ T5892] syz-executor246 (5892): drop_caches: 2
[  106.476154][ T5892] syz-executor246 (5892): drop_caches: 2
[  106.490250][ T5898] syz-executor246 (5898): drop_caches: 2
[pid  5902] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5898] <... sendfile resumed> => [671], 571) = 571
[pid  5062] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5902] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5062] <... openat resumed>)       = 3
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  5902] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5902] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5902] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5062] umount2("./15/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5902] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5902] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./15/binderfs",  <unfinished ...>
[pid  5902] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5902] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5062] unlink("./15/binderfs" <unfinished ...>
[pid  5902] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] <... unlink resumed>)       = 0
[pid  5902] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5062] umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5902] <... openat resumed>)       = 4
[pid  5902] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  106.536766][ T5898] syz-executor246 (5898): drop_caches: 2
[  106.573532][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5902] sendfile(5, 4, [100] <unfinished ...>
[pid  5912] <... munmap resumed>)       = 0
[pid  5898] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5898] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5898] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5898] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5898] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5912] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5898] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5912] <... openat resumed>)       = 4
[pid  5898] open(NULL, O_RDONLY <unfinished ...>
[pid  5912] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5898] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5898] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5898] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5898] exit_group(0)               = ?
[pid  5898] +++ exited with 0 +++
[  106.591702][ T5902] syz-executor246 (5902): drop_caches: 2
[  106.608569][ T5903] XFS (loop2): Ending clean mount
[  106.615529][ T5912] loop5: detected capacity change from 0 to 32768
[  106.631301][ T5902] syz-executor246 (5902): drop_caches: 2
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5898, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=25 /* 0.25 s */} ---
[pid  5912] <... ioctl resumed>)        = 0
[pid  5912] close(3)                    = 0
[pid  5066] umount2("./15", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5912] mkdir("./file0", 0777 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5912] <... mkdir resumed>)        = 0
[pid  5066] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./15/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5912] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5902] <... sendfile resumed> => [671], 571) = 571
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5942] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5066] newfstatat(AT_FDCWD, "./15/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] unlink("./15/binderfs" <unfinished ...>
[pid  5902] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5066] <... unlink resumed>)       = 0
[pid  5902] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[  106.640348][ T5903] XFS (loop2): Quotacheck needed: Please wait.
[pid  5902] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5066] umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5902] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5902] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5902] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5902] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5902] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5902] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5902] exit_group(0)               = ?
[pid  5902] +++ exited with 0 +++
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5902, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=32 /* 0.32 s */} ---
[pid  5065] umount2("./15", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[  106.711761][ T5912] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  106.730911][ T5903] XFS (loop2): Quotacheck: Done.
[  106.744846][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5065] umount2("./15/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./15/binderfs",  <unfinished ...>
[pid  5903] <... mount resumed>)        = 0
[pid  5903] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5903] chdir("./file0")            = 0
[pid  5903] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5903] close(4)                    = 0
[pid  5903] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5903] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5903] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5903] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5903] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5903] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5903] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5903] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5903] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5903] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5903] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5903] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5903] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5903] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5903] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5903] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5903] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5903] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5065] unlink("./15/binderfs" <unfinished ...>
[pid  5903] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5903] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5903] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  106.745861][ T5912] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5903] sendfile(5, 4, [100] <unfinished ...>
[pid  5065] <... unlink resumed>)       = 0
[pid  5065] umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5903] <... sendfile resumed> => [671], 571) = 571
[pid  5903] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5903] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5903] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5903] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5903] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5903] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5903] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5903] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5903] exit_group(0)               = ?
[pid  5903] +++ exited with 0 +++
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5903, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} ---
[  106.792682][ T5903] syz-executor246 (5903): drop_caches: 2
[  106.810702][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  106.826785][ T5903] syz-executor246 (5903): drop_caches: 2
[pid  5064] umount2("./15", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./15/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./15/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./15/binderfs")     = 0
[pid  5064] umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  5062] umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./15/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./15/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[  106.953508][ T5912] XFS (loop5): Ending clean mount
[  106.965150][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5066] newfstatat(AT_FDCWD, "./15/file0",  <unfinished ...>
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] close(4 <unfinished ...>
[pid  5066] openat(AT_FDCWD, "./15/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5066] <... openat resumed>)       = 4
[pid  5062] rmdir("./15/file0" <unfinished ...>
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] <... rmdir resumed>)        = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4 <unfinished ...>
[pid  5062] close(3 <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  5066] rmdir("./15/file0" <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5066] <... rmdir resumed>)        = 0
[pid  5062] rmdir("./15" <unfinished ...>
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] <... rmdir resumed>)        = 0
[pid  5066] close(3 <unfinished ...>
[pid  5062] mkdir("./16", 0777 <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  5062] <... mkdir resumed>)        = 0
[pid  5066] rmdir("./15")               = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5066] mkdir("./16", 0777 <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[  107.006394][ T5912] XFS (loop5): Quotacheck needed: Please wait.
[pid  5066] <... mkdir resumed>)        = 0
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5066] <... openat resumed>)       = 3
[pid  5062] close(3 <unfinished ...>
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] <... close resumed>)        = 0
[pid  5066] close(3)                    = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5954 attached
 <unfinished ...>
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 5954
[pid  5912] <... mount resumed>)        = 0
./strace-static-x86_64: Process 5955 attached
[pid  5954] set_robust_list(0x55555697c760, 24) = 0
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 5955
[pid  5954] chdir("./16" <unfinished ...>
[pid  5912] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5954] <... chdir resumed>)        = 0
[pid  5912] chdir("./file0")            = 0
[pid  5954] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5912] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5954] <... prctl resumed>)        = 0
[pid  5912] <... ioctl resumed>)        = 0
[pid  5912] close(4)                    = 0
[pid  5955] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5954] setpgid(0, 0 <unfinished ...>
[pid  5912] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5955] <... set_robust_list resumed>) = 0
[pid  5954] <... setpgid resumed>)      = 0
[pid  5912] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5955] chdir("./16" <unfinished ...>
[pid  5954] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5912] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5955] <... chdir resumed>)        = 0
[pid  5912] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5955] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5954] <... openat resumed>)       = 3
[pid  5912] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5955] <... prctl resumed>)        = 0
[pid  5912] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5955] setpgid(0, 0 <unfinished ...>
[  107.108758][ T5912] XFS (loop5): Quotacheck: Done.
[pid  5912] ftruncate(-1, 33587195 <unfinished ...>
[pid  5955] <... setpgid resumed>)      = 0
[pid  5954] write(3, "1000", 4 <unfinished ...>
[pid  5912] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5955] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5912] read(-1,  <unfinished ...>
[pid  5955] <... openat resumed>)       = 3
[pid  5954] <... write resumed>)        = 4
[pid  5912] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5954] close(3 <unfinished ...>
[pid  5912] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5955] write(3, "1000", 4 <unfinished ...>
[pid  5912] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5954] <... close resumed>)        = 0
[pid  5955] <... write resumed>)        = 4
[pid  5954] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5912] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5955] close(3 <unfinished ...>
[pid  5912] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5955] <... close resumed>)        = 0
[pid  5954] <... symlink resumed>)      = 0
[pid  5912] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5955] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5954] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5912] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5954] <... memfd_create resumed>) = 3
[pid  5912] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5955] <... symlink resumed>)      = 0
[pid  5912] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5912] read(-1,  <unfinished ...>
[pid  5955] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5912] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5912] write(-1, NULL, 0 <unfinished ...>
[pid  5955] <... memfd_create resumed>) = 3
[pid  5912] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5912] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5955] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5912] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5955] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5912] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5954] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5912] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5954] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5912] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5912] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5912] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5912] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5912] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5912] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5912] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5912] sendfile(5, 4, [100] <unfinished ...>
[pid  5942] <... write resumed>)        = 16777216
[  107.188030][ T5912] syz-executor246 (5912): drop_caches: 2
[pid  5942] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5912] <... sendfile resumed> => [671], 571) = 571
[pid  5912] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5912] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5912] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5912] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5912] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5942] <... munmap resumed>)       = 0
[pid  5912] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5912] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5912] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5912] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[  107.249368][ T5912] syz-executor246 (5912): drop_caches: 2
[pid  5942] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5912] exit_group(0 <unfinished ...>
[pid  5942] <... openat resumed>)       = 4
[pid  5912] <... exit_group resumed>)   = ?
[pid  5942] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5912] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5912, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=40 /* 0.40 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./16", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5942] <... ioctl resumed>)        = 0
[pid  5942] close(3 <unfinished ...>
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./16/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./16/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./16/binderfs")     = 0
[  107.317209][ T5942] loop1: detected capacity change from 0 to 32768
[pid  5067] umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5942] <... close resumed>)        = 0
[pid  5942] mkdir("./file0", 0777 <unfinished ...>
[pid  5065] umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5942] <... mkdir resumed>)        = 0
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./15/file0",  <unfinished ...>
[pid  5942] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./15/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./15/file0")         = 0
[  107.359745][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./15" <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  5065] <... rmdir resumed>)        = 0
[pid  5065] mkdir("./16", 0777)         = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5961 attached
 <unfinished ...>
[pid  5961] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 5961
[pid  5961] <... set_robust_list resumed>) = 0
[pid  5961] chdir("./16")               = 0
[pid  5961] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5064] umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5961] setpgid(0, 0 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5961] <... setpgid resumed>)      = 0
[pid  5064] newfstatat(AT_FDCWD, "./15/file0",  <unfinished ...>
[pid  5961] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5961] <... openat resumed>)       = 3
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./15/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5961] write(3, "1000", 4 <unfinished ...>
[pid  5064] <... openat resumed>)       = 4
[pid  5961] <... write resumed>)        = 4
[pid  5064] newfstatat(4, "",  <unfinished ...>
[pid  5961] close(3 <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5961] <... close resumed>)        = 0
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5961] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5064] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5961] <... symlink resumed>)      = 0
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5961] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5064] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./15/file0" <unfinished ...>
[pid  5961] <... memfd_create resumed>) = 3
[pid  5961] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5064] <... rmdir resumed>)        = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./15")               = 0
[  107.402656][ T5942] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  107.432777][ T5942] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5064] mkdir("./16", 0777)         = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 5964
./strace-static-x86_64: Process 5964 attached
[pid  5964] set_robust_list(0x55555697c760, 24) = 0
[pid  5964] chdir("./16")               = 0
[pid  5964] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5964] setpgid(0, 0)               = 0
[pid  5964] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5964] write(3, "1000", 4)         = 4
[pid  5964] close(3)                    = 0
[pid  5964] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5964] memfd_create("syzkaller", 0) = 3
[pid  5964] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5954] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[  107.602742][ T5942] XFS (loop1): Ending clean mount
[  107.630698][ T5942] XFS (loop1): Quotacheck needed: Please wait.
[pid  5955] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5942] <... mount resumed>)        = 0
[  107.692665][ T5942] XFS (loop1): Quotacheck: Done.
[pid  5942] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5942] chdir("./file0")            = 0
[pid  5942] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5942] close(4)                    = 0
[pid  5961] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5942] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5942] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5942] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5942] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5942] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5942] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5942] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5942] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5942] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5942] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5942] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5942] write(-1, NULL, 0 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5942] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5067] umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5942] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5942] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5067] newfstatat(AT_FDCWD, "./16/file0",  <unfinished ...>
[pid  5942] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5942] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5067] umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5942] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5942] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5942] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5942] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5067] openat(AT_FDCWD, "./16/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5942] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5942] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5067] <... openat resumed>)       = 4
[pid  5942] <... openat resumed>)       = 4
[pid  5942] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5942] <... openat resumed>)       = 5
[pid  5067] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5942] sendfile(5, 4, [100] <unfinished ...>
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./16/file0")         = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./16")               = 0
[  107.841867][ T5942] syz-executor246 (5942): drop_caches: 2
[pid  5067] mkdir("./17", 0777)         = 0
[pid  5964] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5942] <... sendfile resumed> => [671], 571) = 571
[pid  5067] <... openat resumed>)       = 3
[pid  5942] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5942] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5942] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5942] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5942] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5942] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] close(3 <unfinished ...>
[pid  5942] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5067] <... close resumed>)        = 0
[pid  5942] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5942] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5942] read(-1, ./strace-static-x86_64: Process 5966 attached
NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 5966
[pid  5966] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5942] exit_group(0)               = ?
[pid  5966] <... set_robust_list resumed>) = 0
[pid  5966] chdir("./17")               = 0
[  107.885733][ T5942] syz-executor246 (5942): drop_caches: 2
[pid  5966] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5942] +++ exited with 0 +++
[pid  5966] <... prctl resumed>)        = 0
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5942, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} ---
[pid  5966] setpgid(0, 0 <unfinished ...>
[pid  5063] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5966] <... setpgid resumed>)      = 0
[pid  5063] <... restart_syscall resumed>) = 0
[pid  5966] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5063] umount2("./16", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5966] write(3, "1000", 4 <unfinished ...>
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5966] <... write resumed>)        = 4
[pid  5966] close(3 <unfinished ...>
[pid  5063] umount2("./16/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5966] <... close resumed>)        = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5966] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./16/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] unlink("./16/binderfs" <unfinished ...>
[pid  5966] <... symlink resumed>)      = 0
[pid  5063] <... unlink resumed>)       = 0
[pid  5063] umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5966] memfd_create("syzkaller", 0) = 3
[pid  5966] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  107.998178][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5955] <... write resumed>)        = 16777216
[pid  5954] <... write resumed>)        = 16777216
[pid  5954] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5955] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5954] <... munmap resumed>)       = 0
[pid  5955] <... munmap resumed>)       = 0
[pid  5954] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5954] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5955] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  5955] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5955] close(3)                    = 0
[pid  5954] <... ioctl resumed>)        = 0
[pid  5954] close(3)                    = 0
[pid  5955] mkdir("./file0", 0777 <unfinished ...>
[pid  5954] mkdir("./file0", 0777)      = 0
[pid  5954] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5955] <... mkdir resumed>)        = 0
[  108.188755][ T5954] loop0: detected capacity change from 0 to 32768
[  108.197215][ T5955] loop4: detected capacity change from 0 to 32768
[pid  5955] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5961] <... write resumed>)        = 16777216
[pid  5961] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5063] <... umount2 resumed>)      = 0
[pid  5966] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5063] umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./16/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5961] <... munmap resumed>)       = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./16/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5961] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5063] <... openat resumed>)       = 4
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  5961] <... openat resumed>)       = 4
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5961] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5961] <... ioctl resumed>)        = 0
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5961] close(3 <unfinished ...>
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5961] <... close resumed>)        = 0
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5961] mkdir("./file0", 0777 <unfinished ...>
[  108.307237][ T5954] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  108.315656][ T5955] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  108.331249][ T5954] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  108.339840][ T5961] loop3: detected capacity change from 0 to 32768
[pid  5063] close(4 <unfinished ...>
[pid  5961] <... mkdir resumed>)        = 0
[pid  5063] <... close resumed>)        = 0
[pid  5961] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5063] rmdir("./16/file0")         = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3)                    = 0
[pid  5063] rmdir("./16")               = 0
[pid  5063] mkdir("./17", 0777)         = 0
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[  108.351968][ T5955] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5063] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5063] close(3)                    = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5983 attached
 <unfinished ...>
[pid  5983] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 5983
[pid  5983] <... set_robust_list resumed>) = 0
[pid  5983] chdir("./17")               = 0
[pid  5983] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5983] setpgid(0, 0)               = 0
[pid  5983] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5983] write(3, "1000", 4)         = 4
[pid  5983] close(3)                    = 0
[  108.414121][ T5961] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  108.432919][ T5955] XFS (loop4): Ending clean mount
[  108.443293][ T5961] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5983] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5983] memfd_create("syzkaller", 0) = 3
[pid  5983] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  108.466892][ T5955] XFS (loop4): Quotacheck needed: Please wait.
[pid  5966] <... write resumed>)        = 16777216
[pid  5955] <... mount resumed>)        = 0
[pid  5966] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5964] <... write resumed>)        = 16777216
[pid  5964] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5955] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5955] chdir("./file0")            = 0
[  108.534271][ T5955] XFS (loop4): Quotacheck: Done.
[  108.540662][ T5954] XFS (loop0): Ending clean mount
[  108.567846][ T5954] XFS (loop0): Quotacheck needed: Please wait.
[  108.576015][ T5961] XFS (loop3): Ending clean mount
[pid  5966] <... munmap resumed>)       = 0
[pid  5955] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5966] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[pid  5966] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5955] <... ioctl resumed>)        = 0
[pid  5955] close(4)                    = 0
[pid  5955] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5964] <... munmap resumed>)       = 0
[pid  5966] <... ioctl resumed>)        = 0
[pid  5955] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5955] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5966] close(3 <unfinished ...>
[pid  5964] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5966] <... close resumed>)        = 0
[pid  5964] <... openat resumed>)       = 4
[pid  5966] mkdir("./file0", 0777 <unfinished ...>
[pid  5964] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5966] <... mkdir resumed>)        = 0
[pid  5955] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5955] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5955] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5966] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5955] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5955] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5955] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5955] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5955] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5955] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5955] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5964] <... ioctl resumed>)        = 0
[pid  5964] close(3)                    = 0
[pid  5964] mkdir("./file0", 0777 <unfinished ...>
[pid  5955] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[  108.584162][ T5961] XFS (loop3): Quotacheck needed: Please wait.
[  108.590226][ T5966] loop5: detected capacity change from 0 to 32768
[  108.617397][ T5964] loop2: detected capacity change from 0 to 32768
[  108.622396][ T5961] XFS (loop3): Quotacheck: Done.
[pid  5955] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5964] <... mkdir resumed>)        = 0
[pid  5964] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5955] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5961] <... mount resumed>)        = 0
[pid  5955] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5961] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5955] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5954] <... mount resumed>)        = 0
[pid  5961] chdir("./file0" <unfinished ...>
[pid  5955] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5955] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5961] <... chdir resumed>)        = 0
[pid  5955] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5954] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5955] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5961] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5955] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5954] <... openat resumed>)       = 3
[pid  5961] <... ioctl resumed>)        = 0
[pid  5955] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5954] chdir("./file0" <unfinished ...>
[pid  5961] close(4 <unfinished ...>
[pid  5955] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5954] <... chdir resumed>)        = 0
[pid  5955] <... openat resumed>)       = 4
[pid  5955] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5961] <... close resumed>)        = 0
[pid  5954] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5961] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5955] <... openat resumed>)       = 5
[pid  5961] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5954] <... ioctl resumed>)        = 0
[  108.647917][ T5954] XFS (loop0): Quotacheck: Done.
[  108.660799][ T5966] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[pid  5955] sendfile(5, 4, [100] <unfinished ...>
[pid  5961] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5954] close(4 <unfinished ...>
[pid  5961] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5954] <... close resumed>)        = 0
[pid  5961] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5954] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5961] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5954] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5961] ftruncate(-1, 33587195 <unfinished ...>
[pid  5954] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5961] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5961] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5961] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5961] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5954] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5961] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5961] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5961] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5954] ftruncate(-1, 33587195 <unfinished ...>
[pid  5961] read(-1,  <unfinished ...>
[pid  5954] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5961] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5954] read(-1,  <unfinished ...>
[pid  5961] write(-1, NULL, 0 <unfinished ...>
[pid  5954] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5961] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5954] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5961] write(-1, NULL, 0 <unfinished ...>
[pid  5954] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5961] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5954] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5961] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5954] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5961] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5954] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5961] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5954] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5961] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5954] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5961] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5954] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5961] <... openat resumed>)       = -1 EFAULT (Bad address)
[  108.695469][ T5964] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  108.704020][ T5966] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5954] read(-1,  <unfinished ...>
[pid  5983] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5961] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5954] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5961] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5954] write(-1, NULL, 0 <unfinished ...>
[pid  5961] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5954] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5961] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5954] write(-1, NULL, 0 <unfinished ...>
[pid  5961] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5954] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5961] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5954] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5961] <... openat resumed>)       = 4
[pid  5954] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5961] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5954] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[  108.751317][ T5964] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  108.779278][ T5955] syz-executor246 (5955): drop_caches: 2
[pid  5961] <... openat resumed>)       = 5
[pid  5954] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5961] sendfile(5, 4, [100] <unfinished ...>
[pid  5954] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5954] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5954] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5954] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5954] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[  108.798873][ T5961] syz-executor246 (5961): drop_caches: 2
[pid  5954] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5954] sendfile(5, 4, [100] <unfinished ...>
[pid  5955] <... sendfile resumed> => [671], 571) = 571
[pid  5955] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5955] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5955] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5955] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5955] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5955] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5955] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5955] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5955] exit_group(0)               = ?
[pid  5955] +++ exited with 0 +++
[pid  5961] <... sendfile resumed> => [671], 571) = 571
[  108.825199][ T5954] syz-executor246 (5954): drop_caches: 2
[  108.832667][ T5954] syz-executor246 (5954): drop_caches: 2
[  108.840923][ T5966] XFS (loop5): Ending clean mount
[  108.845606][ T5955] syz-executor246 (5955): drop_caches: 2
[  108.857827][ T5961] syz-executor246 (5961): drop_caches: 2
[pid  5961] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5954] <... sendfile resumed> => [671], 571) = 571
[pid  5961] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5954] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5961] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5954] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5961] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5954] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5961] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5961] ftruncate(-1, 33587199 <unfinished ...>
[pid  5954] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5961] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5954] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5961] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5954] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5961] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5955, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=35 /* 0.35 s */} ---
[pid  5961] open(NULL, O_RDONLY <unfinished ...>
[pid  5954] ftruncate(-1, 33587199 <unfinished ...>
[pid  5066] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5961] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5961] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5954] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5961] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5954] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5066] <... restart_syscall resumed>) = 0
[pid  5961] read(-1,  <unfinished ...>
[pid  5954] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5961] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5954] open(NULL, O_RDONLY <unfinished ...>
[pid  5961] exit_group(0 <unfinished ...>
[pid  5954] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] umount2("./16", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5954] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5961] <... exit_group resumed>)   = ?
[pid  5954] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5961] +++ exited with 0 +++
[pid  5066] openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5954] read(-1,  <unfinished ...>
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5961, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=31 /* 0.31 s */} ---
[pid  5954] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5066] <... openat resumed>)       = 3
[pid  5954] exit_group(0)               = ?
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  5065] umount2("./16", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5954] +++ exited with 0 +++
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5065] openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5954, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=35 /* 0.35 s */} ---
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  5066] umount2("./16/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5062] <... restart_syscall resumed>) = 0
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] newfstatat(AT_FDCWD, "./16/binderfs",  <unfinished ...>
[pid  5065] umount2("./16/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  108.871588][ T5966] XFS (loop5): Quotacheck needed: Please wait.
[  108.892098][ T5964] XFS (loop2): Ending clean mount
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] newfstatat(AT_FDCWD, "./16/binderfs",  <unfinished ...>
[pid  5066] unlink("./16/binderfs" <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./16", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] unlink("./16/binderfs" <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] <... unlink resumed>)       = 0
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  5065] umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5966] <... mount resumed>)        = 0
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5966] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5062] umount2("./16/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5966] chdir("./file0" <unfinished ...>
[pid  5066] <... unlink resumed>)       = 0
[pid  5966] <... chdir resumed>)        = 0
[pid  5966] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5066] umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5966] <... ioctl resumed>)        = 0
[pid  5062] newfstatat(AT_FDCWD, "./16/binderfs",  <unfinished ...>
[pid  5966] close(4)                    = 0
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5966] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5062] unlink("./16/binderfs" <unfinished ...>
[pid  5966] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5062] <... unlink resumed>)       = 0
[pid  5966] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5966] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5966] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5966] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5966] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5966] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5966] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5966] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5966] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5966] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5966] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5966] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5062] umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5966] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[  108.920736][ T5966] XFS (loop5): Quotacheck: Done.
[  108.927915][ T5964] XFS (loop2): Quotacheck needed: Please wait.
[  108.937515][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  108.957118][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5966] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5966] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5966] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5966] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5966] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5966] sendfile(5, 4, [100] <unfinished ...>
[pid  5964] <... mount resumed>)        = 0
[pid  5964] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5964] chdir("./file0")            = 0
[pid  5964] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5964] close(4)                    = 0
[pid  5964] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5964] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5964] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5964] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5964] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5964] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5964] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[  108.969978][ T5964] XFS (loop2): Quotacheck: Done.
[  108.976569][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5964] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5964] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5964] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5964] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5964] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5964] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5964] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5964] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5964] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5964] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5964] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5964] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5964] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  109.020096][ T5966] syz-executor246 (5966): drop_caches: 2
[pid  5964] sendfile(5, 4, [100] <unfinished ...>
[pid  5966] <... sendfile resumed> => [671], 571) = 571
[pid  5966] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5966] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5966] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5966] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5966] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5966] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5966] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5966] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5966] exit_group(0)               = ?
[pid  5966] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5966, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=33 /* 0.33 s */} ---
[pid  5067] umount2("./17", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./17/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  109.073018][ T5964] syz-executor246 (5964): drop_caches: 2
[  109.083383][ T5966] syz-executor246 (5966): drop_caches: 2
[pid  5067] newfstatat(AT_FDCWD, "./17/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./17/binderfs")     = 0
[pid  5067] umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5964] <... sendfile resumed> => [671], 571) = 571
[pid  5964] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5964] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  5964] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5964] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5964] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5964] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5964] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5964] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5964] exit_group(0)               = ?
[pid  5964] +++ exited with 0 +++
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5964, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=37 /* 0.37 s */} ---
[pid  5064] umount2("./16", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[  109.135196][ T5964] syz-executor246 (5964): drop_caches: 2
[  109.148397][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./16/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./16/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./16/binderfs")     = 0
[pid  5064] umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5983] <... write resumed>)        = 16777216
[pid  5983] munmap(0x7f6d986f1000, 138412032) = 0
[  109.273553][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5983] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid  5983] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5983] close(3)                    = 0
[pid  5983] mkdir("./file0", 0777)      = 0
[pid  5983] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  5065] umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./16/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./16/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[  109.328589][ T5983] loop1: detected capacity change from 0 to 32768
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  5065] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./16/file0",  <unfinished ...>
[pid  5065] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4 <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] <... close resumed>)        = 0
[pid  5062] umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] rmdir("./16/file0" <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] <... rmdir resumed>)        = 0
[pid  5062] openat(AT_FDCWD, "./16/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5062] <... openat resumed>)       = 4
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  5065] close(3 <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] <... close resumed>)        = 0
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5065] rmdir("./16" <unfinished ...>
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] <... rmdir resumed>)        = 0
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5065] mkdir("./17", 0777 <unfinished ...>
[pid  5062] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] <... mkdir resumed>)        = 0
[pid  5062] close(4 <unfinished ...>
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5065] <... openat resumed>)       = 3
[pid  5062] rmdir("./16/file0" <unfinished ...>
[pid  5065] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  5065] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5065] close(3 <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] <... close resumed>)        = 0
[pid  5062] close(3 <unfinished ...>
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5062] <... close resumed>)        = 0
./strace-static-x86_64: Process 6013 attached
[pid  5062] rmdir("./16" <unfinished ...>
[pid  6013] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  5062] mkdir("./17", 0777)         = 0
[pid  6013] <... set_robust_list resumed>) = 0
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 6013
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3)                    = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6014
[pid  6013] chdir("./17"./strace-static-x86_64: Process 6014 attached
)               = 0
[pid  6014] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6013] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6014] <... set_robust_list resumed>) = 0
[pid  6013] setpgid(0, 0)               = 0
[pid  6014] chdir("./17" <unfinished ...>
[  109.394831][ T5983] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[pid  6013] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6014] <... chdir resumed>)        = 0
[pid  6013] write(3, "1000", 4)         = 4
[pid  6014] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6013] close(3 <unfinished ...>
[pid  6014] <... prctl resumed>)        = 0
[pid  6013] <... close resumed>)        = 0
[pid  6013] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6014] setpgid(0, 0 <unfinished ...>
[pid  6013] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6014] <... setpgid resumed>)      = 0
[pid  6014] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6013] <... memfd_create resumed>) = 3
[pid  6014] <... openat resumed>)       = 3
[pid  6013] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6014] write(3, "1000", 4)         = 4
[pid  6014] close(3)                    = 0
[pid  6014] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6014] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5066] newfstatat(AT_FDCWD, "./16/file0",  <unfinished ...>
[pid  6014] <... memfd_create resumed>) = 3
[pid  6014] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6014] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5066] umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./16/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[  109.452225][ T5983] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./16/file0")         = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./16")               = 0
[pid  5066] mkdir("./17", 0777)         = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] close(3)                    = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6018
./strace-static-x86_64: Process 6018 attached
[pid  6018] set_robust_list(0x55555697c760, 24) = 0
[pid  6018] chdir("./17" <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  6018] <... chdir resumed>)        = 0
[  109.565176][ T5983] XFS (loop1): Ending clean mount
[  109.577090][ T5983] XFS (loop1): Quotacheck needed: Please wait.
[pid  6018] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5067] umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6018] <... prctl resumed>)        = 0
[pid  6018] setpgid(0, 0)               = 0
[pid  6018] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./17/file0",  <unfinished ...>
[pid  6018] <... openat resumed>)       = 3
[pid  6018] write(3, "1000", 4 <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6018] <... write resumed>)        = 4
[pid  5067] umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./17/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  6018] close(3)                    = 0
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  6018] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4 <unfinished ...>
[pid  6018] <... symlink resumed>)      = 0
[pid  5067] <... close resumed>)        = 0
[pid  6018] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5067] rmdir("./17/file0" <unfinished ...>
[pid  6018] <... memfd_create resumed>) = 3
[pid  6018] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5983] <... mount resumed>)        = 0
[pid  5067] <... rmdir resumed>)        = 0
[pid  6018] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[  109.650201][ T5983] XFS (loop1): Quotacheck: Done.
[pid  5067] rmdir("./17")               = 0
[pid  5983] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5064] <... umount2 resumed>)      = 0
[pid  5983] chdir("./file0" <unfinished ...>
[pid  5064] umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5983] <... chdir resumed>)        = 0
[pid  5983] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5983] <... ioctl resumed>)        = 0
[pid  5983] close(4 <unfinished ...>
[pid  5064] newfstatat(AT_FDCWD, "./16/file0",  <unfinished ...>
[pid  5983] <... close resumed>)        = 0
[pid  5067] mkdir("./18", 0777)         = 0
[pid  5983] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5983] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5064] umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5983] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5983] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5064] openat(AT_FDCWD, "./16/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5983] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5064] <... openat resumed>)       = 4
[pid  5983] ftruncate(-1, 33587195 <unfinished ...>
[pid  5067] <... openat resumed>)       = 3
[pid  5064] newfstatat(4, "",  <unfinished ...>
[pid  5983] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5983] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5983] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5983] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5983] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5983] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5983] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5983] read(-1,  <unfinished ...>
[pid  5067] close(3 <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] <... close resumed>)        = 0
[pid  5064] close(4 <unfinished ...>
[pid  5983] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5064] <... close resumed>)        = 0
[pid  5983] write(-1, NULL, 0 <unfinished ...>
[pid  5064] rmdir("./16/file0"./strace-static-x86_64: Process 6019 attached
 <unfinished ...>
[pid  5983] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6019] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5983] write(-1, NULL, 0 <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 6019
[pid  5064] <... rmdir resumed>)        = 0
[pid  6019] <... set_robust_list resumed>) = 0
[pid  5983] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5983] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5983] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5983] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5983] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5983] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5983] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5983] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5064] getdents64(3,  <unfinished ...>
[pid  6019] chdir("./18" <unfinished ...>
[pid  5983] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6019] <... chdir resumed>)        = 0
[pid  5983] <... openat resumed>)       = 5
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6019] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5983] sendfile(5, 4, [100] <unfinished ...>
[pid  6019] <... prctl resumed>)        = 0
[pid  5064] close(3 <unfinished ...>
[pid  6019] setpgid(0, 0)               = 0
[pid  5064] <... close resumed>)        = 0
[pid  6019] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6013] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5064] rmdir("./16" <unfinished ...>
[pid  6019] <... openat resumed>)       = 3
[pid  6019] write(3, "1000", 4 <unfinished ...>
[pid  5064] <... rmdir resumed>)        = 0
[pid  6019] <... write resumed>)        = 4
[pid  5064] mkdir("./17", 0777 <unfinished ...>
[pid  6019] close(3 <unfinished ...>
[pid  5064] <... mkdir resumed>)        = 0
[pid  6019] <... close resumed>)        = 0
[pid  6019] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  6019] <... symlink resumed>)      = 0
[pid  6019] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5064] <... openat resumed>)       = 3
[pid  6019] <... memfd_create resumed>) = 3
[pid  6019] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5064] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6019] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5064] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6020 attached
, child_tidptr=0x55555697c750) = 6020
[pid  6020] set_robust_list(0x55555697c760, 24) = 0
[pid  6020] chdir("./17")               = 0
[pid  6020] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[  109.845313][ T5983] syz-executor246 (5983): drop_caches: 2
[pid  5983] <... sendfile resumed> => [671], 571) = 571
[pid  6020] setpgid(0, 0)               = 0
[pid  6020] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6020] write(3, "1000", 4)         = 4
[pid  6020] close(3 <unfinished ...>
[pid  5983] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6020] <... close resumed>)        = 0
[pid  6014] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6020] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5983] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5983] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6020] memfd_create("syzkaller", 0) = 3
[pid  6020] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5983] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5983] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6020] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5983] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5983] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[  109.896710][ T5983] syz-executor246 (5983): drop_caches: 2
[pid  5983] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5983] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5983] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5983] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5983] exit_group(0)               = ?
[pid  5983] +++ exited with 0 +++
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5983, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=41 /* 0.41 s */} ---
[pid  5063] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5063] umount2("./17", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./17/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./17/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] unlink("./17/binderfs")     = 0
[  110.002479][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5063] umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6018] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6019] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6020] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6013] <... write resumed>)        = 16777216
[pid  6013] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5063] <... umount2 resumed>)      = 0
[pid  6013] <... munmap resumed>)       = 0
[pid  5063] umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6013] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./17/file0",  <unfinished ...>
[pid  6013] <... openat resumed>)       = 4
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6013] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5063] umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6013] <... ioctl resumed>)        = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./17/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6013] close(3 <unfinished ...>
[pid  5063] getdents64(4,  <unfinished ...>
[pid  6013] <... close resumed>)        = 0
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  6013] mkdir("./file0", 0777 <unfinished ...>
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  6013] <... mkdir resumed>)        = 0
[pid  5063] close(4)                    = 0
[pid  5063] rmdir("./17/file0")         = 0
[pid  6013] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3)                    = 0
[pid  5063] rmdir("./17")               = 0
[pid  5063] mkdir("./18", 0777)         = 0
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6014] <... write resumed>)        = 16777216
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5063] close(3)                    = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6023 attached
, child_tidptr=0x55555697c750) = 6023
[  110.486163][ T6013] loop3: detected capacity change from 0 to 32768
[pid  6023] set_robust_list(0x55555697c760, 24) = 0
[pid  6014] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6023] chdir("./18" <unfinished ...>
[pid  6014] <... munmap resumed>)       = 0
[pid  6014] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  6023] <... chdir resumed>)        = 0
[pid  6023] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6023] setpgid(0, 0)               = 0
[pid  6023] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6023] write(3, "1000", 4)         = 4
[pid  6023] close(3)                    = 0
[pid  6023] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6023] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6014] <... openat resumed>)       = 4
[pid  6023] <... memfd_create resumed>) = 3
[pid  6014] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6023] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6014] <... ioctl resumed>)        = 0
[pid  6014] close(3)                    = 0
[  110.575244][ T6013] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  110.584399][ T6013] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  110.614363][ T6014] loop0: detected capacity change from 0 to 32768
[pid  6014] mkdir("./file0", 0777)      = 0
[pid  6014] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6018] <... write resumed>)        = 16777216
[  110.685495][ T6013] XFS (loop3): Ending clean mount
[pid  6018] munmap(0x7f6d986f1000, 138412032) = 0
[pid  6019] <... write resumed>)        = 16777216
[  110.714571][ T6014] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  110.723592][ T6014] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  110.746739][ T6013] XFS (loop3): Quotacheck needed: Please wait.
[pid  6018] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  6018] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6019] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6023] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6018] <... ioctl resumed>)        = 0
[pid  6018] close(3)                    = 0
[pid  6018] mkdir("./file0", 0777)      = 0
[  110.784103][ T6018] loop4: detected capacity change from 0 to 32768
[  110.824031][ T6013] XFS (loop3): Quotacheck: Done.
[pid  6018] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6013] <... mount resumed>)        = 0
[pid  6013] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6013] chdir("./file0")            = 0
[pid  6013] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6013] close(4)                    = 0
[pid  6013] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6013] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6019] <... munmap resumed>)       = 0
[pid  6019] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[pid  6019] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[  110.873498][ T6014] XFS (loop0): Ending clean mount
[  110.890077][ T6014] XFS (loop0): Quotacheck needed: Please wait.
[  110.909348][ T6019] loop5: detected capacity change from 0 to 32768
[pid  6013] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6013] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6013] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6013] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6013] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6019] <... ioctl resumed>)        = 0
[pid  6020] <... write resumed>)        = 16777216
[pid  6019] close(3)                    = 0
[pid  6019] mkdir("./file0", 0777 <unfinished ...>
[pid  6013] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6013] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6019] <... mkdir resumed>)        = 0
[pid  6013] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6019] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6013] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6013] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6013] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6013] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[  110.916838][ T6018] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  110.931539][ T6018] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6013] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6013] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6013] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6013] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6013] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6013] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6013] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6013] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6013] sendfile(5, 4, [100] <unfinished ...>
[pid  6014] <... mount resumed>)        = 0
[  110.976202][ T6014] XFS (loop0): Quotacheck: Done.
[pid  6020] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6014] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6014] chdir("./file0")            = 0
[pid  6014] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6014] close(4)                    = 0
[pid  6014] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6014] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6014] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[  111.006799][ T6019] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  111.035686][ T6013] syz-executor246 (6013): drop_caches: 2
[pid  6023] <... write resumed>)        = 16777216
[pid  6014] ftruncate(-1, 33587195 <unfinished ...>
[pid  6020] <... munmap resumed>)       = 0
[pid  6014] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6014] read(-1,  <unfinished ...>
[pid  6023] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6020] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  6014] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6013] <... sendfile resumed> => [671], 571) = 571
[pid  6020] <... openat resumed>)       = 4
[pid  6014] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6020] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6014] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6013] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6014] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6020] <... ioctl resumed>)        = 0
[pid  6014] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6013] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6020] close(3)                    = 0
[pid  6014] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6013] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6014] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6013] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6020] mkdir("./file0", 0777 <unfinished ...>
[pid  6014] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6013] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6023] <... munmap resumed>)       = 0
[pid  6020] <... mkdir resumed>)        = 0
[pid  6014] read(-1,  <unfinished ...>
[pid  6013] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6014] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6013] ftruncate(-1, 33587199 <unfinished ...>
[pid  6014] write(-1, NULL, 0 <unfinished ...>
[pid  6013] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6014] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6013] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6014] write(-1, NULL, 0 <unfinished ...>
[pid  6013] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6014] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6013] open(NULL, O_RDONLY <unfinished ...>
[pid  6014] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6013] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6013] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6023] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[  111.059362][ T6013] syz-executor246 (6013): drop_caches: 2
[  111.065285][ T6019] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  111.090204][ T6020] loop2: detected capacity change from 0 to 32768
[  111.092128][ T6018] XFS (loop4): Ending clean mount
[pid  6020] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6013] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6023] <... openat resumed>)       = 4
[pid  6014] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6023] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6014] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6013] read(-1,  <unfinished ...>
[pid  6014] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6013] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6014] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6013] exit_group(0 <unfinished ...>
[pid  6014] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6013] <... exit_group resumed>)   = ?
[pid  6014] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6013] +++ exited with 0 +++
[pid  6014] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6013, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=29 /* 0.29 s */} ---
[pid  6014] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6014] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5065] umount2("./17", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6023] <... ioctl resumed>)        = 0
[pid  6014] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6014] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5065] openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6023] close(3 <unfinished ...>
[pid  6014] <... openat resumed>)       = 4
[pid  5065] <... openat resumed>)       = 3
[pid  6023] <... close resumed>)        = 0
[pid  6014] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  6014] <... openat resumed>)       = 5
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6014] sendfile(5, 4, [100] <unfinished ...>
[pid  5065] getdents64(3,  <unfinished ...>
[pid  6023] mkdir("./file0", 0777 <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] umount2("./17/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./17/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] unlink("./17/binderfs" <unfinished ...>
[pid  6023] <... mkdir resumed>)        = 0
[pid  6018] <... mount resumed>)        = 0
[pid  5065] <... unlink resumed>)       = 0
[  111.118385][ T6018] XFS (loop4): Quotacheck needed: Please wait.
[  111.119148][ T6023] loop1: detected capacity change from 0 to 32768
[  111.157861][ T6014] syz-executor246 (6014): drop_caches: 2
[  111.158262][ T6018] XFS (loop4): Quotacheck: Done.
[pid  6023] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6018] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5065] umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6018] <... openat resumed>)       = 3
[pid  6014] <... sendfile resumed> => [671], 571) = 571
[pid  6018] chdir("./file0")            = 0
[pid  6014] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6018] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6014] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6018] <... ioctl resumed>)        = 0
[pid  6014] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6018] close(4)                    = 0
[pid  6014] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6018] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6018] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6018] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6018] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6018] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6018] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6018] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6014] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6018] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6018] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6014] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6018] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6014] ftruncate(-1, 33587199 <unfinished ...>
[pid  6018] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6014] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6018] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6014] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6018] read(-1,  <unfinished ...>
[pid  6014] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6018] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6014] open(NULL, O_RDONLY <unfinished ...>
[pid  6018] write(-1, NULL, 0 <unfinished ...>
[pid  6014] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6018] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6014] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6014] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6018] write(-1, NULL, 0 <unfinished ...>
[pid  6014] exit_group(0 <unfinished ...>
[pid  6018] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6014] <... exit_group resumed>)   = ?
[pid  6018] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6014] +++ exited with 0 +++
[pid  6018] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6014, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=32 /* 0.32 s */} ---
[pid  6018] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[  111.175375][ T6020] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  111.178159][ T6014] syz-executor246 (6014): drop_caches: 2
[  111.189277][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  111.199101][ T6019] XFS (loop5): Ending clean mount
[  111.206658][ T6020] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6018] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5062] umount2("./17", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3,  <unfinished ...>
[pid  6018] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6018] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5062] umount2("./17/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6018] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] newfstatat(AT_FDCWD, "./17/binderfs",  <unfinished ...>
[pid  6018] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./17/binderfs" <unfinished ...>
[pid  6018] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] <... unlink resumed>)       = 0
[pid  6018] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5062] umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6018] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6018] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  111.228693][ T6019] XFS (loop5): Quotacheck needed: Please wait.
[  111.266494][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6018] sendfile(5, 4, [100] <unfinished ...>
[pid  6019] <... mount resumed>)        = 0
[  111.280958][ T6023] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  111.301315][ T6019] XFS (loop5): Quotacheck: Done.
[  111.316967][ T6020] XFS (loop2): Ending clean mount
[  111.319799][ T6018] syz-executor246 (6018): drop_caches: 2
[pid  6019] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6019] chdir("./file0")            = 0
[pid  6019] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6019] close(4)                    = 0
[pid  6019] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6019] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6019] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6019] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6019] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6019] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6019] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6019] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6019] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[  111.331177][ T6023] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  111.358975][ T6020] XFS (loop2): Quotacheck needed: Please wait.
[pid  6019] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6019] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6019] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6019] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6019] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6019] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6019] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6018] <... sendfile resumed> => [671], 571) = 571
[pid  6019] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6019] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6018] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  6019] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5065] umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6019] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6018] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6018] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6019] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6018] <... open resumed>)         = -1 EFAULT (Bad address)
[  111.388175][ T6018] syz-executor246 (6018): drop_caches: 2
[pid  5065] newfstatat(AT_FDCWD, "./17/file0",  <unfinished ...>
[pid  6019] <... openat resumed>)       = 5
[pid  6018] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6019] sendfile(5, 4, [100] <unfinished ...>
[pid  5065] umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6018] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6018] ftruncate(-1, 33587199 <unfinished ...>
[pid  5065] openat(AT_FDCWD, "./17/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6018] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6018] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5065] <... openat resumed>)       = 4
[pid  6018] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5065] newfstatat(4, "",  <unfinished ...>
[pid  6018] open(NULL, O_RDONLY <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6018] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6018] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6018] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6018] exit_group(0 <unfinished ...>
[pid  5065] getdents64(4,  <unfinished ...>
[pid  6018] <... exit_group resumed>)   = ?
[pid  5065] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  6018] +++ exited with 0 +++
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6018, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=31 /* 0.31 s */} ---
[pid  5065] close(4)                    = 0
[pid  5066] umount2("./17", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] rmdir("./17/file0" <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6019] <... sendfile resumed> => [671], 571) = 571
[pid  5066] openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] <... rmdir resumed>)        = 0
[pid  6019] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./17/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./17/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] close(3 <unfinished ...>
[pid  5066] unlink("./17/binderfs")     = 0
[  111.459257][ T6019] syz-executor246 (6019): drop_caches: 2
[  111.475802][ T6023] XFS (loop1): Ending clean mount
[  111.484082][ T6019] syz-executor246 (6019): drop_caches: 2
[  111.492232][ T6023] XFS (loop1): Quotacheck needed: Please wait.
[  111.502247][ T6020] XFS (loop2): Quotacheck: Done.
[pid  5066] umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... close resumed>)        = 0
[pid  6019] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5065] rmdir("./17" <unfinished ...>
[pid  6019] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5065] <... rmdir resumed>)        = 0
[pid  6019] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] mkdir("./18", 0777 <unfinished ...>
[pid  6019] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5065] <... mkdir resumed>)        = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  6019] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6019] ftruncate(-1, 33587199 <unfinished ...>
[pid  5065] <... openat resumed>)       = 3
[pid  6019] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5065] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6020] <... mount resumed>)        = 0
[pid  6019] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5065] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6019] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5065] close(3 <unfinished ...>
[pid  6023] <... mount resumed>)        = 0
[pid  6019] open(NULL, O_RDONLY <unfinished ...>
[pid  5065] <... close resumed>)        = 0
[pid  6023] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6019] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6019] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6023] <... openat resumed>)       = 3
[pid  6020] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6019] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6023] chdir("./file0" <unfinished ...>
[pid  6019] read(-1,  <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 6070
[pid  6023] <... chdir resumed>)        = 0
[pid  6019] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
./strace-static-x86_64: Process 6070 attached
[pid  6023] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6020] <... openat resumed>)       = 3
[pid  6070] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6023] <... ioctl resumed>)        = 0
[pid  6020] chdir("./file0" <unfinished ...>
[pid  6019] exit_group(0 <unfinished ...>
[pid  6070] <... set_robust_list resumed>) = 0
[pid  6020] <... chdir resumed>)        = 0
[pid  6070] chdir("./18" <unfinished ...>
[pid  6023] close(4 <unfinished ...>
[pid  6020] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6019] <... exit_group resumed>)   = ?
[pid  6070] <... chdir resumed>)        = 0
[pid  6023] <... close resumed>)        = 0
[pid  6020] <... ioctl resumed>)        = 0
[pid  6019] +++ exited with 0 +++
[pid  6070] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6023] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6020] close(4 <unfinished ...>
[pid  6070] <... prctl resumed>)        = 0
[pid  6023] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6020] <... close resumed>)        = 0
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6019, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=37 /* 0.37 s */} ---
[pid  6070] setpgid(0, 0 <unfinished ...>
[pid  6023] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6020] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5067] umount2("./18", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6070] <... setpgid resumed>)      = 0
[  111.511144][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  111.532517][ T6023] XFS (loop1): Quotacheck: Done.
[pid  6023] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6020] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6070] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6023] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6020] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5067] openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6070] <... openat resumed>)       = 3
[pid  6023] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] <... umount2 resumed>)      = 0
[pid  6023] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5062] umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6070] write(3, "1000", 4 <unfinished ...>
[pid  6020] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... openat resumed>)       = 3
[pid  6070] <... write resumed>)        = 4
[pid  6020] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./17/file0",  <unfinished ...>
[pid  6070] close(3 <unfinished ...>
[pid  6023] read(-1,  <unfinished ...>
[pid  6020] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6070] <... close resumed>)        = 0
[pid  6023] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6020] ftruncate(-1, 33587195 <unfinished ...>
[pid  5067] getdents64(3,  <unfinished ...>
[pid  6070] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6023] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6020] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6070] <... symlink resumed>)      = 0
[pid  6023] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6020] read(-1,  <unfinished ...>
[pid  5067] umount2("./18/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6070] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6020] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6070] <... memfd_create resumed>) = 3
[pid  6020] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5067] newfstatat(AT_FDCWD, "./18/binderfs",  <unfinished ...>
[pid  5062] openat(AT_FDCWD, "./17/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6070] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6023] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6020] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6070] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6020] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5067] unlink("./18/binderfs" <unfinished ...>
[pid  6023] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] <... openat resumed>)       = 4
[pid  6023] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6020] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... unlink resumed>)       = 0
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  6020] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5067] umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6023] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6020] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4,  <unfinished ...>
[pid  6020] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6020] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6020] write(-1, NULL, 0 <unfinished ...>
[pid  6023] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6020] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  6023] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5062] getdents64(4,  <unfinished ...>
[pid  6023] read(-1,  <unfinished ...>
[pid  5062] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  6023] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5062] close(4 <unfinished ...>
[pid  6023] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5062] <... close resumed>)        = 0
[pid  6023] write(-1, NULL, 0 <unfinished ...>
[pid  5062] rmdir("./17/file0" <unfinished ...>
[pid  6023] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6023] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6023] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6020] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6023] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6023] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  5062] getdents64(3,  <unfinished ...>
[pid  6023] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6023] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6023] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6023] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] close(3 <unfinished ...>
[pid  6023] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] <... close resumed>)        = 0
[pid  6023] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6020] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6020] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6023] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6020] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5062] rmdir("./17" <unfinished ...>
[pid  6023] <... openat resumed>)       = 4
[pid  6020] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6020] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5062] <... rmdir resumed>)        = 0
[pid  6023] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6020] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6023] <... openat resumed>)       = 5
[pid  6020] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] mkdir("./18", 0777 <unfinished ...>
[pid  6020] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6020] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6023] sendfile(5, 4, [100] <unfinished ...>
[pid  6020] <... openat resumed>)       = 4
[pid  6020] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6020] sendfile(5, 4, [100] <unfinished ...>
[pid  5062] <... mkdir resumed>)        = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3)                    = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6071
./strace-static-x86_64: Process 6071 attached
[  111.637535][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  111.670064][ T6020] syz-executor246 (6020): drop_caches: 2
[pid  6071] set_robust_list(0x55555697c760, 24) = 0
[pid  6071] chdir("./18")               = 0
[pid  6071] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6071] setpgid(0, 0)               = 0
[pid  6071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6071] write(3, "1000", 4)         = 4
[pid  6071] close(3)                    = 0
[pid  6071] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6071] memfd_create("syzkaller", 0) = 3
[pid  6071] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6020] <... sendfile resumed> => [671], 571) = 571
[pid  6020] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6020] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6020] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6020] ftruncate(-1, 33587199 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  6020] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6020] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[  111.703432][ T6023] syz-executor246 (6023): drop_caches: 2
[  111.716854][ T6020] syz-executor246 (6020): drop_caches: 2
[  111.730444][ T6023] syz-executor246 (6023): drop_caches: 2
[pid  6020] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6020] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6020] read(-1,  <unfinished ...>
[pid  6023] <... sendfile resumed> => [671], 571) = 571
[pid  6020] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5066] umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6023] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6020] exit_group(0 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6023] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6020] <... exit_group resumed>)   = ?
[pid  5066] newfstatat(AT_FDCWD, "./17/file0",  <unfinished ...>
[pid  6023] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6020] +++ exited with 0 +++
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6023] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6023] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6020, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=35 /* 0.35 s */} ---
[pid  5066] openat(AT_FDCWD, "./17/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6023] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] <... openat resumed>)       = 4
[pid  5064] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  6023] ftruncate(-1, 33587199 <unfinished ...>
[pid  5066] newfstatat(4, "",  <unfinished ...>
[pid  5064] <... restart_syscall resumed>) = 0
[pid  6023] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6023] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5066] getdents64(4,  <unfinished ...>
[pid  6023] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5066] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  6023] open(NULL, O_RDONLY <unfinished ...>
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5064] umount2("./17", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6023] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  6023] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6023] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6023] read(-1,  <unfinished ...>
[pid  5066] close(4 <unfinished ...>
[pid  5064] openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6023] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5066] <... close resumed>)        = 0
[pid  6023] exit_group(0 <unfinished ...>
[pid  5066] rmdir("./17/file0" <unfinished ...>
[pid  5064] <... openat resumed>)       = 3
[pid  6023] <... exit_group resumed>)   = ?
[pid  5064] newfstatat(3, "",  <unfinished ...>
[pid  6023] +++ exited with 0 +++
[pid  5066] <... rmdir resumed>)        = 0
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6023, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=34 /* 0.34 s */} ---
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5064] getdents64(3,  <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3 <unfinished ...>
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] <... close resumed>)        = 0
[pid  5066] rmdir("./17" <unfinished ...>
[pid  5064] umount2("./17/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] umount2("./18", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] mkdir("./18", 0777 <unfinished ...>
[pid  5064] newfstatat(AT_FDCWD, "./17/binderfs",  <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5066] <... mkdir resumed>)        = 0
[pid  5064] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] <... openat resumed>)       = 3
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5064] unlink("./17/binderfs" <unfinished ...>
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] <... unlink resumed>)       = 0
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5066] close(3 <unfinished ...>
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./18/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./18/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] unlink("./18/binderfs")     = 0
[pid  5063] umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6072 attached
, child_tidptr=0x55555697c750) = 6072
[pid  6072] set_robust_list(0x55555697c760, 24) = 0
[  111.853385][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  111.862331][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6072] chdir("./18")               = 0
[pid  6072] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6072] setpgid(0, 0)               = 0
[pid  6072] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6072] write(3, "1000", 4)         = 4
[pid  6072] close(3)                    = 0
[pid  6072] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6072] memfd_create("syzkaller", 0) = 3
[pid  6072] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6070] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6071] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5067] umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./18/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./18/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./18/file0")         = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./18")               = 0
[pid  5067] mkdir("./19", 0777)         = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6073 attached
, child_tidptr=0x55555697c750) = 6073
[pid  6073] set_robust_list(0x55555697c760, 24) = 0
[pid  6073] chdir("./19")               = 0
[pid  6073] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6073] setpgid(0, 0)               = 0
[pid  6073] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6073] write(3, "1000", 4)         = 4
[pid  6073] close(3)                    = 0
[pid  6073] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6073] memfd_create("syzkaller", 0) = 3
[pid  6073] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5064] <... umount2 resumed>)      = 0
[pid  5063] <... umount2 resumed>)      = 0
[pid  5064] umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./17/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./17/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./17/file0")         = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5063] umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] rmdir("./17" <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] <... rmdir resumed>)        = 0
[pid  5063] newfstatat(AT_FDCWD, "./18/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] mkdir("./18", 0777 <unfinished ...>
[pid  5063] umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... mkdir resumed>)        = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./18/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5064] <... openat resumed>)       = 3
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5064] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4)                    = 0
[pid  5063] rmdir("./18/file0")         = 0
[pid  6072] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6074
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3)                    = 0
[pid  5063] rmdir("./18")               = 0
./strace-static-x86_64: Process 6074 attached
[pid  6074] set_robust_list(0x55555697c760, 24) = 0
[pid  6074] chdir("./18" <unfinished ...>
[pid  5063] mkdir("./19", 0777 <unfinished ...>
[pid  6074] <... chdir resumed>)        = 0
[pid  5063] <... mkdir resumed>)        = 0
[pid  6074] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6074] setpgid(0, 0)               = 0
[pid  6074] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6074] write(3, "1000", 4 <unfinished ...>
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6074] <... write resumed>)        = 4
[pid  5063] <... openat resumed>)       = 3
[pid  6074] close(3 <unfinished ...>
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6074] <... close resumed>)        = 0
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6074] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5063] close(3)                    = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6075
./strace-static-x86_64: Process 6075 attached
[pid  6074] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6075] set_robust_list(0x55555697c760, 24) = 0
[pid  6075] chdir("./19")               = 0
[pid  6075] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6075] setpgid(0, 0 <unfinished ...>
[pid  6074] <... memfd_create resumed>) = 3
[pid  6074] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6075] <... setpgid resumed>)      = 0
[pid  6075] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6075] write(3, "1000", 4)         = 4
[pid  6075] close(3)                    = 0
[pid  6075] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6075] memfd_create("syzkaller", 0) = 3
[pid  6075] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6070] <... write resumed>)        = 16777216
[pid  6070] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6071] <... write resumed>)        = 16777216
[pid  6071] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6070] <... munmap resumed>)       = 0
[pid  6070] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid  6073] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6071] <... munmap resumed>)       = 0
[pid  6070] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6071] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  6071] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6070] <... ioctl resumed>)        = 0
[pid  6070] close(3)                    = 0
[pid  6071] <... ioctl resumed>)        = 0
[pid  6070] mkdir("./file0", 0777)      = 0
[pid  6072] <... write resumed>)        = 16777216
[pid  6071] close(3 <unfinished ...>
[pid  6070] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6071] <... close resumed>)        = 0
[pid  6072] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6071] mkdir("./file0", 0777)      = 0
[  112.674600][ T6070] loop3: detected capacity change from 0 to 32768
[  112.694411][ T6071] loop0: detected capacity change from 0 to 32768
[pid  6071] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6074] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6072] <... munmap resumed>)       = 0
[pid  6072] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[  112.786847][ T6071] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  112.814458][ T6070] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  112.825979][ T6071] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6072] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6072] close(3)                    = 0
[pid  6072] mkdir("./file0", 0777)      = 0
[  112.837194][ T6070] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  112.837725][ T6072] loop4: detected capacity change from 0 to 32768
[pid  6072] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6073] <... write resumed>)        = 16777216
[pid  6073] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6075] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6073] <... munmap resumed>)       = 0
[pid  6073] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[pid  6073] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6073] close(3)                    = 0
[  112.941590][ T6072] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  112.958740][ T6071] XFS (loop0): Ending clean mount
[  112.966273][ T6070] XFS (loop3): Ending clean mount
[  112.972757][ T6073] loop5: detected capacity change from 0 to 32768
[pid  6073] mkdir("./file0", 0777)      = 0
[  112.983804][ T6072] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  113.007991][ T6071] XFS (loop0): Quotacheck needed: Please wait.
[  113.015481][ T6070] XFS (loop3): Quotacheck needed: Please wait.
[pid  6073] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6070] <... mount resumed>)        = 0
[pid  6070] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6071] <... mount resumed>)        = 0
[pid  6070] <... openat resumed>)       = 3
[pid  6070] chdir("./file0" <unfinished ...>
[pid  6071] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6070] <... chdir resumed>)        = 0
[pid  6070] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6071] <... openat resumed>)       = 3
[pid  6070] close(4 <unfinished ...>
[pid  6071] chdir("./file0" <unfinished ...>
[pid  6070] <... close resumed>)        = 0
[pid  6071] <... chdir resumed>)        = 0
[  113.054579][ T6073] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  113.068864][ T6073] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  113.085021][ T6070] XFS (loop3): Quotacheck: Done.
[  113.087746][ T6071] XFS (loop0): Quotacheck: Done.
[pid  6070] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6071] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6070] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6071] <... ioctl resumed>)        = 0
[pid  6070] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6071] close(4 <unfinished ...>
[pid  6070] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6071] <... close resumed>)        = 0
[pid  6070] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6071] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6070] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6071] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6070] ftruncate(-1, 33587195 <unfinished ...>
[pid  6071] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6070] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6071] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6070] read(-1,  <unfinished ...>
[pid  6071] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6070] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6071] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6070] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6071] ftruncate(-1, 33587195 <unfinished ...>
[pid  6070] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6071] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6070] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6071] read(-1,  <unfinished ...>
[pid  6070] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6071] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6070] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6071] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6070] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6071] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6070] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6071] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6070] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6071] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6070] read(-1,  <unfinished ...>
[pid  6071] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6070] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6071] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6070] write(-1, NULL, 0 <unfinished ...>
[pid  6071] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6070] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6071] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6070] write(-1, NULL, 0 <unfinished ...>
[pid  6071] read(-1,  <unfinished ...>
[pid  6070] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6071] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6070] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6071] write(-1, NULL, 0 <unfinished ...>
[pid  6074] <... write resumed>)        = 16777216
[pid  6071] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6070] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6074] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6071] write(-1, NULL, 0 <unfinished ...>
[pid  6070] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6071] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6071] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6070] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6071] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6071] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6070] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6071] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6070] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6071] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6070] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6071] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6070] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6071] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6070] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6071] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6070] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6071] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6070] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6071] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6070] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6071] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6070] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6071] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6070] <... openat resumed>)       = 4
[pid  6071] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6070] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6071] <... openat resumed>)       = 4
[pid  6071] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6070] <... openat resumed>)       = 5
[pid  6071] <... openat resumed>)       = 5
[pid  6071] sendfile(5, 4, [100] <unfinished ...>
[  113.159728][ T6072] XFS (loop4): Ending clean mount
[pid  6070] sendfile(5, 4, [100] <unfinished ...>
[pid  6074] <... munmap resumed>)       = 0
[  113.202125][ T6070] syz-executor246 (6070): drop_caches: 2
[  113.222701][ T6071] syz-executor246 (6071): drop_caches: 2
[  113.238073][ T6072] XFS (loop4): Quotacheck needed: Please wait.
[pid  6074] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid  6071] <... sendfile resumed> => [671], 571) = 571
[pid  6070] <... sendfile resumed> => [671], 571) = 571
[pid  6074] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6071] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6070] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6074] <... ioctl resumed>)        = 0
[pid  6071] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6070] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6071] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6070] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6071] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6070] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6071] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6070] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6070] ftruncate(-1, 33587199 <unfinished ...>
[pid  6071] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6070] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6071] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6070] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6071] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6070] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6074] close(3 <unfinished ...>
[pid  6071] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6070] open(NULL, O_RDONLY <unfinished ...>
[pid  6071] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6070] <... open resumed>)         = -1 EFAULT (Bad address)
[  113.251124][ T6071] syz-executor246 (6071): drop_caches: 2
[  113.257843][ T6070] syz-executor246 (6070): drop_caches: 2
[  113.257894][ T6073] XFS (loop5): Ending clean mount
[  113.274648][ T6074] loop2: detected capacity change from 0 to 32768
[pid  6071] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6070] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6071] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6070] read(-1,  <unfinished ...>
[pid  6071] read(-1,  <unfinished ...>
[pid  6070] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6074] <... close resumed>)        = 0
[pid  6071] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6070] exit_group(0)               = ?
[pid  6071] exit_group(0)               = ?
[pid  6070] +++ exited with 0 +++
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6070, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=25 /* 0.25 s */} ---
[pid  5065] umount2("./18", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6074] mkdir("./file0", 0777 <unfinished ...>
[pid  6071] +++ exited with 0 +++
[pid  5065] openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6074] <... mkdir resumed>)        = 0
[pid  5065] <... openat resumed>)       = 3
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6071, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=32 /* 0.32 s */} ---
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5062] umount2("./18", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6074] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] umount2("./18/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6072] <... mount resumed>)        = 0
[pid  5065] newfstatat(AT_FDCWD, "./18/binderfs",  <unfinished ...>
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6072] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5065] unlink("./18/binderfs" <unfinished ...>
[pid  5062] umount2("./18/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6072] <... openat resumed>)       = 3
[pid  5065] <... unlink resumed>)       = 0
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./18/binderfs",  <unfinished ...>
[pid  6072] chdir("./file0" <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6072] <... chdir resumed>)        = 0
[pid  6072] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6073] <... mount resumed>)        = 0
[pid  6072] close(4 <unfinished ...>
[pid  6073] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6072] <... close resumed>)        = 0
[pid  6073] <... openat resumed>)       = 3
[pid  6073] chdir("./file0" <unfinished ...>
[pid  6072] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6073] <... chdir resumed>)        = 0
[pid  6072] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] unlink("./18/binderfs" <unfinished ...>
[pid  6072] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6073] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6072] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] <... unlink resumed>)       = 0
[  113.296895][ T6073] XFS (loop5): Quotacheck needed: Please wait.
[  113.314559][ T6072] XFS (loop4): Quotacheck: Done.
[  113.335310][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  113.338990][ T6073] XFS (loop5): Quotacheck: Done.
[pid  6072] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5062] umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6073] <... ioctl resumed>)        = 0
[pid  6072] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6073] close(4 <unfinished ...>
[pid  6072] read(-1,  <unfinished ...>
[pid  6073] <... close resumed>)        = 0
[pid  6073] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6072] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6073] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6072] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6073] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[  113.364129][ T6074] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  113.372251][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  113.373987][ T6074] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6073] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6073] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6072] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6073] read(-1,  <unfinished ...>
[pid  6072] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6073] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6072] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6073] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6072] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6073] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6072] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6073] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6072] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6073] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6072] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6073] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6072] read(-1,  <unfinished ...>
[pid  6073] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6072] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6073] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6072] write(-1, NULL, 0 <unfinished ...>
[pid  6073] read(-1,  <unfinished ...>
[pid  6072] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6073] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6072] write(-1, NULL, 0 <unfinished ...>
[pid  6073] write(-1, NULL, 0 <unfinished ...>
[pid  6072] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6073] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6072] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6073] write(-1, NULL, 0 <unfinished ...>
[pid  6072] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6072] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6073] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6072] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6073] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6072] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6073] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6072] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6073] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6072] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6073] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6072] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6073] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6072] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6073] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6072] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6073] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6072] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6073] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6072] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6073] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6072] <... openat resumed>)       = 4
[pid  6073] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6072] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6073] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6073] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6072] <... openat resumed>)       = 5
[pid  6073] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6072] sendfile(5, 4, [100] <unfinished ...>
[pid  6073] <... openat resumed>)       = 5
[pid  6073] sendfile(5, 4, [100] <unfinished ...>
[pid  6075] <... write resumed>)        = 16777216
[  113.497729][ T6072] syz-executor246 (6072): drop_caches: 2
[pid  6075] munmap(0x7f6d986f1000, 138412032) = 0
[pid  6072] <... sendfile resumed> => [671], 571) = 571
[pid  6072] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6072] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6072] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6072] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6072] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6072] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6072] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6072] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6072] exit_group(0 <unfinished ...>
[pid  6075] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6072] <... exit_group resumed>)   = ?
[pid  6075] <... openat resumed>)       = 4
[pid  6072] +++ exited with 0 +++
[  113.547780][ T6073] syz-executor246 (6073): drop_caches: 2
[  113.555711][ T6072] syz-executor246 (6072): drop_caches: 2
[  113.573474][ T6074] XFS (loop2): Ending clean mount
[  113.577396][ T6073] syz-executor246 (6073): drop_caches: 2
[pid  6075] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6073] <... sendfile resumed> => [671], 571) = 571
[pid  6073] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6072, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=37 /* 0.37 s */} ---
[pid  6073] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5066] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  6073] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5066] umount2("./18", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6073] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6073] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5066] openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6073] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] <... openat resumed>)       = 3
[pid  6073] ftruncate(-1, 33587199 <unfinished ...>
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  6073] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6073] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5066] getdents64(3,  <unfinished ...>
[pid  6073] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6073] open(NULL, O_RDONLY <unfinished ...>
[pid  5066] umount2("./18/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6073] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6073] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5066] newfstatat(AT_FDCWD, "./18/binderfs",  <unfinished ...>
[pid  6073] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6073] read(-1,  <unfinished ...>
[pid  5066] unlink("./18/binderfs" <unfinished ...>
[pid  6073] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5066] <... unlink resumed>)       = 0
[pid  6073] exit_group(0 <unfinished ...>
[pid  5066] umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6073] <... exit_group resumed>)   = ?
[pid  6073] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6073, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=36 /* 0.36 s */} ---
[pid  5067] umount2("./19", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3,  <unfinished ...>
[pid  6075] <... ioctl resumed>)        = 0
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./19/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6075] close(3)                    = 0
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6075] mkdir("./file0", 0777)      = 0
[pid  5067] newfstatat(AT_FDCWD, "./19/binderfs",  <unfinished ...>
[pid  6075] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./19/binderfs")     = 0
[  113.604524][ T6075] loop1: detected capacity change from 0 to 32768
[  113.621252][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  113.621722][ T6074] XFS (loop2): Quotacheck needed: Please wait.
[pid  5067] umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6074] <... mount resumed>)        = 0
[pid  6074] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6074] chdir("./file0")            = 0
[pid  6074] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6074] close(4)                    = 0
[pid  6074] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6074] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6074] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6074] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6074] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6074] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6074] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6074] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6074] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6074] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6074] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6074] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6074] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[  113.679215][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  113.686921][ T6074] XFS (loop2): Quotacheck: Done.
[  113.695521][ T6075] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[pid  6074] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6074] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  6074] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6074] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6074] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6074] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6074] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6074] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6074] sendfile(5, 4, [100] <unfinished ...>
[pid  5065] umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[  113.743049][ T6075] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5065] newfstatat(AT_FDCWD, "./18/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./18/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(AT_FDCWD, "./18/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] newfstatat(4, "",  <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./18/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] <... openat resumed>)       = 4
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5065] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4)                    = 0
[pid  5065] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] rmdir("./18/file0")         = 0
[pid  5065] close(4 <unfinished ...>
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3 <unfinished ...>
[pid  5065] <... close resumed>)        = 0
[pid  5062] <... close resumed>)        = 0
[pid  5065] rmdir("./18/file0" <unfinished ...>
[pid  5062] rmdir("./18")               = 0
[  113.784677][ T6074] syz-executor246 (6074): drop_caches: 2
[pid  5065] <... rmdir resumed>)        = 0
[pid  5062] mkdir("./19", 0777 <unfinished ...>
[pid  6074] <... sendfile resumed> => [671], 571) = 571
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5062] <... mkdir resumed>)        = 0
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5065] close(3 <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  5065] <... close resumed>)        = 0
[pid  5065] rmdir("./18" <unfinished ...>
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5065] <... rmdir resumed>)        = 0
[pid  5065] mkdir("./19", 0777 <unfinished ...>
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5065] <... mkdir resumed>)        = 0
[pid  5062] close(3)                    = 0
[pid  6074] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6074] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5065] <... openat resumed>)       = 3
[pid  6074] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5065] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6074] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6074] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5065] close(3 <unfinished ...>
[pid  6074] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] <... close resumed>)        = 0
[  113.835460][ T6074] syz-executor246 (6074): drop_caches: 2
./strace-static-x86_64: Process 6124 attached
[pid  6074] ftruncate(-1, 33587199 <unfinished ...>
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 6124
[pid  6074] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6074] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
./strace-static-x86_64: Process 6125 attached
[pid  6124] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6074] open(NULL, O_RDONLY <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 6125
[pid  6125] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6124] <... set_robust_list resumed>) = 0
[pid  6074] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6124] chdir("./19" <unfinished ...>
[pid  6074] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6124] <... chdir resumed>)        = 0
[pid  6074] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6124] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6074] read(-1,  <unfinished ...>
[pid  6124] <... prctl resumed>)        = 0
[pid  6074] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6125] <... set_robust_list resumed>) = 0
[pid  6124] setpgid(0, 0 <unfinished ...>
[pid  6074] exit_group(0 <unfinished ...>
[pid  6125] chdir("./19" <unfinished ...>
[pid  6124] <... setpgid resumed>)      = 0
[pid  6074] <... exit_group resumed>)   = ?
[pid  6124] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6074] +++ exited with 0 +++
[pid  5066] <... umount2 resumed>)      = 0
[pid  6125] <... chdir resumed>)        = 0
[pid  6124] <... openat resumed>)       = 3
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6074, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=33 /* 0.33 s */} ---
[pid  6125] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6124] write(3, "1000", 4 <unfinished ...>
[pid  5064] umount2("./18", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6125] setpgid(0, 0 <unfinished ...>
[pid  6124] <... write resumed>)        = 4
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6125] <... setpgid resumed>)      = 0
[pid  6124] close(3 <unfinished ...>
[pid  5064] openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6124] <... close resumed>)        = 0
[pid  5064] <... openat resumed>)       = 3
[pid  6125] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6124] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5064] newfstatat(3, "",  <unfinished ...>
[pid  6125] <... openat resumed>)       = 3
[pid  6124] <... symlink resumed>)      = 0
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6125] write(3, "1000", 4 <unfinished ...>
[pid  6124] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5064] getdents64(3,  <unfinished ...>
[pid  6125] <... write resumed>)        = 4
[pid  6124] <... memfd_create resumed>) = 3
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6125] close(3 <unfinished ...>
[pid  6124] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[  113.895417][ T6075] XFS (loop1): Ending clean mount
[pid  5064] umount2("./18/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6124] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6125] <... close resumed>)        = 0
[pid  5064] newfstatat(AT_FDCWD, "./18/binderfs",  <unfinished ...>
[pid  6125] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5064] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./18/binderfs")     = 0
[pid  5064] umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6125] memfd_create("syzkaller", 0) = 3
[pid  6125] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5066] umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./18/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./18/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5066] newfstatat(4, "",  <unfinished ...>
[pid  6075] <... mount resumed>)        = 0
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6075] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5066] getdents64(4,  <unfinished ...>
[pid  6075] <... openat resumed>)       = 3
[pid  5066] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  6075] chdir("./file0" <unfinished ...>
[pid  5066] close(4 <unfinished ...>
[pid  6075] <... chdir resumed>)        = 0
[pid  5066] <... close resumed>)        = 0
[pid  5066] rmdir("./18/file0" <unfinished ...>
[pid  6075] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5066] <... rmdir resumed>)        = 0
[pid  6075] close(4 <unfinished ...>
[pid  5066] getdents64(3,  <unfinished ...>
[pid  6075] <... close resumed>)        = 0
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3 <unfinished ...>
[pid  6075] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  6075] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5066] rmdir("./18" <unfinished ...>
[pid  6075] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5066] <... rmdir resumed>)        = 0
[pid  6075] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5066] mkdir("./19", 0777 <unfinished ...>
[pid  6075] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] <... mkdir resumed>)        = 0
[pid  6075] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6075] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  6075] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  6075] <... openat resumed>)       = -1 EFAULT (Bad address)
[  113.943765][ T6075] XFS (loop1): Quotacheck needed: Please wait.
[  113.973633][ T6075] XFS (loop1): Quotacheck: Done.
[  113.983249][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6075] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5066] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6075] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5066] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6075] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5066] close(3 <unfinished ...>
[pid  6075] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6075] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  6075] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6075] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 6126
[pid  6075] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6075] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6075] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6075] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY./strace-static-x86_64: Process 6126 attached
 <unfinished ...>
[pid  6126] set_robust_list(0x55555697c760, 24) = 0
[pid  6126] chdir("./19")               = 0
[pid  6126] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6126] setpgid(0, 0)               = 0
[pid  6126] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6075] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6126] write(3, "1000", 4 <unfinished ...>
[pid  6075] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6126] <... write resumed>)        = 4
[pid  6075] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6126] close(3 <unfinished ...>
[pid  6075] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6126] <... close resumed>)        = 0
[pid  6126] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6126] memfd_create("syzkaller", 0) = 3
[pid  6126] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6075] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6075] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6075] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6075] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6075] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6075] sendfile(5, 4, [100] <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5067] umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  114.157305][ T6075] syz-executor246 (6075): drop_caches: 2
[pid  5067] newfstatat(AT_FDCWD, "./19/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./19/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4,  <unfinished ...>
[pid  6075] <... sendfile resumed> => [671], 571) = 571
[pid  5067] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  6075] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  6075] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6075] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5067] close(4)                    = 0
[pid  6075] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6075] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5067] rmdir("./19/file0" <unfinished ...>
[pid  6075] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6075] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6075] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6075] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6075] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5067] <... rmdir resumed>)        = 0
[pid  6075] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] getdents64(3,  <unfinished ...>
[pid  6075] read(-1,  <unfinished ...>
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6075] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5067] close(3 <unfinished ...>
[pid  6075] exit_group(0)               = ?
[pid  5067] <... close resumed>)        = 0
[pid  5067] rmdir("./19" <unfinished ...>
[pid  6075] +++ exited with 0 +++
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6075, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=31 /* 0.31 s */} ---
[pid  5067] <... rmdir resumed>)        = 0
[  114.207793][ T6075] syz-executor246 (6075): drop_caches: 2
[pid  5067] mkdir("./20", 0777 <unfinished ...>
[pid  5063] umount2("./19", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5067] <... mkdir resumed>)        = 0
[pid  5063] <... openat resumed>)       = 3
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./19/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... openat resumed>)       = 3
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./19/binderfs",  <unfinished ...>
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] close(3 <unfinished ...>
[pid  5063] unlink("./19/binderfs" <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  5063] <... unlink resumed>)       = 0
[pid  5063] umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6127 attached
 <unfinished ...>
[pid  6127] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 6127
[pid  6127] <... set_robust_list resumed>) = 0
[pid  6124] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6127] chdir("./20")               = 0
[  114.281609][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6125] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6127] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6127] setpgid(0, 0)               = 0
[pid  6127] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6126] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6127] <... openat resumed>)       = 3
[pid  6127] write(3, "1000", 4)         = 4
[pid  6127] close(3)                    = 0
[pid  6127] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6127] memfd_create("syzkaller", 0) = 3
[pid  6127] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5064] <... umount2 resumed>)      = 0
[pid  5064] umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./18/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./18/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./18/file0")         = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./18")               = 0
[pid  5064] mkdir("./19", 0777)         = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6128
./strace-static-x86_64: Process 6128 attached
[pid  6128] set_robust_list(0x55555697c760, 24) = 0
[pid  6128] chdir("./19")               = 0
[pid  6128] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6128] setpgid(0, 0)               = 0
[pid  6128] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6128] write(3, "1000", 4)         = 4
[pid  6128] close(3)                    = 0
[pid  6128] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6128] memfd_create("syzkaller", 0) = 3
[pid  6128] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5063] <... umount2 resumed>)      = 0
[pid  5063] umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./19/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./19/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4)                    = 0
[pid  5063] rmdir("./19/file0")         = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3)                    = 0
[pid  5063] rmdir("./19")               = 0
[pid  5063] mkdir("./20", 0777)         = 0
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5063] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5063] close(3)                    = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6129
./strace-static-x86_64: Process 6129 attached
[pid  6129] set_robust_list(0x55555697c760, 24) = 0
[pid  6129] chdir("./20")               = 0
[pid  6129] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6129] setpgid(0, 0)               = 0
[pid  6129] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6129] write(3, "1000", 4)         = 4
[pid  6129] close(3)                    = 0
[pid  6129] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6129] memfd_create("syzkaller", 0) = 3
[pid  6129] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6125] <... write resumed>)        = 16777216
[pid  6125] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6127] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6126] <... write resumed>)        = 16777216
[pid  6125] <... munmap resumed>)       = 0
[pid  6125] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid  6128] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6126] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6125] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6124] <... write resumed>)        = 16777216
[pid  6124] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6125] close(3)                    = 0
[pid  6125] mkdir("./file0", 0777)      = 0
[pid  6125] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6126] <... munmap resumed>)       = 0
[pid  6124] <... munmap resumed>)       = 0
[pid  6124] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[  114.894283][ T6125] loop3: detected capacity change from 0 to 32768
[pid  6124] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6126] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  6126] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6124] <... ioctl resumed>)        = 0
[pid  6124] close(3)                    = 0
[pid  6124] mkdir("./file0", 0777)      = 0
[  114.948610][ T6124] loop0: detected capacity change from 0 to 32768
[  114.957367][ T6126] loop4: detected capacity change from 0 to 32768
[  114.969774][ T6125] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[pid  6124] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6126] <... ioctl resumed>)        = 0
[pid  6126] close(3)                    = 0
[pid  6126] mkdir("./file0", 0777)      = 0
[pid  6126] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[  114.997728][ T6125] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  115.016559][ T6124] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  115.041044][ T6124] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  115.067328][ T6126] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  115.094399][ T6126] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  115.115403][ T6125] XFS (loop3): Ending clean mount
[  115.123631][ T6125] XFS (loop3): Quotacheck needed: Please wait.
[pid  6129] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6125] <... mount resumed>)        = 0
[pid  6125] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6125] chdir("./file0")            = 0
[pid  6125] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6125] close(4)                    = 0
[pid  6125] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6125] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6125] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[  115.154002][ T6125] XFS (loop3): Quotacheck: Done.
[pid  6125] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6125] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6125] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6125] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6125] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6125] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6125] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[  115.175149][ T6124] XFS (loop0): Ending clean mount
[pid  6125] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6125] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6125] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6125] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6125] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6125] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6125] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6125] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6125] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6125] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  115.214645][ T6124] XFS (loop0): Quotacheck needed: Please wait.
[pid  6125] sendfile(5, 4, [100] <unfinished ...>
[pid  6124] <... mount resumed>)        = 0
[pid  6124] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6124] chdir("./file0")            = 0
[pid  6124] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6129] <... write resumed>)        = 16777216
[pid  6124] close(4 <unfinished ...>
[pid  6129] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6124] <... close resumed>)        = 0
[pid  6124] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6124] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6124] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6124] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6124] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6124] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6124] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[  115.272372][ T6125] syz-executor246 (6125): drop_caches: 2
[  115.279456][ T6124] XFS (loop0): Quotacheck: Done.
[  115.302317][ T6126] XFS (loop4): Ending clean mount
[pid  6124] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6124] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6124] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6124] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6124] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6124] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6124] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6124] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6124] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6124] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6124] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6124] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6124] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6124] sendfile(5, 4, [100] <unfinished ...>
[pid  6129] <... munmap resumed>)       = 0
[pid  6127] <... write resumed>)        = 16777216
[pid  6129] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[  115.329295][ T6126] XFS (loop4): Quotacheck needed: Please wait.
[  115.356347][ T6124] syz-executor246 (6124): drop_caches: 2
[  115.357024][ T6125] syz-executor246 (6125): drop_caches: 2
[pid  6129] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6127] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6126] <... mount resumed>)        = 0
[pid  6129] <... ioctl resumed>)        = 0
[pid  6125] <... sendfile resumed> => [671], 571) = 571
[pid  6126] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6125] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6129] close(3 <unfinished ...>
[pid  6126] chdir("./file0" <unfinished ...>
[pid  6129] <... close resumed>)        = 0
[pid  6126] <... chdir resumed>)        = 0
[pid  6129] mkdir("./file0", 0777 <unfinished ...>
[pid  6126] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6125] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6126] <... ioctl resumed>)        = 0
[pid  6125] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6129] <... mkdir resumed>)        = 0
[pid  6126] close(4 <unfinished ...>
[pid  6125] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6126] <... close resumed>)        = 0
[pid  6126] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6129] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6126] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6125] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6126] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6125] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6126] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6125] ftruncate(-1, 33587199 <unfinished ...>
[pid  6124] <... sendfile resumed> => [671], 571) = 571
[pid  6126] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6125] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6126] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6125] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6124] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6126] ftruncate(-1, 33587195 <unfinished ...>
[pid  6125] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6124] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6126] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6125] open(NULL, O_RDONLY <unfinished ...>
[pid  6124] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6126] read(-1,  <unfinished ...>
[pid  6125] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6124] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6126] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6124] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6125] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6126] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6125] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6124] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6126] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6125] read(-1,  <unfinished ...>
[pid  6124] ftruncate(-1, 33587199 <unfinished ...>
[  115.393151][ T6129] loop1: detected capacity change from 0 to 32768
[  115.398262][ T6124] syz-executor246 (6124): drop_caches: 2
[  115.405607][ T6126] XFS (loop4): Quotacheck: Done.
[pid  6126] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6125] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6124] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6127] <... munmap resumed>)       = 0
[pid  6126] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6126] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6126] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6126] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6126] write(-1, NULL, 0 <unfinished ...>
[pid  6127] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  6126] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6127] <... openat resumed>)       = 4
[pid  6126] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6127] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6126] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6127] <... ioctl resumed>)        = 0
[pid  6126] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6125] exit_group(0 <unfinished ...>
[pid  6124] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6127] close(3 <unfinished ...>
[pid  6126] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6125] <... exit_group resumed>)   = ?
[pid  6124] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6125] +++ exited with 0 +++
[pid  6124] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6125, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=25 /* 0.25 s */} ---
[pid  6127] <... close resumed>)        = 0
[pid  6126] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6124] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6127] mkdir("./file0", 0777 <unfinished ...>
[pid  6126] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6124] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6127] <... mkdir resumed>)        = 0
[pid  6126] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6124] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6126] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6124] exit_group(0)               = ?
[pid  5065] umount2("./19", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6128] <... write resumed>)        = 16777216
[pid  6127] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6126] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6126] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6128] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6126] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6126] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6126] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6124] +++ exited with 0 +++
[pid  5065] <... openat resumed>)       = 3
[pid  6126] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6124, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=36 /* 0.36 s */} ---
[pid  6126] sendfile(5, 4, [100] <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./19", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] umount2("./19/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] <... openat resumed>)       = 3
[pid  6128] <... munmap resumed>)       = 0
[  115.450286][ T6129] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  115.456598][ T6127] loop5: detected capacity change from 0 to 32768
[  115.471811][ T6129] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5065] newfstatat(AT_FDCWD, "./19/binderfs",  <unfinished ...>
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] unlink("./19/binderfs")     = 0
[pid  5062] umount2("./19/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./19/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./19/binderfs")     = 0
[pid  5062] umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6128] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  6126] <... sendfile resumed> => [671], 571) = 571
[pid  6128] <... openat resumed>)       = 4
[pid  6128] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6126] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6128] <... ioctl resumed>)        = 0
[pid  6126] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6128] close(3 <unfinished ...>
[pid  6126] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6126] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6126] ftruncate(-1, 33587199 <unfinished ...>
[pid  6128] <... close resumed>)        = 0
[  115.516156][ T6126] syz-executor246 (6126): drop_caches: 2
[  115.528666][ T6126] syz-executor246 (6126): drop_caches: 2
[  115.534933][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  115.535069][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  115.550076][ T6128] loop2: detected capacity change from 0 to 32768
[pid  6126] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6128] mkdir("./file0", 0777 <unfinished ...>
[pid  6126] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6128] <... mkdir resumed>)        = 0
[pid  6126] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6126] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6126] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6126] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6126] exit_group(0)               = ?
[pid  6126] +++ exited with 0 +++
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6126, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=30 /* 0.30 s */} ---
[pid  6128] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5066] umount2("./19", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./19/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./19/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] unlink("./19/binderfs")     = 0
[  115.560549][ T6127] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  115.575703][ T6127] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  115.578651][ T6129] XFS (loop1): Ending clean mount
[  115.589703][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  115.593609][ T6129] XFS (loop1): Quotacheck needed: Please wait.
[  115.629563][ T6128] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  115.664905][ T6128] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  115.688473][ T6129] XFS (loop1): Quotacheck: Done.
[pid  5066] umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6129] <... mount resumed>)        = 0
[  115.718495][ T6127] XFS (loop5): Ending clean mount
[pid  6129] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6129] chdir("./file0")            = 0
[pid  6129] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6129] close(4)                    = 0
[pid  6129] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6129] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6129] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[  115.740428][ T6127] XFS (loop5): Quotacheck needed: Please wait.
[pid  6129] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6129] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6129] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6129] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6129] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6127] <... mount resumed>)        = 0
[pid  6129] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6127] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6129] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[  115.817293][ T6128] XFS (loop2): Ending clean mount
[  115.828247][ T6127] XFS (loop5): Quotacheck: Done.
[pid  6129] read(-1,  <unfinished ...>
[pid  6127] <... openat resumed>)       = 3
[pid  6129] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6129] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6129] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6129] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6127] chdir("./file0")            = 0
[pid  6129] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6127] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6129] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6127] close(4 <unfinished ...>
[pid  6129] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6127] <... close resumed>)        = 0
[pid  6129] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6129] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6127] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6127] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6127] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6127] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6129] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6127] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6127] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6129] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6127] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6127] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6127] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6127] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6127] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6129] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6127] write(-1, NULL, 0 <unfinished ...>
[pid  6129] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6127] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6127] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6129] <... openat resumed>)       = 4
[pid  6127] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6127] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6129] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6127] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6129] <... openat resumed>)       = 5
[pid  6127] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6127] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6129] sendfile(5, 4, [100] <unfinished ...>
[pid  6127] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6127] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6127] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6127] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6127] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6127] sendfile(5, 4, [100] <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[  115.860483][ T6128] XFS (loop2): Quotacheck needed: Please wait.
[pid  5062] umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./19/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./19/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./19/file0")         = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./19")               = 0
[pid  5062] mkdir("./20", 0777 <unfinished ...>
[pid  6128] <... mount resumed>)        = 0
[pid  5062] <... mkdir resumed>)        = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3)                    = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6178
[pid  6128] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6128] chdir("./file0"./strace-static-x86_64: Process 6178 attached
 <unfinished ...>
[pid  6178] set_robust_list(0x55555697c760, 24) = 0
[pid  6128] <... chdir resumed>)        = 0
[pid  6178] chdir("./20" <unfinished ...>
[pid  6128] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6128] close(4)                    = 0
[pid  6178] <... chdir resumed>)        = 0
[pid  6128] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6178] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6128] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6178] <... prctl resumed>)        = 0
[pid  6128] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6128] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6128] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6128] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6128] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6128] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6178] setpgid(0, 0 <unfinished ...>
[pid  6128] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6178] <... setpgid resumed>)      = 0
[pid  6128] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6178] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6128] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6178] <... openat resumed>)       = 3
[pid  6128] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[  115.953085][ T6128] XFS (loop2): Quotacheck: Done.
[  115.955387][ T6129] syz-executor246 (6129): drop_caches: 2
[  115.965632][ T6127] syz-executor246 (6127): drop_caches: 2
[  115.972102][ T6127] syz-executor246 (6127): drop_caches: 2
[pid  6178] write(3, "1000", 4 <unfinished ...>
[pid  6128] read(-1,  <unfinished ...>
[pid  6178] <... write resumed>)        = 4
[pid  6128] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6178] close(3 <unfinished ...>
[pid  6128] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6178] <... close resumed>)        = 0
[pid  6128] write(-1, NULL, 0 <unfinished ...>
[pid  6178] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6128] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6178] <... symlink resumed>)      = 0
[pid  6128] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6127] <... sendfile resumed> => [671], 571) = 571
[pid  6127] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6178] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6129] <... sendfile resumed> => [671], 571) = 571
[pid  6128] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6127] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5065] <... umount2 resumed>)      = 0
[pid  6128] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6127] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6128] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6127] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6128] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6127] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6128] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6127] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6128] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6127] ftruncate(-1, 33587199 <unfinished ...>
[pid  6129] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6178] <... memfd_create resumed>) = 3
[pid  6128] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6127] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5065] umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6178] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6129] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6128] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6127] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6178] <... mmap resumed>)         = 0x7f6d986f1000
[  116.000220][ T6129] syz-executor246 (6129): drop_caches: 2
[pid  6129] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6128] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6127] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5066] umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] newfstatat(AT_FDCWD, "./19/file0",  <unfinished ...>
[pid  6129] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6129] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6127] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6129] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6127] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6129] ftruncate(-1, 33587199 <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6129] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6129] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5065] umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6129] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6129] open(NULL, O_RDONLY <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6129] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] newfstatat(AT_FDCWD, "./19/file0",  <unfinished ...>
[pid  5065] openat(AT_FDCWD, "./19/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6129] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6127] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5065] <... openat resumed>)       = 4
[pid  6129] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6128] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6127] read(-1,  <unfinished ...>
[pid  6129] exit_group(0 <unfinished ...>
[pid  5066] umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6129] <... exit_group resumed>)   = ?
[pid  6128] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6127] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5065] newfstatat(4, "",  <unfinished ...>
[pid  6128] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6127] exit_group(0 <unfinished ...>
[pid  6128] <... openat resumed>)       = 4
[pid  6127] <... exit_group resumed>)   = ?
[pid  6129] +++ exited with 0 +++
[pid  6128] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6127] +++ exited with 0 +++
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6128] <... openat resumed>)       = 5
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6127, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} ---
[pid  5066] openat(AT_FDCWD, "./19/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] getdents64(4,  <unfinished ...>
[pid  6128] sendfile(5, 4, [100] <unfinished ...>
[pid  5066] <... openat resumed>)       = 4
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6129, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=39 /* 0.39 s */} ---
[pid  5066] newfstatat(4, "",  <unfinished ...>
[pid  5065] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5067] umount2("./20", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5063] <... restart_syscall resumed>) = 0
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5065] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] close(4 <unfinished ...>
[pid  5063] umount2("./20", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5065] <... close resumed>)        = 0
[pid  5066] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] close(4 <unfinished ...>
[pid  5065] rmdir("./19/file0" <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5067] <... openat resumed>)       = 3
[pid  5065] <... rmdir resumed>)        = 0
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5063] <... openat resumed>)       = 3
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] rmdir("./19/file0" <unfinished ...>
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3 <unfinished ...>
[pid  5066] close(3 <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] <... close resumed>)        = 0
[pid  5065] <... close resumed>)        = 0
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./20/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] rmdir("./19" <unfinished ...>
[pid  5065] rmdir("./19" <unfinished ...>
[pid  5063] umount2("./20/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] <... rmdir resumed>)        = 0
[pid  5066] mkdir("./20", 0777 <unfinished ...>
[  116.078187][ T6128] syz-executor246 (6128): drop_caches: 2
[  116.091902][ T6128] syz-executor246 (6128): drop_caches: 2
[pid  5063] newfstatat(AT_FDCWD, "./20/binderfs",  <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] <... mkdir resumed>)        = 0
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] newfstatat(AT_FDCWD, "./20/binderfs",  <unfinished ...>
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5063] unlink("./20/binderfs" <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] <... openat resumed>)       = 3
[pid  5067] unlink("./20/binderfs" <unfinished ...>
[pid  5066] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5063] <... unlink resumed>)       = 0
[pid  5067] <... unlink resumed>)       = 0
[pid  5063] umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6128] <... sendfile resumed> => [671], 571) = 571
[pid  5066] close(3 <unfinished ...>
[pid  6128] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5065] mkdir("./20", 0777 <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  6128] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6128] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6128] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6128] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6128] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6128] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6128] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6128] read(-1,  <unfinished ...>
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5065] <... mkdir resumed>)        = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 6179
./strace-static-x86_64: Process 6179 attached
[pid  6128] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5065] <... openat resumed>)       = 3
[pid  5065] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6179] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6128] exit_group(0 <unfinished ...>
[pid  5065] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6179] <... set_robust_list resumed>) = 0
[pid  6128] <... exit_group resumed>)   = ?
[pid  6179] chdir("./20" <unfinished ...>
[pid  6128] +++ exited with 0 +++
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6128, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=31 /* 0.31 s */} ---
[pid  6179] <... chdir resumed>)        = 0
[pid  6179] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6179] setpgid(0, 0)               = 0
[pid  6179] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5065] close(3)                    = 0
[pid  6179] write(3, "1000", 4 <unfinished ...>
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5064] umount2("./19", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6179] <... write resumed>)        = 4
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6179] close(3 <unfinished ...>
[pid  5064] <... openat resumed>)       = 3
[pid  6179] <... close resumed>)        = 0
[pid  5064] newfstatat(3, "",  <unfinished ...>
[pid  6179] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6179] <... symlink resumed>)      = 0
[pid  5064] getdents64(3,  <unfinished ...>
[pid  6179] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
./strace-static-x86_64: Process 6180 attached
[pid  5064] umount2("./19/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6180] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 6180
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6180] <... set_robust_list resumed>) = 0
[pid  6179] <... memfd_create resumed>) = 3
[pid  5064] newfstatat(AT_FDCWD, "./19/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6180] chdir("./20" <unfinished ...>
[pid  5064] unlink("./19/binderfs")     = 0
[  116.119882][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  116.128993][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5064] umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6180] <... chdir resumed>)        = 0
[pid  6179] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6180] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6179] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6180] <... prctl resumed>)        = 0
[pid  6180] setpgid(0, 0)               = 0
[pid  6180] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6180] write(3, "1000", 4)         = 4
[pid  6180] close(3)                    = 0
[pid  6180] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6180] memfd_create("syzkaller", 0) = 3
[pid  6180] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  116.175917][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6178] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5067] umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./20/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./20/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./20/file0")         = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./20")               = 0
[pid  5067] mkdir("./21", 0777)         = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6181 attached
 <unfinished ...>
[pid  6181] set_robust_list(0x55555697c760, 24) = 0
[pid  6181] chdir("./21" <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 6181
[pid  6181] <... chdir resumed>)        = 0
[pid  6181] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6181] setpgid(0, 0)               = 0
[pid  6181] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6181] write(3, "1000", 4)         = 4
[pid  6181] close(3)                    = 0
[pid  6181] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6181] memfd_create("syzkaller", 0) = 3
[pid  6181] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6179] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6180] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5063] <... umount2 resumed>)      = 0
[pid  5063] umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./20/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] <... umount2 resumed>)      = 0
[pid  5063] openat(AT_FDCWD, "./20/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5064] umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... openat resumed>)       = 4
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./19/file0",  <unfinished ...>
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5064] openat(AT_FDCWD, "./19/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] newfstatat(4, "",  <unfinished ...>
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] close(4 <unfinished ...>
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] <... close resumed>)        = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./19/file0")         = 0
[pid  5063] rmdir("./20/file0")         = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./19")               = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] mkdir("./20", 0777 <unfinished ...>
[pid  5063] close(3 <unfinished ...>
[pid  5064] <... mkdir resumed>)        = 0
[pid  5063] <... close resumed>)        = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6182
./strace-static-x86_64: Process 6182 attached
[pid  6182] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5063] rmdir("./20" <unfinished ...>
[pid  6182] <... set_robust_list resumed>) = 0
[pid  6182] chdir("./20")               = 0
[pid  5063] <... rmdir resumed>)        = 0
[pid  6182] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5063] mkdir("./21", 0777 <unfinished ...>
[pid  6182] <... prctl resumed>)        = 0
[pid  6182] setpgid(0, 0)               = 0
[pid  6182] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5063] <... mkdir resumed>)        = 0
[pid  6182] <... openat resumed>)       = 3
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  6182] write(3, "1000", 4)         = 4
[pid  6182] close(3)                    = 0
[pid  6182] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6182] <... symlink resumed>)      = 0
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5063] close(3)                    = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6182] memfd_create("syzkaller", 0./strace-static-x86_64: Process 6183 attached
 <unfinished ...>
[pid  6183] set_robust_list(0x55555697c760, 24) = 0
[pid  6183] chdir("./21" <unfinished ...>
[pid  6182] <... memfd_create resumed>) = 3
[pid  6182] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 6183
[pid  6182] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6183] <... chdir resumed>)        = 0
[pid  6183] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6183] setpgid(0, 0)               = 0
[pid  6183] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6183] write(3, "1000", 4)         = 4
[pid  6183] close(3)                    = 0
[pid  6183] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6183] memfd_create("syzkaller", 0) = 3
[pid  6183] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6178] <... write resumed>)        = 16777216
[pid  6178] munmap(0x7f6d986f1000, 138412032) = 0
[pid  6181] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6178] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  6178] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6178] close(3)                    = 0
[pid  6178] mkdir("./file0", 0777)      = 0
[  116.954204][ T6178] loop0: detected capacity change from 0 to 32768
[pid  6178] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6179] <... write resumed>)        = 16777216
[  117.025559][ T6178] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  117.038444][ T6178] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6179] munmap(0x7f6d986f1000, 138412032) = 0
[pid  6182] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6179] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  6179] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6179] close(3)                    = 0
[pid  6183] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6179] mkdir("./file0", 0777)      = 0
[  117.129281][ T6179] loop4: detected capacity change from 0 to 32768
[  117.169167][ T6179] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[pid  6179] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6180] <... write resumed>)        = 16777216
[  117.188341][ T6179] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  117.196451][ T6178] XFS (loop0): Ending clean mount
[pid  6180] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6181] <... write resumed>)        = 16777216
[pid  6181] munmap(0x7f6d986f1000, 138412032) = 0
[pid  6181] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[  117.236741][ T6178] XFS (loop0): Quotacheck needed: Please wait.
[pid  6181] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6181] close(3)                    = 0
[pid  6181] mkdir("./file0", 0777)      = 0
[pid  6181] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6180] <... munmap resumed>)       = 0
[pid  6180] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[  117.295270][ T6181] loop5: detected capacity change from 0 to 32768
[  117.333920][ T6179] XFS (loop4): Ending clean mount
[pid  6180] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6180] close(3)                    = 0
[pid  6180] mkdir("./file0", 0777)      = 0
[pid  6180] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6178] <... mount resumed>)        = 0
[pid  6178] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6178] chdir("./file0")            = 0
[  117.346927][ T6180] loop3: detected capacity change from 0 to 32768
[  117.353701][ T6178] XFS (loop0): Quotacheck: Done.
[  117.366856][ T6179] XFS (loop4): Quotacheck needed: Please wait.
[  117.384167][ T6181] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[pid  6178] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6178] close(4)                    = 0
[pid  6178] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6178] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6178] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6178] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6178] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6178] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6178] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6178] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6178] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6178] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6178] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6178] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6178] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6178] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6178] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[  117.393286][ T6181] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6178] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6178] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6178] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6178] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6178] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6178] sendfile(5, 4, [100] <unfinished ...>
[pid  6183] <... write resumed>)        = 16777216
[pid  6183] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6179] <... mount resumed>)        = 0
[pid  6183] <... munmap resumed>)       = 0
[pid  6179] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6183] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6179] <... openat resumed>)       = 3
[pid  6183] <... openat resumed>)       = 4
[pid  6179] chdir("./file0" <unfinished ...>
[pid  6183] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6179] <... chdir resumed>)        = 0
[pid  6179] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6179] close(4)                    = 0
[pid  6179] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6179] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6179] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6179] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6179] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6179] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6179] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[  117.451491][ T6180] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  117.463418][ T6179] XFS (loop4): Quotacheck: Done.
[  117.475049][ T6180] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  117.481528][ T6183] loop1: detected capacity change from 0 to 32768
[pid  6179] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6183] <... ioctl resumed>)        = 0
[pid  6179] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6183] close(3 <unfinished ...>
[pid  6179] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6183] <... close resumed>)        = 0
[pid  6179] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6183] mkdir("./file0", 0777)      = 0
[pid  6183] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6179] read(-1,  <unfinished ...>
[pid  6178] <... sendfile resumed> => [671], 571) = 571
[pid  6179] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6179] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6179] write(-1, NULL, 0 <unfinished ...>
[pid  6178] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6179] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6179] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6179] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6178] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6179] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6178] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6178] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6179] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6178] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6179] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6179] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6178] ftruncate(-1, 33587199 <unfinished ...>
[pid  6179] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6178] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6178] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6178] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6178] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6179] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6179] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6178] read(-1,  <unfinished ...>
[pid  6179] <... openat resumed>)       = 4
[pid  6178] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6179] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6178] exit_group(0 <unfinished ...>
[pid  6179] <... openat resumed>)       = 5
[  117.512656][ T6178] syz-executor246 (6178): drop_caches: 2
[  117.526541][ T6178] syz-executor246 (6178): drop_caches: 2
[pid  6179] sendfile(5, 4, [100] <unfinished ...>
[pid  6178] <... exit_group resumed>)   = ?
[pid  6178] +++ exited with 0 +++
[pid  6179] <... sendfile resumed> => [671], 571) = 571
[pid  6179] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6178, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=31 /* 0.31 s */} ---
[pid  6179] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6179] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6179] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] umount2("./20", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6179] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6179] ftruncate(-1, 33587199 <unfinished ...>
[pid  5062] openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6179] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6179] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  6179] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  6179] open(NULL, O_RDONLY <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6179] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] getdents64(3,  <unfinished ...>
[pid  6179] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6179] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] umount2("./20/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6179] read(-1,  <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6179] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[  117.574531][ T6179] syz-executor246 (6179): drop_caches: 2
[  117.583426][ T6179] syz-executor246 (6179): drop_caches: 2
[  117.588558][ T6181] XFS (loop5): Ending clean mount
[  117.601534][ T6183] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[pid  5062] newfstatat(AT_FDCWD, "./20/binderfs",  <unfinished ...>
[pid  6179] exit_group(0 <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6179] <... exit_group resumed>)   = ?
[pid  5062] unlink("./20/binderfs" <unfinished ...>
[pid  6179] +++ exited with 0 +++
[pid  5062] <... unlink resumed>)       = 0
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6179, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=32 /* 0.32 s */} ---
[pid  5062] umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] umount2("./20", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./20/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./20/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] unlink("./20/binderfs")     = 0
[  117.620260][ T6181] XFS (loop5): Quotacheck needed: Please wait.
[  117.623023][ T6180] XFS (loop3): Ending clean mount
[  117.648675][ T6183] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  117.653177][ T6180] XFS (loop3): Quotacheck needed: Please wait.
[  117.662376][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5066] umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6181] <... mount resumed>)        = 0
[pid  6180] <... mount resumed>)        = 0
[pid  6182] <... write resumed>)        = 16777216
[pid  6181] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6180] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6181] <... openat resumed>)       = 3
[  117.700200][ T6181] XFS (loop5): Quotacheck: Done.
[  117.705801][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  117.711120][ T6180] XFS (loop3): Quotacheck: Done.
[pid  6180] chdir("./file0")            = 0
[pid  6181] chdir("./file0" <unfinished ...>
[pid  6182] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6181] <... chdir resumed>)        = 0
[pid  6180] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6181] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6180] <... ioctl resumed>)        = 0
[pid  6181] close(4)                    = 0
[pid  6180] close(4)                    = 0
[pid  6180] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6180] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6181] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6180] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6181] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6180] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6181] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6180] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6181] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6180] ftruncate(-1, 33587195 <unfinished ...>
[pid  6181] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6180] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6181] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6180] read(-1,  <unfinished ...>
[pid  6181] ftruncate(-1, 33587195 <unfinished ...>
[pid  6180] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6180] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6181] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6180] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6180] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6181] read(-1,  <unfinished ...>
[pid  6180] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6181] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6180] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6181] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6180] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6181] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6181] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6181] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6180] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6181] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6180] read(-1,  <unfinished ...>
[pid  6181] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6180] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6181] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6180] write(-1, NULL, 0 <unfinished ...>
[pid  6181] write(-1, NULL, 0 <unfinished ...>
[pid  6180] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6180] write(-1, NULL, 0 <unfinished ...>
[pid  6181] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6180] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6181] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6181] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6180] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6180] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6181] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6181] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6180] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6180] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[  117.805169][ T6183] XFS (loop1): Ending clean mount
[pid  6180] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6182] <... munmap resumed>)       = 0
[pid  6181] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6180] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6180] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6180] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6181] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6181] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6181] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6181] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6181] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6180] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6181] sendfile(5, 4, [100] <unfinished ...>
[pid  6180] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6182] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  6180] <... openat resumed>)       = 4
[pid  6180] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6180] sendfile(5, 4, [100] <unfinished ...>
[pid  6182] <... openat resumed>)       = 4
[  117.836709][ T6183] XFS (loop1): Quotacheck needed: Please wait.
[  117.860117][ T6181] syz-executor246 (6181): drop_caches: 2
[  117.869414][ T6180] syz-executor246 (6180): drop_caches: 2
[pid  6182] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6182] close(3)                    = 0
[pid  6182] mkdir("./file0", 0777)      = 0
[pid  6180] <... sendfile resumed> => [671], 571) = 571
[  117.887309][ T6182] loop2: detected capacity change from 0 to 32768
[  117.916522][ T6180] syz-executor246 (6180): drop_caches: 2
[pid  6182] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6180] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6180] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6180] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6180] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6180] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6180] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6180] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6180] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6180] exit_group(0)               = ?
[pid  6181] <... sendfile resumed> => [671], 571) = 571
[pid  6183] <... mount resumed>)        = 0
[pid  6181] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6183] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6181] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6180] +++ exited with 0 +++
[pid  6183] <... openat resumed>)       = 3
[pid  6181] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6183] chdir("./file0" <unfinished ...>
[pid  6181] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6180, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=29 /* 0.29 s */} ---
[pid  6183] <... chdir resumed>)        = 0
[pid  6181] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5065] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  6183] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6181] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] <... restart_syscall resumed>) = 0
[pid  6183] <... ioctl resumed>)        = 0
[pid  6181] ftruncate(-1, 33587199 <unfinished ...>
[pid  6183] close(4 <unfinished ...>
[pid  6181] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6183] <... close resumed>)        = 0
[pid  6181] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5065] umount2("./20", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6181] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6181] open(NULL, O_RDONLY <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6181] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6183] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6181] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5065] <... openat resumed>)       = 3
[pid  6183] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6181] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  6183] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6181] read(-1,  <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6183] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6181] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5065] getdents64(3,  <unfinished ...>
[pid  6183] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6181] exit_group(0 <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[  117.944488][ T6181] syz-executor246 (6181): drop_caches: 2
[  117.951826][ T6183] XFS (loop1): Quotacheck: Done.
[pid  6183] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6181] <... exit_group resumed>)   = ?
[pid  5065] umount2("./20/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6183] ftruncate(-1, 33587195 <unfinished ...>
[pid  6181] +++ exited with 0 +++
[pid  6183] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6183] read(-1,  <unfinished ...>
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6181, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=31 /* 0.31 s */} ---
[pid  5065] newfstatat(AT_FDCWD, "./20/binderfs",  <unfinished ...>
[pid  5067] umount2("./21", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] unlink("./20/binderfs" <unfinished ...>
[pid  6183] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5067] openat(AT_FDCWD, "./21", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] <... unlink resumed>)       = 0
[pid  6183] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5067] <... openat resumed>)       = 3
[pid  5065] umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6183] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./21/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6183] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6183] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] newfstatat(AT_FDCWD, "./21/binderfs",  <unfinished ...>
[pid  6183] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6183] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5067] unlink("./21/binderfs" <unfinished ...>
[pid  6183] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5067] <... unlink resumed>)       = 0
[pid  6183] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5067] umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6183] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6183] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6183] write(-1, NULL, 0 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  6183] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6183] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5062] umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  118.003310][ T6182] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  118.033407][ T6182] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5062] newfstatat(AT_FDCWD, "./20/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./20/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  6183] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./20/file0" <unfinished ...>
[pid  6183] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  6183] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5066] <... umount2 resumed>)      = 0
[pid  5062] getdents64(3,  <unfinished ...>
[pid  6183] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6183] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6183] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6183] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5066] umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6183] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6183] <... openat resumed>)       = 4
[pid  5066] newfstatat(AT_FDCWD, "./20/file0",  <unfinished ...>
[pid  6183] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6183] <... openat resumed>)       = 5
[pid  5066] umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] close(3 <unfinished ...>
[pid  5066] openat(AT_FDCWD, "./20/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5066] <... openat resumed>)       = 4
[pid  5062] rmdir("./20" <unfinished ...>
[pid  6183] sendfile(5, 4, [100] <unfinished ...>
[pid  5066] newfstatat(4, "",  <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5062] mkdir("./21", 0777)         = 0
[pid  5066] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5066] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4 <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  5066] <... close resumed>)        = 0
[  118.045492][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  118.054992][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5066] rmdir("./20/file0" <unfinished ...>
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3 <unfinished ...>
[pid  5066] close(3 <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5066] <... close resumed>)        = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5066] rmdir("./20")               = 0
[pid  5066] mkdir("./21", 0777 <unfinished ...>
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 6232
./strace-static-x86_64: Process 6232 attached
[pid  6232] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5066] <... mkdir resumed>)        = 0
[pid  6232] <... set_robust_list resumed>) = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  6232] chdir("./21")               = 0
[pid  5066] close(3 <unfinished ...>
[pid  6232] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  6232] <... prctl resumed>)        = 0
[pid  6232] setpgid(0, 0)               = 0
[pid  6232] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6232] write(3, "1000", 4)         = 4
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6232] close(3./strace-static-x86_64: Process 6233 attached
)                    = 0
[pid  6232] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6233] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 6233
[  118.109671][ T6183] syz-executor246 (6183): drop_caches: 2
[  118.142606][ T6183] syz-executor246 (6183): drop_caches: 2
[pid  6232] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6233] <... set_robust_list resumed>) = 0
[pid  6232] <... memfd_create resumed>) = 3
[pid  6232] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6233] chdir("./21")               = 0
[pid  6233] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6233] setpgid(0, 0)               = 0
[pid  6183] <... sendfile resumed> => [671], 571) = 571
[pid  6183] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6183] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6233] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6183] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6233] <... openat resumed>)       = 3
[pid  6183] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6183] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6183] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6183] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6183] read(-1,  <unfinished ...>
[pid  6233] write(3, "1000", 4 <unfinished ...>
[pid  6183] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6233] <... write resumed>)        = 4
[pid  6183] exit_group(0 <unfinished ...>
[pid  6233] close(3 <unfinished ...>
[pid  6183] <... exit_group resumed>)   = ?
[pid  6233] <... close resumed>)        = 0
[pid  6233] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6183] +++ exited with 0 +++
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6183, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=32 /* 0.32 s */} ---
[pid  5063] umount2("./21", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6233] <... symlink resumed>)      = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6233] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./21", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6233] <... memfd_create resumed>) = 3
[pid  5063] <... openat resumed>)       = 3
[pid  6233] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  6233] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[  118.190668][ T6182] XFS (loop2): Ending clean mount
[  118.211532][ T6182] XFS (loop2): Quotacheck needed: Please wait.
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./21/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./21/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] unlink("./21/binderfs")     = 0
[pid  5063] umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6182] <... mount resumed>)        = 0
[pid  6182] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[  118.280877][ T6182] XFS (loop2): Quotacheck: Done.
[pid  6182] chdir("./file0")            = 0
[pid  6182] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6182] close(4)                    = 0
[pid  6182] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6182] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6182] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6182] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6182] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6182] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6182] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6182] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6182] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6182] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6182] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6182] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6182] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6182] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[  118.304612][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6182] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6182] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6182] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6182] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6182] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6182] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  118.440094][ T6182] syz-executor246 (6182): drop_caches: 2
[pid  6182] sendfile(5, 4, [100] => [671], 571) = 571
[pid  6182] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6182] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6182] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6182] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6182] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6182] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6232] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[  118.486833][ T6182] syz-executor246 (6182): drop_caches: 2
[pid  6182] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5065] <... umount2 resumed>)      = 0
[pid  6182] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6182] exit_group(0)               = ?
[pid  6182] +++ exited with 0 +++
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6182, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=32 /* 0.32 s */} ---
[pid  5064] umount2("./20", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] <... openat resumed>)       = 3
[pid  5065] newfstatat(AT_FDCWD, "./20/file0",  <unfinished ...>
[pid  5064] newfstatat(3, "",  <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5064] getdents64(3,  <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./20/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./20/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... openat resumed>)       = 4
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(4, "",  <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./21/file0",  <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5064] newfstatat(AT_FDCWD, "./20/binderfs",  <unfinished ...>
[pid  5067] umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] openat(AT_FDCWD, "./21/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] unlink("./20/binderfs" <unfinished ...>
[pid  5067] <... openat resumed>)       = 4
[pid  5065] close(4 <unfinished ...>
[pid  5064] <... unlink resumed>)       = 0
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] <... close resumed>)        = 0
[pid  5064] umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] rmdir("./20/file0" <unfinished ...>
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./21/file0")         = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./21")               = 0
[pid  5067] mkdir("./22", 0777)         = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3 <unfinished ...>
[pid  6233] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  5065] <... rmdir resumed>)        = 0
[pid  5063] <... umount2 resumed>)      = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
./strace-static-x86_64: Process 6234 attached
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 6234
[pid  6234] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5065] close(3 <unfinished ...>
[pid  6234] <... set_robust_list resumed>) = 0
[pid  5065] <... close resumed>)        = 0
[pid  6234] chdir("./22" <unfinished ...>
[pid  5065] rmdir("./20" <unfinished ...>
[pid  6234] <... chdir resumed>)        = 0
[pid  5065] <... rmdir resumed>)        = 0
[pid  6234] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5065] mkdir("./21", 0777 <unfinished ...>
[pid  6234] setpgid(0, 0)               = 0
[pid  5065] <... mkdir resumed>)        = 0
[pid  6234] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  6234] <... openat resumed>)       = 3
[pid  5063] umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6234] write(3, "1000", 4 <unfinished ...>
[pid  5065] <... openat resumed>)       = 3
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6234] <... write resumed>)        = 4
[pid  5065] ioctl(3, LOOP_CLR_FD <unfinished ...>
[  118.602720][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6234] close(3)                    = 0
[pid  5065] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6234] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5065] close(3 <unfinished ...>
[pid  6234] <... symlink resumed>)      = 0
[pid  5065] <... close resumed>)        = 0
[pid  5063] newfstatat(AT_FDCWD, "./21/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5063] umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 6235
./strace-static-x86_64: Process 6235 attached
[pid  6234] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6235] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./21/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6235] <... set_robust_list resumed>) = 0
[pid  6235] chdir("./21" <unfinished ...>
[pid  6234] <... memfd_create resumed>) = 3
[pid  5063] <... openat resumed>)       = 4
[pid  6235] <... chdir resumed>)        = 0
[pid  6234] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  6235] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6235] <... prctl resumed>)        = 0
[pid  6234] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5063] getdents64(4,  <unfinished ...>
[pid  6235] setpgid(0, 0)               = 0
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  6235] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5063] getdents64(4,  <unfinished ...>
[pid  6235] <... openat resumed>)       = 3
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  6235] write(3, "1000", 4)         = 4
[pid  6235] close(3)                    = 0
[pid  5063] close(4 <unfinished ...>
[pid  6235] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5063] <... close resumed>)        = 0
[pid  6235] memfd_create("syzkaller", 0) = 3
[pid  6235] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5063] rmdir("./21/file0")         = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3)                    = 0
[pid  5063] rmdir("./21")               = 0
[pid  5063] mkdir("./22", 0777)         = 0
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5063] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5063] close(3)                    = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6236 attached
 <unfinished ...>
[pid  6236] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 6236
[pid  6236] <... set_robust_list resumed>) = 0
[pid  6236] chdir("./22")               = 0
[pid  6236] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6236] setpgid(0, 0)               = 0
[pid  6236] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6236] write(3, "1000", 4)         = 4
[pid  6236] close(3)                    = 0
[pid  6236] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6236] memfd_create("syzkaller", 0) = 3
[pid  6236] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6234] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  5064] umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./20/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./20/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./20/file0")         = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./20")               = 0
[pid  5064] mkdir("./21", 0777)         = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6237 attached
 <unfinished ...>
[pid  6235] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6237] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 6237
[pid  6237] <... set_robust_list resumed>) = 0
[pid  6237] chdir("./21")               = 0
[pid  6232] <... write resumed>)        = 16777216
[pid  6237] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6237] setpgid(0, 0)               = 0
[pid  6237] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6237] write(3, "1000", 4 <unfinished ...>
[pid  6232] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6237] <... write resumed>)        = 4
[pid  6237] close(3)                    = 0
[pid  6237] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6237] memfd_create("syzkaller", 0) = 3
[pid  6237] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6233] <... write resumed>)        = 16777216
[pid  6233] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6232] <... munmap resumed>)       = 0
[pid  6232] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  6232] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6233] <... munmap resumed>)       = 0
[pid  6233] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  6232] close(3)                    = 0
[pid  6232] mkdir("./file0", 0777 <unfinished ...>
[pid  6233] <... openat resumed>)       = 4
[pid  6232] <... mkdir resumed>)        = 0
[pid  6232] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6233] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6236] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6233] <... ioctl resumed>)        = 0
[  119.228082][ T6232] loop0: detected capacity change from 0 to 32768
[  119.268157][ T6233] loop4: detected capacity change from 0 to 32768
[pid  6233] close(3)                    = 0
[pid  6233] mkdir("./file0", 0777)      = 0
[  119.294212][ T6232] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  119.322468][ T6232] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  119.363991][ T6233] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  119.404076][ T6233] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6233] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6235] <... write resumed>)        = 16777216
[  119.494915][ T6232] XFS (loop0): Ending clean mount
[pid  6235] munmap(0x7f6d986f1000, 138412032) = 0
[pid  6235] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  6234] <... write resumed>)        = 16777216
[pid  6235] <... openat resumed>)       = 4
[pid  6237] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6234] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[  119.524577][ T6232] XFS (loop0): Quotacheck needed: Please wait.
[  119.548051][ T6233] XFS (loop4): Ending clean mount
[  119.562339][ T6233] XFS (loop4): Quotacheck needed: Please wait.
[pid  6235] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6232] <... mount resumed>)        = 0
[pid  6232] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6235] <... ioctl resumed>)        = 0
[pid  6233] <... mount resumed>)        = 0
[pid  6232] chdir("./file0")            = 0
[pid  6232] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6232] close(4)                    = 0
[pid  6232] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6232] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6232] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6235] close(3 <unfinished ...>
[pid  6232] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6232] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6232] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6232] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6232] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6233] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6232] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6233] <... openat resumed>)       = 3
[pid  6232] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6232] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6233] chdir("./file0" <unfinished ...>
[pid  6232] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6233] <... chdir resumed>)        = 0
[pid  6232] read(-1,  <unfinished ...>
[pid  6235] <... close resumed>)        = 0
[pid  6232] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6233] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6232] write(-1, NULL, 0 <unfinished ...>
[pid  6233] <... ioctl resumed>)        = 0
[pid  6232] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6233] close(4 <unfinished ...>
[pid  6232] write(-1, NULL, 0 <unfinished ...>
[pid  6235] mkdir("./file0", 0777 <unfinished ...>
[pid  6233] <... close resumed>)        = 0
[pid  6232] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6233] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6232] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6235] <... mkdir resumed>)        = 0
[pid  6233] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6232] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6233] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6232] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6233] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6232] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6235] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6233] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6232] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6233] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6233] ftruncate(-1, 33587195 <unfinished ...>
[pid  6232] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6233] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6232] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6233] read(-1,  <unfinished ...>
[pid  6232] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6233] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6232] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6233] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6232] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6233] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6232] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6233] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6232] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6233] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6232] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6233] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6232] <... openat resumed>)       = 4
[pid  6233] read(-1,  <unfinished ...>
[pid  6232] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6233] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6233] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6232] <... openat resumed>)       = 5
[pid  6234] <... munmap resumed>)       = 0
[pid  6233] write(-1, NULL, 0 <unfinished ...>
[  119.571034][ T6235] loop3: detected capacity change from 0 to 32768
[  119.581501][ T6232] XFS (loop0): Quotacheck: Done.
[  119.605290][ T6233] XFS (loop4): Quotacheck: Done.
[pid  6232] sendfile(5, 4, [100] <unfinished ...>
[pid  6234] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  6233] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6234] <... openat resumed>)       = 4
[pid  6233] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6234] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6233] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6233] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6233] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6233] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6233] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6233] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6233] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6233] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6234] <... ioctl resumed>)        = 0
[pid  6234] close(3 <unfinished ...>
[pid  6233] sendfile(5, 4, [100] <unfinished ...>
[pid  6234] <... close resumed>)        = 0
[  119.660742][ T6235] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  119.674137][ T6234] loop5: detected capacity change from 0 to 32768
[pid  6234] mkdir("./file0", 0777)      = 0
[  119.705577][ T6235] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  119.710763][ T6232] syz-executor246 (6232): drop_caches: 2
[  119.722059][ T6233] syz-executor246 (6233): drop_caches: 2
[  119.740850][ T6232] syz-executor246 (6232): drop_caches: 2
[pid  6234] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6233] <... sendfile resumed> => [671], 571) = 571
[pid  6232] <... sendfile resumed> => [671], 571) = 571
[pid  6233] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6232] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6233] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6232] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6233] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6232] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6233] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6232] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6233] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6233] ftruncate(-1, 33587199 <unfinished ...>
[pid  6232] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6233] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6232] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6233] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6232] ftruncate(-1, 33587199 <unfinished ...>
[pid  6233] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6232] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6233] open(NULL, O_RDONLY <unfinished ...>
[pid  6232] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6233] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6232] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6233] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6232] open(NULL, O_RDONLY <unfinished ...>
[pid  6233] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6232] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6233] read(-1,  <unfinished ...>
[pid  6232] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6233] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6232] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6233] exit_group(0 <unfinished ...>
[pid  6232] read(-1,  <unfinished ...>
[pid  6233] <... exit_group resumed>)   = ?
[pid  6232] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6232] exit_group(0)               = ?
[pid  6233] +++ exited with 0 +++
[pid  6232] +++ exited with 0 +++
[  119.756280][ T6233] syz-executor246 (6233): drop_caches: 2
[  119.787678][ T6234] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6233, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=31 /* 0.31 s */} ---
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6232, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=35 /* 0.35 s */} ---
[pid  5066] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5062] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5066] umount2("./21", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] umount2("./21", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] openat(AT_FDCWD, "./21", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] <... openat resumed>)       = 3
[pid  5062] openat(AT_FDCWD, "./21", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] <... openat resumed>)       = 3
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6236] <... write resumed>)        = 16777216
[pid  5066] umount2("./21/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] getdents64(3,  <unfinished ...>
[pid  6236] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] newfstatat(AT_FDCWD, "./21/binderfs",  <unfinished ...>
[pid  5062] umount2("./21/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] unlink("./21/binderfs" <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./21/binderfs",  <unfinished ...>
[pid  5066] <... unlink resumed>)       = 0
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] unlink("./21/binderfs")     = 0
[  119.813999][ T6234] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  119.837979][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  119.849496][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5062] umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6236] <... munmap resumed>)       = 0
[pid  6236] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid  6236] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6236] close(3)                    = 0
[pid  6236] mkdir("./file0", 0777)      = 0
[  119.860780][ T6235] XFS (loop3): Ending clean mount
[  119.868531][ T6236] loop1: detected capacity change from 0 to 32768
[  119.920225][ T6235] XFS (loop3): Quotacheck needed: Please wait.
[  119.934239][ T6234] XFS (loop5): Ending clean mount
[  119.955851][ T6236] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[pid  6236] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./21/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[  119.986476][ T6234] XFS (loop5): Quotacheck needed: Please wait.
[  120.003836][ T6236] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5066] umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./21/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  6235] <... mount resumed>)        = 0
[pid  5066] newfstatat(4, "",  <unfinished ...>
[pid  6235] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6235] <... openat resumed>)       = 3
[pid  5066] getdents64(4,  <unfinished ...>
[pid  6235] chdir("./file0" <unfinished ...>
[pid  5066] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  6235] <... chdir resumed>)        = 0
[pid  5066] getdents64(4,  <unfinished ...>
[pid  6235] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5066] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  6235] <... ioctl resumed>)        = 0
[pid  5066] close(4 <unfinished ...>
[pid  6235] close(4 <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  6235] <... close resumed>)        = 0
[pid  5066] rmdir("./21/file0" <unfinished ...>
[pid  6237] <... write resumed>)        = 16777216
[pid  6235] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6237] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6235] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  6235] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6235] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[  120.073419][ T6235] XFS (loop3): Quotacheck: Done.
[pid  6235] ftruncate(-1, 33587195 <unfinished ...>
[pid  5066] getdents64(3,  <unfinished ...>
[pid  6235] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6235] read(-1,  <unfinished ...>
[pid  5066] close(3 <unfinished ...>
[pid  6235] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5066] <... close resumed>)        = 0
[pid  6235] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5066] rmdir("./21" <unfinished ...>
[pid  6235] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6235] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6235] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  6235] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5066] mkdir("./22", 0777 <unfinished ...>
[pid  6235] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6235] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6235] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6234] <... mount resumed>)        = 0
[pid  5066] <... mkdir resumed>)        = 0
[pid  6235] write(-1, NULL, 0 <unfinished ...>
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  6235] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6235] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  6235] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6234] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6235] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] close(3 <unfinished ...>
[pid  6237] <... munmap resumed>)       = 0
[pid  6235] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6237] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  6235] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6235] <... openat resumed>)       = -1 EFAULT (Bad address)
./strace-static-x86_64: Process 6278 attached
[pid  6237] <... openat resumed>)       = 4
[pid  6235] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6234] chdir("./file0" <unfinished ...>
[pid  6237] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6235] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6235] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[  120.124148][ T6234] XFS (loop5): Quotacheck: Done.
[  120.132034][ T6236] XFS (loop1): Ending clean mount
[  120.155986][ T6236] XFS (loop1): Quotacheck needed: Please wait.
[pid  6235] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6278] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6234] <... chdir resumed>)        = 0
[pid  6234] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6278] <... set_robust_list resumed>) = 0
[pid  6234] <... ioctl resumed>)        = 0
[pid  6278] chdir("./22" <unfinished ...>
[pid  6234] close(4 <unfinished ...>
[pid  6278] <... chdir resumed>)        = 0
[pid  6235] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6234] <... close resumed>)        = 0
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 6278
[pid  6235] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6234] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6235] <... openat resumed>)       = 4
[pid  6234] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6234] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6278] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6237] <... ioctl resumed>)        = 0
[pid  6235] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6237] close(3 <unfinished ...>
[pid  6278] <... prctl resumed>)        = 0
[pid  6237] <... close resumed>)        = 0
[pid  6235] <... openat resumed>)       = 5
[pid  6234] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6278] setpgid(0, 0 <unfinished ...>
[pid  6237] mkdir("./file0", 0777 <unfinished ...>
[pid  6235] sendfile(5, 4, [100] <unfinished ...>
[pid  6234] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6278] <... setpgid resumed>)      = 0
[pid  6234] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6278] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6237] <... mkdir resumed>)        = 0
[pid  6234] ftruncate(-1, 33587195 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  6278] <... openat resumed>)       = 3
[pid  6237] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6234] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[  120.172909][ T6237] loop2: detected capacity change from 0 to 32768
[pid  6278] write(3, "1000", 4 <unfinished ...>
[pid  6234] read(-1,  <unfinished ...>
[pid  5062] umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6278] <... write resumed>)        = 4
[pid  6234] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./21/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./21/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6278] close(3 <unfinished ...>
[pid  6234] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5062] <... openat resumed>)       = 4
[pid  6234] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6278] <... close resumed>)        = 0
[pid  6278] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6234] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6234] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  6234] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6278] <... symlink resumed>)      = 0
[pid  6234] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4 <unfinished ...>
[pid  6278] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6234] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5062] <... close resumed>)        = 0
[pid  6234] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6234] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5062] rmdir("./21/file0" <unfinished ...>
[pid  6278] <... memfd_create resumed>) = 3
[pid  6234] write(-1, NULL, 0 <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  6278] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6234] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6234] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6278] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6236] <... mount resumed>)        = 0
[pid  6234] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./21" <unfinished ...>
[pid  6236] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6234] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  6234] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5062] mkdir("./22", 0777 <unfinished ...>
[pid  6236] <... openat resumed>)       = 3
[pid  5062] <... mkdir resumed>)        = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  6234] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3 <unfinished ...>
[pid  6234] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6236] chdir("./file0" <unfinished ...>
[pid  6234] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  6236] <... chdir resumed>)        = 0
[pid  6234] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6234] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6234] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6236] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6234] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 6283
[  120.209821][ T6235] syz-executor246 (6235): drop_caches: 2
[  120.217585][ T6236] XFS (loop1): Quotacheck: Done.
./strace-static-x86_64: Process 6283 attached
[pid  6236] <... ioctl resumed>)        = 0
[pid  6234] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6283] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6236] close(4 <unfinished ...>
[pid  6234] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6235] <... sendfile resumed> => [671], 571) = 571
[pid  6283] <... set_robust_list resumed>) = 0
[pid  6236] <... close resumed>)        = 0
[pid  6234] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6235] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6235] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6235] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6235] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6235] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6235] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6235] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6234] <... openat resumed>)       = 5
[pid  6283] chdir("./22" <unfinished ...>
[pid  6236] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6234] sendfile(5, 4, [100] <unfinished ...>
[pid  6236] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6235] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6235] exit_group(0)               = ?
[pid  6283] <... chdir resumed>)        = 0
[  120.261317][ T6235] syz-executor246 (6235): drop_caches: 2
[  120.269733][ T6237] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  120.289893][ T6237] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6236] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6235] +++ exited with 0 +++
[pid  6283] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6236] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6283] <... prctl resumed>)        = 0
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6235, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=33 /* 0.33 s */} ---
[pid  6283] setpgid(0, 0 <unfinished ...>
[pid  6236] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] umount2("./21", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6283] <... setpgid resumed>)      = 0
[pid  6236] ftruncate(-1, 33587195 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6283] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6236] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6283] <... openat resumed>)       = 3
[pid  6236] read(-1,  <unfinished ...>
[pid  6283] write(3, "1000", 4 <unfinished ...>
[pid  6236] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6283] <... write resumed>)        = 4
[pid  6236] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6283] close(3 <unfinished ...>
[pid  6236] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6283] <... close resumed>)        = 0
[pid  6236] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6234] <... sendfile resumed> => [671], 571) = 571
[pid  5065] openat(AT_FDCWD, "./21", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6283] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6236] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6283] <... symlink resumed>)      = 0
[pid  6234] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5065] <... openat resumed>)       = 3
[pid  6283] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6236] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6234] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  6283] <... memfd_create resumed>) = 3
[pid  6236] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6234] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6236] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6236] read(-1,  <unfinished ...>
[pid  6283] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6236] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6234] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] getdents64(3,  <unfinished ...>
[pid  6283] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6234] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6236] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6234] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] umount2("./21/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6236] write(-1, NULL, 0 <unfinished ...>
[pid  6234] ftruncate(-1, 33587199 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6236] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6234] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5065] newfstatat(AT_FDCWD, "./21/binderfs",  <unfinished ...>
[pid  6236] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6234] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6236] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6234] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5065] unlink("./21/binderfs" <unfinished ...>
[pid  6234] open(NULL, O_RDONLY <unfinished ...>
[pid  6236] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6234] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] <... unlink resumed>)       = 0
[pid  6236] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6234] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6236] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6234] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[  120.306249][ T6234] syz-executor246 (6234): drop_caches: 2
[  120.316460][ T6234] syz-executor246 (6234): drop_caches: 2
[pid  6236] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6234] exit_group(0 <unfinished ...>
[pid  5065] umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6234] <... exit_group resumed>)   = ?
[pid  6236] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6234] +++ exited with 0 +++
[pid  6236] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6234, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=28 /* 0.28 s */} ---
[pid  6236] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6236] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5067] umount2("./22", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6236] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6236] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5067] openat(AT_FDCWD, "./22", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6236] <... openat resumed>)       = 4
[pid  5067] <... openat resumed>)       = 3
[pid  6236] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  6236] <... openat resumed>)       = 5
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6236] sendfile(5, 4, [100] <unfinished ...>
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./22/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./22/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./22/binderfs")     = 0
[  120.396794][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  120.408449][ T6236] syz-executor246 (6236): drop_caches: 2
[  120.436178][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5067] umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6236] <... sendfile resumed> => [671], 571) = 571
[pid  6236] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6236] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6236] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6236] ftruncate(-1, 33587199 <unfinished ...>
[pid  6278] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6236] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[  120.454952][ T6237] XFS (loop2): Ending clean mount
[  120.471951][ T6236] syz-executor246 (6236): drop_caches: 2
[  120.480307][ T6237] XFS (loop2): Quotacheck needed: Please wait.
[pid  6283] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6236] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6236] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6236] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6236] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6236] exit_group(0)               = ?
[pid  6236] +++ exited with 0 +++
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6236, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=30 /* 0.30 s */} ---
[pid  5063] umount2("./22", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./22", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./22/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./22/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] unlink("./22/binderfs")     = 0
[pid  5063] umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6237] <... mount resumed>)        = 0
[  120.539959][ T6237] XFS (loop2): Quotacheck: Done.
[pid  6237] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6237] chdir("./file0")            = 0
[pid  6237] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6237] close(4)                    = 0
[pid  6237] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6237] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6237] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6237] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6237] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6237] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6237] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6237] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6237] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6237] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6237] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6237] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6237] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6237] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6237] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6237] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6237] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6237] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6237] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6237] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  120.623473][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  120.640662][ T6237] syz-executor246 (6237): drop_caches: 2
[  120.689695][ T6237] syz-executor246 (6237): drop_caches: 2
[pid  6237] sendfile(5, 4, [100] => [671], 571) = 571
[pid  6237] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6237] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6237] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6237] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6237] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6237] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6237] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6237] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6237] exit_group(0)               = ?
[pid  6237] +++ exited with 0 +++
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6237, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=37 /* 0.37 s */} ---
[pid  5064] umount2("./21", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./21", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./21/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./21/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./21/binderfs")     = 0
[pid  5064] umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  5065] umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./21/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  120.849638][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5065] openat(AT_FDCWD, "./21/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5067] <... umount2 resumed>)      = 0
[pid  5065] rmdir("./21/file0")         = 0
[pid  5063] <... umount2 resumed>)      = 0
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5063] umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] close(3 <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./22/file0",  <unfinished ...>
[pid  5065] <... close resumed>)        = 0
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] rmdir("./21" <unfinished ...>
[pid  5063] umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] newfstatat(AT_FDCWD, "./22/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... rmdir resumed>)        = 0
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] mkdir("./22", 0777 <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./22/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] <... mkdir resumed>)        = 0
[pid  5063] openat(AT_FDCWD, "./22/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5067] <... openat resumed>)       = 4
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] <... openat resumed>)       = 4
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] <... openat resumed>)       = 3
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  5067] close(4)                    = 0
[pid  6283] <... write resumed>)        = 16777216
[pid  5067] rmdir("./22/file0" <unfinished ...>
[pid  5065] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] <... rmdir resumed>)        = 0
[pid  5065] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5065] close(3 <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] <... close resumed>)        = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./22")               = 0
[pid  5067] mkdir("./23", 0777 <unfinished ...>
[pid  6283] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5067] <... mkdir resumed>)        = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5063] getdents64(4, ./strace-static-x86_64: Process 6288 attached
 <unfinished ...>
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] <... openat resumed>)       = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5063] close(4 <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 6288
[pid  6288] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5063] rmdir("./22/file0" <unfinished ...>
[pid  6288] <... set_robust_list resumed>) = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6288] chdir("./22" <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 6289
[pid  6288] <... chdir resumed>)        = 0
[pid  5063] getdents64(3,  <unfinished ...>
[pid  6288] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
./strace-static-x86_64: Process 6289 attached
[pid  5063] close(3 <unfinished ...>
[pid  6288] <... prctl resumed>)        = 0
[pid  6289] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6288] setpgid(0, 0 <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  6289] <... set_robust_list resumed>) = 0
[pid  6289] chdir("./23" <unfinished ...>
[pid  6288] <... setpgid resumed>)      = 0
[pid  5063] rmdir("./22" <unfinished ...>
[pid  6289] <... chdir resumed>)        = 0
[pid  6288] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5063] <... rmdir resumed>)        = 0
[pid  5063] mkdir("./23", 0777 <unfinished ...>
[pid  6288] write(3, "1000", 4)         = 4
[pid  6288] close(3 <unfinished ...>
[pid  6289] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6289] setpgid(0, 0 <unfinished ...>
[pid  6288] <... close resumed>)        = 0
[pid  5063] <... mkdir resumed>)        = 0
[pid  6289] <... setpgid resumed>)      = 0
[pid  6289] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6288] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6289] <... openat resumed>)       = 3
[pid  6288] <... symlink resumed>)      = 0
[pid  5063] <... openat resumed>)       = 3
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6289] write(3, "1000", 4)         = 4
[pid  6288] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6289] close(3 <unfinished ...>
[pid  6288] <... memfd_create resumed>) = 3
[pid  5063] close(3 <unfinished ...>
[pid  6289] <... close resumed>)        = 0
[pid  6289] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6283] <... munmap resumed>)       = 0
[pid  5063] <... close resumed>)        = 0
[pid  6288] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6289] <... symlink resumed>)      = 0
[pid  6289] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6288] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 6290
./strace-static-x86_64: Process 6290 attached
[pid  6289] <... memfd_create resumed>) = 3
[pid  6283] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  6289] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6283] <... openat resumed>)       = 4
[pid  6289] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6283] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6290] set_robust_list(0x55555697c760, 24) = 0
[pid  6290] chdir("./23")               = 0
[pid  6290] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6290] setpgid(0, 0)               = 0
[pid  6290] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6290] write(3, "1000", 4)         = 4
[pid  6290] close(3)                    = 0
[pid  6283] <... ioctl resumed>)        = 0
[pid  6290] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6283] close(3 <unfinished ...>
[pid  6290] <... symlink resumed>)      = 0
[pid  6283] <... close resumed>)        = 0
[pid  6290] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6283] mkdir("./file0", 0777)      = 0
[pid  6290] <... memfd_create resumed>) = 3
[pid  6283] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6290] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  121.077652][ T6283] loop0: detected capacity change from 0 to 32768
[pid  6278] <... write resumed>)        = 16777216
[pid  6278] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  5064] umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./21/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6278] <... munmap resumed>)       = 0
[pid  5064] openat(AT_FDCWD, "./21/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./21/file0")         = 0
[pid  5064] getdents64(3,  <unfinished ...>
[pid  6278] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[  121.176542][ T6283] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  121.209851][ T6283] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6278] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./21")               = 0
[pid  5064] mkdir("./22", 0777)         = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6299
./strace-static-x86_64: Process 6299 attached
[pid  6299] set_robust_list(0x55555697c760, 24) = 0
[pid  6278] close(3)                    = 0
[pid  6278] mkdir("./file0", 0777)      = 0
[pid  6278] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6299] chdir("./22")               = 0
[pid  6299] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[  121.255590][ T6278] loop4: detected capacity change from 0 to 32768
[pid  6299] setpgid(0, 0)               = 0
[pid  6299] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6299] write(3, "1000", 4)         = 4
[pid  6299] close(3)                    = 0
[pid  6299] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6299] memfd_create("syzkaller", 0) = 3
[  121.312474][ T6278] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  121.338372][ T6278] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6299] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  121.363007][ T6283] XFS (loop0): Ending clean mount
[pid  6290] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[  121.392351][ T6283] XFS (loop0): Quotacheck needed: Please wait.
[  121.435714][ T6278] XFS (loop4): Ending clean mount
[  121.454110][ T6278] XFS (loop4): Quotacheck needed: Please wait.
[  121.467276][ T6283] XFS (loop0): Quotacheck: Done.
[pid  6288] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6278] <... mount resumed>)        = 0
[pid  6278] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6289] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6278] <... openat resumed>)       = 3
[pid  6278] chdir("./file0")            = 0
[pid  6278] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6283] <... mount resumed>)        = 0
[pid  6278] <... ioctl resumed>)        = 0
[pid  6283] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[  121.486608][ T6278] XFS (loop4): Quotacheck: Done.
[pid  6278] close(4 <unfinished ...>
[pid  6283] <... openat resumed>)       = 3
[pid  6278] <... close resumed>)        = 0
[pid  6283] chdir("./file0")            = 0
[pid  6283] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6278] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6278] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6283] <... ioctl resumed>)        = 0
[pid  6278] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6278] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6283] close(4 <unfinished ...>
[pid  6278] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6283] <... close resumed>)        = 0
[pid  6278] ftruncate(-1, 33587195 <unfinished ...>
[pid  6283] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6278] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6283] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6278] read(-1,  <unfinished ...>
[pid  6283] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6278] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6283] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6278] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6283] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6278] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6283] ftruncate(-1, 33587195 <unfinished ...>
[pid  6278] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6283] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6278] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6283] read(-1,  <unfinished ...>
[pid  6278] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6283] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6278] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6283] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6283] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6283] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6283] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6278] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6283] read(-1,  <unfinished ...>
[pid  6278] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6283] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6278] read(-1,  <unfinished ...>
[pid  6283] write(-1, NULL, 0 <unfinished ...>
[pid  6278] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6283] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6278] write(-1, NULL, 0 <unfinished ...>
[pid  6283] write(-1, NULL, 0 <unfinished ...>
[pid  6278] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6283] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6278] write(-1, NULL, 0 <unfinished ...>
[pid  6283] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6278] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6283] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6278] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6283] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6283] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6278] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6283] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6278] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6283] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6278] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6283] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6278] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6283] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6278] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6283] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6278] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6283] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6278] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6283] <... openat resumed>)       = 4
[pid  6278] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6283] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6278] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6278] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6283] <... openat resumed>)       = 5
[pid  6283] sendfile(5, 4, [100] <unfinished ...>
[pid  6278] <... openat resumed>)       = 4
[pid  6278] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6278] sendfile(5, 4, [100] => [671], 571) = 571
[pid  6278] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6278] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6278] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6278] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[  121.663706][ T6278] syz-executor246 (6278): drop_caches: 2
[  121.670162][ T6278] syz-executor246 (6278): drop_caches: 2
[  121.679171][ T6283] syz-executor246 (6283): drop_caches: 2
[pid  6278] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6278] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6278] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6278] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6278] exit_group(0)               = ?
[pid  6278] +++ exited with 0 +++
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6278, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=27 /* 0.27 s */} ---
[pid  6283] <... sendfile resumed> => [671], 571) = 571
[pid  5066] umount2("./22", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6283] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6283] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5066] openat(AT_FDCWD, "./22", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6283] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  6283] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  6283] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6283] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] getdents64(3,  <unfinished ...>
[pid  6283] ftruncate(-1, 33587199 <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6283] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5066] umount2("./22/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6283] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6283] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5066] newfstatat(AT_FDCWD, "./22/binderfs",  <unfinished ...>
[pid  6283] open(NULL, O_RDONLY <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6283] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] unlink("./22/binderfs" <unfinished ...>
[pid  6283] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5066] <... unlink resumed>)       = 0
[pid  6283] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5066] umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6283] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6283] exit_group(0)               = ?
[pid  6283] +++ exited with 0 +++
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6283, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=31 /* 0.31 s */} ---
[pid  5062] umount2("./22", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./22", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[  121.710626][ T6283] syz-executor246 (6283): drop_caches: 2
[pid  5062] umount2("./22/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6290] <... write resumed>)        = 16777216
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6290] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./22/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./22/binderfs" <unfinished ...>
[pid  6290] <... munmap resumed>)       = 0
[pid  5062] <... unlink resumed>)       = 0
[pid  5062] umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6299] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6290] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[  121.762946][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  121.798969][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6290] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6290] close(3)                    = 0
[  121.817936][ T6290] loop1: detected capacity change from 0 to 32768
[pid  6290] mkdir("./file0", 0777)      = 0
[pid  6290] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./22/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./22/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6288] <... write resumed>)        = 16777216
[  121.961256][ T6290] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  121.984502][ T6290] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6288] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5066] <... openat resumed>)       = 4
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  6288] <... munmap resumed>)       = 0
[pid  5066] getdents64(4,  <unfinished ...>
[pid  6288] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5066] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  6288] <... openat resumed>)       = 4
[pid  5066] close(4 <unfinished ...>
[pid  6288] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  5066] rmdir("./22/file0")         = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./22")               = 0
[pid  5066] mkdir("./23", 0777)         = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] close(3)                    = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6316 attached
, child_tidptr=0x55555697c750) = 6316
[pid  6316] set_robust_list(0x55555697c760, 24) = 0
[pid  6316] chdir("./23")               = 0
[pid  6316] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6316] setpgid(0, 0)               = 0
[pid  6288] <... ioctl resumed>)        = 0
[  122.068104][ T6288] loop3: detected capacity change from 0 to 32768
[pid  6288] close(3)                    = 0
[pid  6289] <... write resumed>)        = 16777216
[pid  6289] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6316] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6288] mkdir("./file0", 0777)      = 0
[pid  6288] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6316] <... openat resumed>)       = 3
[pid  6316] write(3, "1000", 4)         = 4
[pid  6316] close(3)                    = 0
[pid  6316] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6316] memfd_create("syzkaller", 0) = 3
[pid  6316] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  122.149862][ T6290] XFS (loop1): Ending clean mount
[pid  6289] <... munmap resumed>)       = 0
[pid  6289] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[  122.175755][ T6290] XFS (loop1): Quotacheck needed: Please wait.
[  122.201243][ T6288] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  122.203982][ T6289] loop5: detected capacity change from 0 to 32768
[pid  6289] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  6299] <... write resumed>)        = 16777216
[pid  6289] <... ioctl resumed>)        = 0
[pid  5062] umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6299] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6289] close(3 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6289] <... close resumed>)        = 0
[pid  5062] newfstatat(AT_FDCWD, "./22/file0",  <unfinished ...>
[pid  6289] mkdir("./file0", 0777 <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6289] <... mkdir resumed>)        = 0
[pid  6289] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5062] umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./22/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6290] <... mount resumed>)        = 0
[pid  5062] <... openat resumed>)       = 4
[pid  6290] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6290] chdir("./file0")            = 0
[pid  6290] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6290] close(4)                    = 0
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  6290] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6290] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6290] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6290] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6290] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6290] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6290] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6290] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6290] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5062] getdents64(4,  <unfinished ...>
[pid  6290] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6290] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6290] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6290] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6290] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6290] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[  122.228662][ T6288] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  122.236855][ T6290] XFS (loop1): Quotacheck: Done.
[pid  6290] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4,  <unfinished ...>
[pid  6299] <... munmap resumed>)       = 0
[pid  5062] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./22/file0" <unfinished ...>
[pid  6290] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  6290] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  6290] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5062] rmdir("./22" <unfinished ...>
[pid  6290] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] <... rmdir resumed>)        = 0
[pid  6290] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] mkdir("./23", 0777 <unfinished ...>
[pid  6299] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  6290] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6299] <... openat resumed>)       = 4
[pid  6290] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5062] <... mkdir resumed>)        = 0
[pid  6290] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  6299] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6290] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5062] <... openat resumed>)       = 3
[pid  6290] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6290] <... openat resumed>)       = 5
[pid  6290] sendfile(5, 4, [100] <unfinished ...>
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5062] close(3)                    = 0
[  122.285845][ T6289] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  122.310030][ T6299] loop2: detected capacity change from 0 to 32768
[  122.327671][ T6289] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6330 attached
, child_tidptr=0x55555697c750) = 6330
[pid  6330] set_robust_list(0x55555697c760, 24) = 0
[pid  6330] chdir("./23")               = 0
[pid  6330] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6299] <... ioctl resumed>)        = 0
[pid  6299] close(3 <unfinished ...>
[pid  6330] setpgid(0, 0 <unfinished ...>
[pid  6299] <... close resumed>)        = 0
[pid  6299] mkdir("./file0", 0777)      = 0
[pid  6330] <... setpgid resumed>)      = 0
[pid  6330] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6330] write(3, "1000", 4)         = 4
[pid  6299] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6330] close(3)                    = 0
[pid  6330] symlink("/dev/binderfs", "./binderfs") = 0
[  122.341807][ T6288] XFS (loop3): Ending clean mount
[pid  6330] memfd_create("syzkaller", 0) = 3
[pid  6330] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  122.376772][ T6290] syz-executor246 (6290): drop_caches: 2
[  122.383647][ T6288] XFS (loop3): Quotacheck needed: Please wait.
[  122.421860][ T6290] syz-executor246 (6290): drop_caches: 2
[  122.453772][ T6299] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  122.458826][ T6289] XFS (loop5): Ending clean mount
[pid  6290] <... sendfile resumed> => [671], 571) = 571
[pid  6290] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6290] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6290] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6290] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6290] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6290] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6290] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6290] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6290] exit_group(0)               = ?
[pid  6290] +++ exited with 0 +++
[pid  6288] <... mount resumed>)        = 0
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6290, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=38 /* 0.38 s */} ---
[pid  6288] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5063] umount2("./23", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6288] <... openat resumed>)       = 3
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6288] chdir("./file0")            = 0
[pid  5063] openat(AT_FDCWD, "./23", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6288] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5063] <... openat resumed>)       = 3
[pid  6288] <... ioctl resumed>)        = 0
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  6288] close(4)                    = 0
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6288] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  6288] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6288] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6288] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] umount2("./23/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6288] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6288] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] newfstatat(AT_FDCWD, "./23/binderfs",  <unfinished ...>
[pid  6288] ftruncate(-1, 33587195 <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6288] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6288] read(-1,  <unfinished ...>
[pid  5063] unlink("./23/binderfs" <unfinished ...>
[pid  6288] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5063] <... unlink resumed>)       = 0
[pid  6288] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[  122.469791][ T6299] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  122.479206][ T6288] XFS (loop3): Quotacheck: Done.
[  122.494296][ T6289] XFS (loop5): Quotacheck needed: Please wait.
[pid  5063] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6288] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6288] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6288] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6288] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6288] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6288] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6288] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6288] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6288] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6330] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6316] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6288] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6288] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6288] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6288] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6288] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6288] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6288] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6288] sendfile(5, 4, [100] <unfinished ...>
[pid  6289] <... mount resumed>)        = 0
[pid  6288] <... sendfile resumed> => [671], 571) = 571
[pid  6288] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6288] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6288] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6288] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6288] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6288] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6288] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6288] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6288] exit_group(0)               = ?
[pid  6289] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6288] +++ exited with 0 +++
[pid  6289] chdir("./file0" <unfinished ...>
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6288, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=32 /* 0.32 s */} ---
[pid  5065] umount2("./22", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6289] <... chdir resumed>)        = 0
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6289] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5065] openat(AT_FDCWD, "./22", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6289] <... ioctl resumed>)        = 0
[pid  5065] <... openat resumed>)       = 3
[pid  6289] close(4)                    = 0
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  6289] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[  122.545765][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  122.574073][ T6289] XFS (loop5): Quotacheck: Done.
[  122.578035][ T6288] syz-executor246 (6288): drop_caches: 2
[  122.588595][ T6288] syz-executor246 (6288): drop_caches: 2
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6289] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5065] getdents64(3,  <unfinished ...>
[pid  6289] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6289] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6289] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6289] read(-1,  <unfinished ...>
[pid  5065] umount2("./22/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6289] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6289] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6289] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5065] newfstatat(AT_FDCWD, "./22/binderfs",  <unfinished ...>
[pid  6289] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6289] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6289] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6289] read(-1,  <unfinished ...>
[pid  5065] unlink("./22/binderfs" <unfinished ...>
[pid  6289] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5065] <... unlink resumed>)       = 0
[pid  6289] write(-1, NULL, 0 <unfinished ...>
[pid  5065] umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6289] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6289] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6289] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6289] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6289] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[  122.669984][ T6299] XFS (loop2): Ending clean mount
[pid  6289] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6289] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6289] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6289] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6289] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  122.702045][ T6299] XFS (loop2): Quotacheck needed: Please wait.
[  122.714291][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6289] sendfile(5, 4, [100] <unfinished ...>
[pid  6299] <... mount resumed>)        = 0
[  122.789148][ T6289] syz-executor246 (6289): drop_caches: 2
[  122.825222][ T6299] XFS (loop2): Quotacheck: Done.
[pid  6289] <... sendfile resumed> => [671], 571) = 571
[pid  6299] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6299] chdir("./file0")            = 0
[pid  6299] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6299] close(4)                    = 0
[pid  6299] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6299] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6299] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6299] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6299] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6299] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6299] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6299] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6299] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6299] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6299] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6299] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6299] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6299] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5063] <... umount2 resumed>)      = 0
[pid  6299] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6289] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6299] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6289] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6299] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6289] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6299] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6289] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6299] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6289] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6299] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6289] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6299] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[  122.846051][ T6289] syz-executor246 (6289): drop_caches: 2
[pid  6289] ftruncate(-1, 33587199 <unfinished ...>
[pid  6299] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6289] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6299] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6289] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6299] <... openat resumed>)       = 4
[pid  6289] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6299] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6289] open(NULL, O_RDONLY <unfinished ...>
[pid  6299] <... openat resumed>)       = 5
[pid  6289] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6299] sendfile(5, 4, [100] <unfinished ...>
[pid  6289] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5063] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6289] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6289] read(-1,  <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6289] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6289] exit_group(0 <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./23/file0",  <unfinished ...>
[pid  6289] <... exit_group resumed>)   = ?
[pid  6289] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6289, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=31 /* 0.31 s */} ---
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] umount2("./23", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./23/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./23", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5063] <... openat resumed>)       = 4
[pid  5067] <... openat resumed>)       = 3
[  122.907559][ T6299] syz-executor246 (6299): drop_caches: 2
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(4,  <unfinished ...>
[pid  6299] <... sendfile resumed> => [671], 571) = 571
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] close(4 <unfinished ...>
[pid  5067] umount2("./23/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] rmdir("./23/file0" <unfinished ...>
[pid  5067] newfstatat(AT_FDCWD, "./23/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] <... rmdir resumed>)        = 0
[pid  5067] unlink("./23/binderfs" <unfinished ...>
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] <... unlink resumed>)       = 0
[pid  5067] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] close(3)                    = 0
[pid  5063] rmdir("./23")               = 0
[pid  6299] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5063] mkdir("./24", 0777 <unfinished ...>
[pid  6299] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6299] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6299] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5063] <... mkdir resumed>)        = 0
[pid  6299] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6299] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6299] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5063] <... openat resumed>)       = 3
[pid  6299] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6299] open(NULL, O_RDONLY <unfinished ...>
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6299] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6299] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5063] close(3 <unfinished ...>
[pid  6299] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5063] <... close resumed>)        = 0
[pid  6299] exit_group(0)               = ?
[pid  6299] +++ exited with 0 +++
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6299, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=32 /* 0.32 s */} ---
[pid  5064] umount2("./22", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./22", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5064] umount2("./22/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./22/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./22/binderfs")     = 0
[  122.956791][ T6299] syz-executor246 (6299): drop_caches: 2
[  122.973279][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5064] umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6342 attached
 <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 6342
[pid  6342] set_robust_list(0x55555697c760, 24) = 0
[pid  6342] chdir("./24")               = 0
[pid  6342] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6342] setpgid(0, 0)               = 0
[pid  6342] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6342] write(3, "1000", 4)         = 4
[pid  6342] close(3)                    = 0
[pid  6342] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6342] memfd_create("syzkaller", 0) = 3
[pid  6342] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  123.052936][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6330] <... write resumed>)        = 16777216
[pid  6330] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  5065] umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./22/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./22/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./22/file0")         = 0
[pid  6330] <... munmap resumed>)       = 0
[pid  5065] getdents64(3,  <unfinished ...>
[pid  6316] <... write resumed>)        = 16777216
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./22")               = 0
[pid  5065] mkdir("./23", 0777)         = 0
[pid  6316] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6343
./strace-static-x86_64: Process 6343 attached
[pid  6330] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  6343] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6330] <... openat resumed>)       = 4
[pid  6343] <... set_robust_list resumed>) = 0
[pid  6330] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6343] chdir("./23")               = 0
[pid  6316] <... munmap resumed>)       = 0
[pid  6343] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6343] setpgid(0, 0)               = 0
[pid  6343] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6343] write(3, "1000", 4)         = 4
[pid  6343] close(3)                    = 0
[pid  6343] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6330] <... ioctl resumed>)        = 0
[pid  6330] close(3)                    = 0
[pid  6330] mkdir("./file0", 0777)      = 0
[pid  6316] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  6316] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6343] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  6343] <... memfd_create resumed>) = 3
[pid  6330] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6343] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6316] <... ioctl resumed>)        = 0
[pid  5067] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6316] close(3)                    = 0
[pid  6316] mkdir("./file0", 0777)      = 0
[  123.270325][ T6330] loop0: detected capacity change from 0 to 32768
[  123.297887][ T6316] loop4: detected capacity change from 0 to 32768
[pid  6316] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./23/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./23/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  5067] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[  123.353609][ T6330] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  123.373255][ T6330] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  123.388380][ T6316] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[pid  5067] close(4)                    = 0
[pid  5064] umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./22/file0",  <unfinished ...>
[pid  5067] rmdir("./23/file0" <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./22/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6342] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5067] <... rmdir resumed>)        = 0
[pid  5064] <... openat resumed>)       = 4
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3 <unfinished ...>
[pid  5064] newfstatat(4, "",  <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[  123.419339][ T6316] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5067] rmdir("./23" <unfinished ...>
[pid  5064] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5067] <... rmdir resumed>)        = 0
[pid  5067] mkdir("./24", 0777 <unfinished ...>
[pid  5064] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./22/file0")         = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] <... mkdir resumed>)        = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./22")               = 0
[pid  5064] mkdir("./23", 0777 <unfinished ...>
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5064] <... mkdir resumed>)        = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6343] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5067] <... openat resumed>)       = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 6360
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6360 attached
 <unfinished ...>
[pid  6360] set_robust_list(0x55555697c760, 24) = 0
[pid  6360] chdir("./23")               = 0
[pid  6360] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6360] setpgid(0, 0)               = 0
[pid  6360] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
./strace-static-x86_64: Process 6361 attached
[pid  6361] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 6361
[pid  6361] <... set_robust_list resumed>) = 0
[pid  6360] write(3, "1000", 4)         = 4
[pid  6360] close(3)                    = 0
[pid  6360] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6361] chdir("./24" <unfinished ...>
[pid  6360] <... symlink resumed>)      = 0
[pid  6361] <... chdir resumed>)        = 0
[pid  6360] memfd_create("syzkaller", 0 <unfinished ...>
[  123.460270][ T6330] XFS (loop0): Ending clean mount
[  123.471865][ T6330] XFS (loop0): Quotacheck needed: Please wait.
[pid  6361] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6360] <... memfd_create resumed>) = 3
[pid  6361] setpgid(0, 0 <unfinished ...>
[pid  6360] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6361] <... setpgid resumed>)      = 0
[pid  6360] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6361] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6361] write(3, "1000", 4)         = 4
[pid  6361] close(3)                    = 0
[pid  6361] symlink("/dev/binderfs", "./binderfs") = 0
[  123.512984][ T6316] XFS (loop4): Ending clean mount
[  123.524058][ T6316] XFS (loop4): Quotacheck needed: Please wait.
[pid  6361] memfd_create("syzkaller", 0) = 3
[  123.577938][ T6316] XFS (loop4): Quotacheck: Done.
[pid  6361] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6330] <... mount resumed>)        = 0
[pid  6316] <... mount resumed>)        = 0
[pid  6316] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6316] chdir("./file0")            = 0
[pid  6316] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6316] close(4)                    = 0
[  123.602947][ T6330] XFS (loop0): Quotacheck: Done.
[pid  6316] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6330] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6316] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6316] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6330] <... openat resumed>)       = 3
[pid  6330] chdir("./file0" <unfinished ...>
[pid  6316] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6330] <... chdir resumed>)        = 0
[pid  6316] ftruncate(-1, 33587195 <unfinished ...>
[pid  6330] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6316] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6330] <... ioctl resumed>)        = 0
[pid  6316] read(-1,  <unfinished ...>
[pid  6330] close(4 <unfinished ...>
[pid  6316] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6316] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6330] <... close resumed>)        = 0
[pid  6316] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6330] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6316] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6330] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6316] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6316] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6330] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6316] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6330] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6316] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6330] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6316] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6330] ftruncate(-1, 33587195 <unfinished ...>
[pid  6316] read(-1,  <unfinished ...>
[pid  6330] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6316] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6330] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6330] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6330] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6316] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6330] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6316] write(-1, NULL, 0 <unfinished ...>
[pid  6330] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6316] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6316] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6330] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6330] read(-1,  <unfinished ...>
[pid  6316] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6330] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6330] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6330] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6330] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6316] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6330] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6316] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6330] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6316] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6330] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6316] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6330] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6316] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6316] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6330] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6330] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6330] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6316] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6330] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6316] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6330] <... openat resumed>)       = 4
[pid  6316] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6330] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6316] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6316] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6330] <... openat resumed>)       = 5
[pid  6316] <... openat resumed>)       = 5
[pid  6316] sendfile(5, 4, [100] <unfinished ...>
[pid  6330] sendfile(5, 4, [100] <unfinished ...>
[pid  6342] <... write resumed>)        = 16777216
[  123.777732][ T6330] syz-executor246 (6330): drop_caches: 2
[  123.806322][ T6316] syz-executor246 (6316): drop_caches: 2
[  123.812834][ T6316] syz-executor246 (6316): drop_caches: 2
[  123.816447][ T6330] syz-executor246 (6330): drop_caches: 2
[pid  6316] <... sendfile resumed> => [671], 571) = 571
[pid  6342] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6330] <... sendfile resumed> => [671], 571) = 571
[pid  6330] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6316] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6330] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6316] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6330] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6316] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6330] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6316] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6316] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6330] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6316] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6330] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6330] ftruncate(-1, 33587199 <unfinished ...>
[pid  6316] ftruncate(-1, 33587199 <unfinished ...>
[pid  6330] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6316] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6330] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6316] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6330] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6316] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6330] open(NULL, O_RDONLY <unfinished ...>
[pid  6316] open(NULL, O_RDONLY <unfinished ...>
[pid  6330] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6316] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6330] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6316] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6330] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6316] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6316] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6342] <... munmap resumed>)       = 0
[pid  6330] read(-1,  <unfinished ...>
[pid  6316] exit_group(0 <unfinished ...>
[pid  6330] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6316] <... exit_group resumed>)   = ?
[pid  6342] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6330] exit_group(0 <unfinished ...>
[pid  6316] +++ exited with 0 +++
[pid  6342] <... openat resumed>)       = 4
[pid  6342] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6330] <... exit_group resumed>)   = ?
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6316, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=40 /* 0.40 s */} ---
[pid  6330] +++ exited with 0 +++
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6330, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=35 /* 0.35 s */} ---
[pid  5062] umount2("./23", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./23", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] umount2("./23", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] openat(AT_FDCWD, "./23", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] umount2("./23/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./23/binderfs",  <unfinished ...>
[pid  6360] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5062] unlink("./23/binderfs" <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] <... unlink resumed>)       = 0
[pid  5066] umount2("./23/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6361] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6342] <... ioctl resumed>)        = 0
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./23/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] unlink("./23/binderfs")     = 0
[pid  5066] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6342] close(3)                    = 0
[pid  6342] mkdir("./file0", 0777)      = 0
[  123.904517][ T6342] loop1: detected capacity change from 0 to 32768
[  123.925064][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  123.941086][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6342] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6343] <... write resumed>)        = 16777216
[  124.015171][ T6342] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  124.033736][ T6342] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6343] munmap(0x7f6d986f1000, 138412032) = 0
[pid  6343] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid  6343] ioctl(4, LOOP_SET_FD, 3)    = 0
[  124.095897][ T6342] XFS (loop1): Ending clean mount
[  124.105092][ T6342] XFS (loop1): Quotacheck needed: Please wait.
[  124.123242][ T6343] loop3: detected capacity change from 0 to 32768
[pid  6343] close(3)                    = 0
[pid  6343] mkdir("./file0", 0777)      = 0
[pid  6343] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6342] <... mount resumed>)        = 0
[pid  6342] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[  124.182068][ T6342] XFS (loop1): Quotacheck: Done.
[pid  6342] chdir("./file0")            = 0
[pid  6342] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6342] close(4)                    = 0
[pid  6342] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6342] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5062] <... umount2 resumed>)      = 0
[pid  6342] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5062] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6342] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6342] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6342] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5062] newfstatat(AT_FDCWD, "./23/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./23/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6342] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5062] <... openat resumed>)       = 4
[pid  6342] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  6342] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6342] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] getdents64(4,  <unfinished ...>
[pid  6342] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  6342] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5062] getdents64(4,  <unfinished ...>
[pid  6342] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5062] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  6342] read(-1,  <unfinished ...>
[pid  5062] close(4 <unfinished ...>
[pid  6342] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5062] <... close resumed>)        = 0
[pid  6342] write(-1, NULL, 0 <unfinished ...>
[pid  5062] rmdir("./23/file0" <unfinished ...>
[pid  6342] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5062] <... rmdir resumed>)        = 0
[pid  6342] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5062] getdents64(3,  <unfinished ...>
[pid  6342] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6342] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5062] close(3 <unfinished ...>
[pid  6342] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  6342] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6342] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5062] rmdir("./23" <unfinished ...>
[pid  6342] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6342] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  6342] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6342] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] mkdir("./24", 0777 <unfinished ...>
[pid  6342] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6342] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5062] <... mkdir resumed>)        = 0
[pid  6342] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6360] <... write resumed>)        = 16777216
[pid  6342] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  6342] <... openat resumed>)       = 4
[pid  6342] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  124.252098][ T6343] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  124.260724][ T6343] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6342] sendfile(5, 4, [100] <unfinished ...>
[pid  6360] munmap(0x7f6d986f1000, 138412032) = 0
[pid  5062] <... openat resumed>)       = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3 <unfinished ...>
[pid  6360] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6360] <... openat resumed>)       = 4
[pid  6360] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 6378
./strace-static-x86_64: Process 6378 attached
[pid  6360] <... ioctl resumed>)        = 0
[pid  6378] set_robust_list(0x55555697c760, 24) = 0
[pid  6378] chdir("./24")               = 0
[pid  6378] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6378] setpgid(0, 0 <unfinished ...>
[pid  6360] close(3 <unfinished ...>
[pid  6378] <... setpgid resumed>)      = 0
[pid  6360] <... close resumed>)        = 0
[pid  6378] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6360] mkdir("./file0", 0777 <unfinished ...>
[pid  6378] <... openat resumed>)       = 3
[pid  6378] write(3, "1000", 4 <unfinished ...>
[pid  6360] <... mkdir resumed>)        = 0
[  124.331189][ T6342] syz-executor246 (6342): drop_caches: 2
[  124.345477][ T6360] loop2: detected capacity change from 0 to 32768
[pid  6360] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6378] <... write resumed>)        = 4
[pid  6378] close(3)                    = 0
[pid  6378] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6378] memfd_create("syzkaller", 0) = 3
[pid  6378] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6361] <... write resumed>)        = 16777216
[pid  6342] <... sendfile resumed> => [671], 571) = 571
[pid  6361] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6342] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6342] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[  124.390413][ T6342] syz-executor246 (6342): drop_caches: 2
[  124.421004][ T6343] XFS (loop3): Ending clean mount
[pid  6342] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6342] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6342] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6342] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6342] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6342] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6342] exit_group(0)               = ?
[pid  6342] +++ exited with 0 +++
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6342, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=31 /* 0.31 s */} ---
[pid  5066] <... umount2 resumed>)      = 0
[pid  5063] umount2("./24", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./24/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./24/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] unlink("./24/binderfs")     = 0
[pid  5063] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6361] <... munmap resumed>)       = 0
[pid  5066] newfstatat(AT_FDCWD, "./23/file0",  <unfinished ...>
[pid  6361] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6361] <... openat resumed>)       = 4
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[  124.458382][ T6360] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  124.462498][ T6343] XFS (loop3): Quotacheck needed: Please wait.
[  124.477933][ T6360] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  124.488005][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5066] openat(AT_FDCWD, "./23/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6361] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5066] <... openat resumed>)       = 4
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./23/file0" <unfinished ...>
[pid  6361] <... ioctl resumed>)        = 0
[pid  6361] close(3 <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  6361] <... close resumed>)        = 0
[pid  5066] getdents64(3,  <unfinished ...>
[pid  6361] mkdir("./file0", 0777 <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6361] <... mkdir resumed>)        = 0
[pid  5066] close(3)                    = 0
[pid  6361] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5066] rmdir("./23")               = 0
[pid  5066] mkdir("./24", 0777)         = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  6343] <... mount resumed>)        = 0
[pid  5066] <... openat resumed>)       = 3
[pid  5066] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6343] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5066] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5066] close(3)                    = 0
[pid  6343] <... openat resumed>)       = 3
[pid  6343] chdir("./file0")            = 0
[pid  6343] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6343] close(4)                    = 0
[pid  6343] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[  124.507075][ T6361] loop5: detected capacity change from 0 to 32768
[  124.512927][ T6343] XFS (loop3): Quotacheck: Done.
[pid  6343] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6343] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6343] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6343] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6343] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6343] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6343] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6343] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6343] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT./strace-static-x86_64: Process 6392 attached
 <unfinished ...>
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 6392
[pid  6343] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6343] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6343] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6343] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6343] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6392] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6343] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6343] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6343] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6392] <... set_robust_list resumed>) = 0
[pid  6343] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6392] chdir("./24" <unfinished ...>
[pid  6343] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6343] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6343] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6343] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6392] <... chdir resumed>)        = 0
[pid  6343] <... openat resumed>)       = 4
[pid  6343] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  124.559877][ T6361] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  124.571315][ T6360] XFS (loop2): Ending clean mount
[pid  6343] sendfile(5, 4, [100] <unfinished ...>
[pid  6392] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6392] setpgid(0, 0)               = 0
[pid  6392] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6392] write(3, "1000", 4)         = 4
[pid  6392] close(3)                    = 0
[pid  6392] symlink("/dev/binderfs", "./binderfs") = 0
[  124.601931][ T6360] XFS (loop2): Quotacheck needed: Please wait.
[  124.614311][ T6361] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  124.634099][ T6343] syz-executor246 (6343): drop_caches: 2
[pid  6392] memfd_create("syzkaller", 0) = 3
[pid  6392] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6360] <... mount resumed>)        = 0
[pid  6360] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[  124.695419][ T6360] XFS (loop2): Quotacheck: Done.
[  124.700275][ T6343] syz-executor246 (6343): drop_caches: 2
[pid  6360] chdir("./file0")            = 0
[pid  6378] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6360] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6360] close(4)                    = 0
[pid  6360] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6343] <... sendfile resumed> => [671], 571) = 571
[pid  6360] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6343] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6360] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6343] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6360] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6343] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6360] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6343] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6360] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6343] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6360] ftruncate(-1, 33587195 <unfinished ...>
[pid  6343] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6360] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6343] ftruncate(-1, 33587199 <unfinished ...>
[pid  6360] read(-1,  <unfinished ...>
[pid  6343] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6360] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6343] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6360] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6343] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6360] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6343] open(NULL, O_RDONLY <unfinished ...>
[pid  6360] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6343] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6360] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6343] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6360] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6343] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6360] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6343] read(-1,  <unfinished ...>
[pid  6360] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6343] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6360] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6343] exit_group(0 <unfinished ...>
[pid  6360] read(-1,  <unfinished ...>
[pid  6343] <... exit_group resumed>)   = ?
[pid  6360] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6343] +++ exited with 0 +++
[pid  6360] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6360] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6360] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[  124.736473][ T6361] XFS (loop5): Ending clean mount
[  124.754384][ T6361] XFS (loop5): Quotacheck needed: Please wait.
[pid  6360] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6343, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=35 /* 0.35 s */} ---
[pid  6360] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6360] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6360] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6360] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5065] umount2("./23", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6360] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./23", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6360] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5065] <... openat resumed>)       = 3
[pid  6360] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  6360] <... openat resumed>)       = 5
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6360] sendfile(5, 4, [100] <unfinished ...>
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] umount2("./23/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./23/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] unlink("./23/binderfs")     = 0
[pid  5065] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... umount2 resumed>)      = 0
[pid  5063] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  124.807428][ T6360] syz-executor246 (6360): drop_caches: 2
[  124.841777][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6361] <... mount resumed>)        = 0
[pid  5063] newfstatat(AT_FDCWD, "./24/file0",  <unfinished ...>
[pid  6361] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6360] <... sendfile resumed> => [671], 571) = 571
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6361] <... openat resumed>)       = 3
[pid  5063] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6361] chdir("./file0")            = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6361] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6361] <... ioctl resumed>)        = 0
[pid  5063] <... openat resumed>)       = 4
[pid  6361] close(4 <unfinished ...>
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  6361] <... close resumed>)        = 0
[pid  6361] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6361] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6361] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6361] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6361] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6361] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6361] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5063] getdents64(4,  <unfinished ...>
[pid  6361] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6361] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6361] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6361] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6361] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[  124.857180][ T6361] XFS (loop5): Quotacheck: Done.
[  124.865989][ T6360] syz-executor246 (6360): drop_caches: 2
[pid  6360] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6361] write(-1, NULL, 0 <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4 <unfinished ...>
[pid  6361] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6360] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5063] <... close resumed>)        = 0
[pid  5063] rmdir("./24/file0" <unfinished ...>
[pid  6361] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6360] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  6361] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6360] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6361] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6360] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  6360] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6360] ftruncate(-1, 33587199 <unfinished ...>
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6360] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6360] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5063] close(3 <unfinished ...>
[pid  6361] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6360] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5063] <... close resumed>)        = 0
[pid  5063] rmdir("./24" <unfinished ...>
[pid  6360] open(NULL, O_RDONLY <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  6361] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6360] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] mkdir("./25", 0777 <unfinished ...>
[pid  6361] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5063] <... mkdir resumed>)        = 0
[pid  6361] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6360] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6361] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6360] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5063] <... openat resumed>)       = 3
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6361] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6360] read(-1,  <unfinished ...>
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6361] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6360] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5063] close(3 <unfinished ...>
[pid  6361] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6360] exit_group(0 <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  6361] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6360] <... exit_group resumed>)   = ?
[pid  6361] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6360] +++ exited with 0 +++
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6361] <... openat resumed>)       = 4
[pid  6361] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY./strace-static-x86_64: Process 6396 attached
) = 5
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6360, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=40 /* 0.40 s */} ---
[pid  6396] set_robust_list(0x55555697c760, 24) = 0
[pid  6361] sendfile(5, 4, [100] <unfinished ...>
[pid  5064] umount2("./23", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 6396
[pid  6396] chdir("./25" <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6396] <... chdir resumed>)        = 0
[pid  5064] openat(AT_FDCWD, "./23", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6396] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5064] <... openat resumed>)       = 3
[pid  6396] <... prctl resumed>)        = 0
[pid  6392] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6396] setpgid(0, 0 <unfinished ...>
[pid  5064] getdents64(3,  <unfinished ...>
[pid  6396] <... setpgid resumed>)      = 0
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./23/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6396] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./23/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6396] write(3, "1000", 4 <unfinished ...>
[pid  5064] unlink("./23/binderfs" <unfinished ...>
[pid  6396] <... write resumed>)        = 4
[pid  5064] <... unlink resumed>)       = 0
[pid  6396] close(3)                    = 0
[pid  5064] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6396] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6361] <... sendfile resumed> => [671], 571) = 571
[pid  6396] memfd_create("syzkaller", 0) = 3
[pid  6396] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6361] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6361] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6361] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6361] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6361] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6361] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6378] <... write resumed>)        = 16777216
[pid  6361] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6361] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[  125.055195][ T6361] syz-executor246 (6361): drop_caches: 2
[  125.083494][ T6361] syz-executor246 (6361): drop_caches: 2
[  125.089486][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6361] exit_group(0)               = ?
[pid  6361] +++ exited with 0 +++
[pid  6378] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6361, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=35 /* 0.35 s */} ---
[pid  5067] umount2("./24", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./24/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./24/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./24/binderfs")     = 0
[pid  5067] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6378] <... munmap resumed>)       = 0
[pid  6378] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  6378] <... openat resumed>)       = 4
[pid  6378] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5065] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6378] <... ioctl resumed>)        = 0
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./23/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./23/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./23/file0")         = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[  125.224724][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  125.243732][ T6378] loop0: detected capacity change from 0 to 32768
[pid  5065] close(3)                    = 0
[pid  6378] close(3)                    = 0
[pid  5065] rmdir("./23" <unfinished ...>
[pid  6378] mkdir("./file0", 0777 <unfinished ...>
[pid  5065] <... rmdir resumed>)        = 0
[pid  6378] <... mkdir resumed>)        = 0
[pid  5065] mkdir("./24", 0777 <unfinished ...>
[pid  6378] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5065] <... mkdir resumed>)        = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6399 attached
, child_tidptr=0x55555697c750) = 6399
[pid  6399] set_robust_list(0x55555697c760, 24) = 0
[pid  6399] chdir("./24")               = 0
[pid  6399] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6399] setpgid(0, 0)               = 0
[pid  6399] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6399] write(3, "1000", 4)         = 4
[pid  6399] close(3)                    = 0
[pid  6399] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6399] memfd_create("syzkaller", 0) = 3
[pid  6399] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  125.349447][ T6378] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  125.375663][ T6378] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5064] <... umount2 resumed>)      = 0
[pid  5064] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./23/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./23/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./23/file0")         = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./23")               = 0
[pid  5064] mkdir("./24", 0777)         = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6406 attached
, child_tidptr=0x55555697c750) = 6406
[pid  6406] set_robust_list(0x55555697c760, 24) = 0
[pid  6399] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6406] chdir("./24" <unfinished ...>
[pid  6396] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6406] <... chdir resumed>)        = 0
[pid  6406] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6406] setpgid(0, 0)               = 0
[pid  6406] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6406] write(3, "1000", 4)         = 4
[pid  6406] close(3)                    = 0
[pid  6406] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6406] memfd_create("syzkaller", 0) = 3
[pid  6406] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  125.630100][ T6378] XFS (loop0): Ending clean mount
[  125.641507][ T6378] XFS (loop0): Quotacheck needed: Please wait.
[pid  6392] <... write resumed>)        = 16777216
[pid  6392] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5067] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./24/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4 <unfinished ...>
[pid  6392] <... munmap resumed>)       = 0
[pid  5067] <... close resumed>)        = 0
[pid  5067] rmdir("./24/file0")         = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./24")               = 0
[pid  6378] <... mount resumed>)        = 0
[pid  5067] mkdir("./25", 0777 <unfinished ...>
[pid  6378] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5067] <... mkdir resumed>)        = 0
[pid  6378] <... openat resumed>)       = 3
[pid  6378] chdir("./file0" <unfinished ...>
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  6392] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  6378] <... chdir resumed>)        = 0
[pid  6378] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6392] <... openat resumed>)       = 4
[pid  6378] <... ioctl resumed>)        = 0
[  125.721166][ T6378] XFS (loop0): Quotacheck: Done.
[pid  6378] close(4 <unfinished ...>
[pid  6392] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6378] <... close resumed>)        = 0
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6378] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6378] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6378] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6378] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6378] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6378] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5067] close(3 <unfinished ...>
[pid  6378] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6378] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  6378] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6378] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6378] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6378] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6392] <... ioctl resumed>)        = 0
[pid  6378] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6378] write(-1, NULL, 0./strace-static-x86_64: Process 6407 attached
 <unfinished ...>
[pid  6392] close(3 <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 6407
[pid  6407] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6392] <... close resumed>)        = 0
[pid  6407] <... set_robust_list resumed>) = 0
[pid  6392] mkdir("./file0", 0777 <unfinished ...>
[pid  6378] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6407] chdir("./25")               = 0
[pid  6407] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6392] <... mkdir resumed>)        = 0
[pid  6378] write(-1, NULL, 0 <unfinished ...>
[pid  6407] setpgid(0, 0)               = 0
[pid  6407] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6378] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6407] <... openat resumed>)       = 3
[pid  6378] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6392] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6378] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6378] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6407] write(3, "1000", 4 <unfinished ...>
[pid  6378] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6378] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6407] <... write resumed>)        = 4
[pid  6407] close(3)                    = 0
[pid  6378] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6407] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6378] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6407] <... symlink resumed>)      = 0
[pid  6378] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[  125.763722][ T6392] loop4: detected capacity change from 0 to 32768
[pid  6407] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6378] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6407] <... memfd_create resumed>) = 3
[pid  6399] <... write resumed>)        = 16777216
[pid  6378] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6407] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6378] <... openat resumed>)       = 4
[pid  6378] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6407] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6378] <... openat resumed>)       = 5
[  125.818701][ T6392] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[pid  6378] sendfile(5, 4, [100] <unfinished ...>
[pid  6399] munmap(0x7f6d986f1000, 138412032) = 0
[  125.863624][ T6392] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  125.865737][ T6378] syz-executor246 (6378): drop_caches: 2
[pid  6399] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid  6399] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6407] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6378] <... sendfile resumed> => [671], 571) = 571
[pid  6378] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6399] close(3)                    = 0
[pid  6399] mkdir("./file0", 0777)      = 0
[pid  6399] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6378] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[  125.932635][ T6378] syz-executor246 (6378): drop_caches: 2
[  125.966268][ T6399] loop3: detected capacity change from 0 to 32768
[pid  6378] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6378] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6406] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6378] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6378] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6378] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6378] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6378] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6378] exit_group(0)               = ?
[pid  6378] +++ exited with 0 +++
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6378, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=34 /* 0.34 s */} ---
[pid  5062] umount2("./24", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[  126.035210][ T6399] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  126.064754][ T6392] XFS (loop4): Ending clean mount
[  126.071835][ T6399] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./24/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  126.082977][ T6392] XFS (loop4): Quotacheck needed: Please wait.
[pid  5062] newfstatat(AT_FDCWD, "./24/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./24/binderfs")     = 0
[  126.143275][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  126.144440][ T6392] XFS (loop4): Quotacheck: Done.
[pid  5062] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6396] <... write resumed>)        = 16777216
[pid  6406] <... write resumed>)        = 16777216
[pid  6392] <... mount resumed>)        = 0
[pid  6406] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6392] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6396] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6406] <... munmap resumed>)       = 0
[pid  6392] <... openat resumed>)       = 3
[pid  6406] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid  6392] chdir("./file0" <unfinished ...>
[  126.228549][ T6399] XFS (loop3): Ending clean mount
[pid  6406] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6392] <... chdir resumed>)        = 0
[pid  6392] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6392] close(4 <unfinished ...>
[pid  6406] <... ioctl resumed>)        = 0
[pid  6392] <... close resumed>)        = 0
[pid  6406] close(3)                    = 0
[pid  6392] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6406] mkdir("./file0", 0777 <unfinished ...>
[pid  6392] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6406] <... mkdir resumed>)        = 0
[pid  6392] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6406] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6392] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6392] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6396] <... munmap resumed>)       = 0
[pid  6392] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6392] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6392] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6392] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6392] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6392] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6392] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6392] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6392] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6392] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[  126.257074][ T6406] loop2: detected capacity change from 0 to 32768
[  126.277290][ T6399] XFS (loop3): Quotacheck needed: Please wait.
[pid  6396] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6392] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6392] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6396] <... openat resumed>)       = 4
[pid  6392] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6392] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6392] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6396] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6392] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6392] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6392] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6392] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  126.327220][ T6406] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  126.341892][ T6396] loop1: detected capacity change from 0 to 32768
[pid  6392] sendfile(5, 4, [100] <unfinished ...>
[pid  6407] <... write resumed>)        = 16777216
[pid  6396] <... ioctl resumed>)        = 0
[pid  6396] close(3)                    = 0
[pid  6396] mkdir("./file0", 0777)      = 0
[pid  6396] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[  126.373218][ T6406] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  126.375067][ T6399] XFS (loop3): Quotacheck: Done.
[  126.400180][ T6392] syz-executor246 (6392): drop_caches: 2
[pid  6407] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6399] <... mount resumed>)        = 0
[pid  5062] <... umount2 resumed>)      = 0
[pid  6407] <... munmap resumed>)       = 0
[pid  6399] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6392] <... sendfile resumed> => [671], 571) = 571
[pid  5062] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6407] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  6399] <... openat resumed>)       = 3
[pid  6392] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6399] chdir("./file0" <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./24/file0",  <unfinished ...>
[pid  6407] <... openat resumed>)       = 4
[pid  6399] <... chdir resumed>)        = 0
[pid  6392] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6399] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6392] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5062] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6399] <... ioctl resumed>)        = 0
[pid  6392] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6407] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6392] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6392] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] <... openat resumed>)       = 4
[pid  6392] ftruncate(-1, 33587199 <unfinished ...>
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[  126.438137][ T6392] syz-executor246 (6392): drop_caches: 2
[  126.444348][ T6396] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  126.453266][ T6396] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  126.466988][ T6407] loop5: detected capacity change from 0 to 32768
[  126.469529][ T6406] XFS (loop2): Ending clean mount
[pid  5062] getdents64(4,  <unfinished ...>
[pid  6407] <... ioctl resumed>)        = 0
[pid  6399] close(4 <unfinished ...>
[pid  6392] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6392] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6399] <... close resumed>)        = 0
[pid  6392] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./24/file0" <unfinished ...>
[pid  6392] open(NULL, O_RDONLY <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  6392] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] getdents64(3,  <unfinished ...>
[pid  6399] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6392] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6392] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6392] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5062] close(3)                    = 0
[pid  6392] exit_group(0 <unfinished ...>
[pid  5062] rmdir("./24" <unfinished ...>
[pid  6399] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6392] <... exit_group resumed>)   = ?
[pid  5062] <... rmdir resumed>)        = 0
[pid  5062] mkdir("./25", 0777)         = 0
[pid  6399] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6392] +++ exited with 0 +++
[pid  6399] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6392, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=23 /* 0.23 s */} ---
[pid  6399] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  6407] close(3 <unfinished ...>
[pid  6399] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] <... openat resumed>)       = 3
[pid  6407] <... close resumed>)        = 0
[pid  6399] ftruncate(-1, 33587195 <unfinished ...>
[pid  6407] mkdir("./file0", 0777 <unfinished ...>
[pid  6399] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6407] <... mkdir resumed>)        = 0
[pid  6399] read(-1,  <unfinished ...>
[pid  5066] umount2("./24", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6407] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6399] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5062] close(3 <unfinished ...>
[pid  5066] openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6441
./strace-static-x86_64: Process 6441 attached
[pid  6441] set_robust_list(0x55555697c760, 24) = 0
[pid  6441] chdir("./25" <unfinished ...>
[pid  6399] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  6399] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  6399] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6399] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5066] getdents64(3,  <unfinished ...>
[pid  6399] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6441] <... chdir resumed>)        = 0
[pid  6399] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5066] umount2("./24/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6399] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6399] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5066] newfstatat(AT_FDCWD, "./24/binderfs",  <unfinished ...>
[pid  6399] read(-1,  <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6441] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6399] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5066] unlink("./24/binderfs" <unfinished ...>
[pid  6441] <... prctl resumed>)        = 0
[pid  6399] write(-1, NULL, 0 <unfinished ...>
[pid  5066] <... unlink resumed>)       = 0
[pid  6441] setpgid(0, 0 <unfinished ...>
[pid  6399] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[  126.489320][ T6406] XFS (loop2): Quotacheck needed: Please wait.
[pid  5066] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6441] <... setpgid resumed>)      = 0
[pid  6399] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6441] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6399] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6441] <... openat resumed>)       = 3
[pid  6399] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6441] write(3, "1000", 4 <unfinished ...>
[pid  6399] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6441] <... write resumed>)        = 4
[pid  6399] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6441] close(3 <unfinished ...>
[pid  6399] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6441] <... close resumed>)        = 0
[pid  6399] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6441] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6399] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6441] <... symlink resumed>)      = 0
[pid  6441] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6406] <... mount resumed>)        = 0
[pid  6399] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6441] <... memfd_create resumed>) = 3
[pid  6406] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6399] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6441] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6406] <... openat resumed>)       = 3
[pid  6399] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6441] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6399] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6406] chdir("./file0" <unfinished ...>
[pid  6399] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6399] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6406] <... chdir resumed>)        = 0
[pid  6399] <... openat resumed>)       = 4
[pid  6406] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6399] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6406] <... ioctl resumed>)        = 0
[pid  6406] close(4 <unfinished ...>
[pid  6399] <... openat resumed>)       = 5
[pid  6406] <... close resumed>)        = 0
[pid  6399] sendfile(5, 4, [100] <unfinished ...>
[pid  6406] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6406] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6406] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6406] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[  126.547920][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  126.560748][ T6407] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  126.564533][ T6406] XFS (loop2): Quotacheck: Done.
[  126.571493][ T6407] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  126.586636][ T6396] XFS (loop1): Ending clean mount
[pid  6406] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6406] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6406] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6406] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6406] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6406] read(-1,  <unfinished ...>
[pid  6399] <... sendfile resumed> => [671], 571) = 571
[pid  6406] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6406] write(-1, NULL, 0 <unfinished ...>
[pid  6399] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6406] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6399] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6406] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6399] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6406] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6399] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6406] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6399] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6406] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6399] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6406] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6399] ftruncate(-1, 33587199 <unfinished ...>
[pid  6406] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6399] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6399] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6406] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6399] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6399] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6406] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6399] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6406] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6399] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6399] read(-1,  <unfinished ...>
[pid  6406] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6399] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6406] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6399] exit_group(0 <unfinished ...>
[pid  6406] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6399] <... exit_group resumed>)   = ?
[pid  6406] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[  126.606462][ T6396] XFS (loop1): Quotacheck needed: Please wait.
[  126.620683][ T6399] syz-executor246 (6399): drop_caches: 2
[  126.639781][ T6399] syz-executor246 (6399): drop_caches: 2
[pid  6406] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6399] +++ exited with 0 +++
[pid  6406] <... openat resumed>)       = 4
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6399, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=30 /* 0.30 s */} ---
[pid  6406] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5065] umount2("./24", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6406] sendfile(5, 4, [100] <unfinished ...>
[pid  5065] umount2("./24/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./24/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] unlink("./24/binderfs")     = 0
[pid  5065] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6396] <... mount resumed>)        = 0
[pid  6396] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6396] chdir("./file0")            = 0
[pid  6396] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6396] close(4)                    = 0
[pid  6406] <... sendfile resumed> => [671], 571) = 571
[pid  6396] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6396] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6406] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6396] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6406] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[  126.687618][ T6396] XFS (loop1): Quotacheck: Done.
[  126.699851][ T6406] syz-executor246 (6406): drop_caches: 2
[  126.707238][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  126.719469][ T6406] syz-executor246 (6406): drop_caches: 2
[  126.728641][ T6407] XFS (loop5): Ending clean mount
[pid  6396] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6406] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6396] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6396] ftruncate(-1, 33587195 <unfinished ...>
[pid  6406] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6396] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6396] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6396] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6396] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6406] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6396] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6406] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6396] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6406] ftruncate(-1, 33587199 <unfinished ...>
[pid  6396] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6406] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6396] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6406] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6396] read(-1,  <unfinished ...>
[pid  6406] open(NULL, O_RDONLY <unfinished ...>
[pid  6396] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6406] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6396] write(-1, NULL, 0 <unfinished ...>
[pid  6406] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6396] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6406] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6396] write(-1, NULL, 0 <unfinished ...>
[pid  6406] read(-1,  <unfinished ...>
[pid  6396] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6406] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6396] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6406] exit_group(0 <unfinished ...>
[pid  6396] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6396] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6396] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6406] <... exit_group resumed>)   = ?
[pid  6396] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6396] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6396] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6406] +++ exited with 0 +++
[pid  6396] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6406, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=38 /* 0.38 s */} ---
[pid  6396] <... openat resumed>)       = 4
[  126.748573][ T6407] XFS (loop5): Quotacheck needed: Please wait.
[pid  6396] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5064] umount2("./24", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6396] <... openat resumed>)       = 5
[pid  5064] getdents64(3,  <unfinished ...>
[pid  6396] sendfile(5, 4, [100] <unfinished ...>
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./24/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./24/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./24/binderfs")     = 0
[  126.828660][ T6396] syz-executor246 (6396): drop_caches: 2
[  126.847581][ T6407] XFS (loop5): Quotacheck: Done.
[  126.864365][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5064] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6407] <... mount resumed>)        = 0
[pid  6407] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6407] chdir("./file0")            = 0
[pid  6407] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6396] <... sendfile resumed> => [671], 571) = 571
[pid  6407] <... ioctl resumed>)        = 0
[pid  6396] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6407] close(4 <unfinished ...>
[pid  6396] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6441] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6407] <... close resumed>)        = 0
[pid  6396] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6407] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6396] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6407] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6396] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6407] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6396] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6407] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6396] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6407] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6396] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6407] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6407] ftruncate(-1, 33587195 <unfinished ...>
[pid  6396] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6407] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6407] read(-1,  <unfinished ...>
[pid  6396] open(NULL, O_RDONLY <unfinished ...>
[pid  6407] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6396] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6407] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6396] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6407] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6396] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6407] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6396] read(-1,  <unfinished ...>
[pid  6407] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6396] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6407] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6407] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[  126.882807][ T6396] syz-executor246 (6396): drop_caches: 2
[pid  6407] read(-1,  <unfinished ...>
[pid  6396] exit_group(0 <unfinished ...>
[pid  6407] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6407] write(-1, NULL, 0 <unfinished ...>
[pid  6396] <... exit_group resumed>)   = ?
[pid  6407] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6396] +++ exited with 0 +++
[pid  6407] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6396, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=32 /* 0.32 s */} ---
[pid  6407] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5063] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  6407] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6407] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5063] <... restart_syscall resumed>) = 0
[pid  6407] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6407] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5063] umount2("./25", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./25/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6407] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6407] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5063] newfstatat(AT_FDCWD, "./25/binderfs",  <unfinished ...>
[pid  6407] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6407] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] unlink("./25/binderfs" <unfinished ...>
[pid  6407] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5063] <... unlink resumed>)       = 0
[pid  6407] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5063] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6407] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6407] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6407] sendfile(5, 4, [100] <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  6407] <... sendfile resumed> => [671], 571) = 571
[  126.961184][ T6407] syz-executor246 (6407): drop_caches: 2
[  126.967554][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  127.000347][ T6407] syz-executor246 (6407): drop_caches: 2
[pid  5066] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6407] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6407] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5066] newfstatat(AT_FDCWD, "./24/file0",  <unfinished ...>
[pid  6407] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6407] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6407] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6407] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6407] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6407] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6407] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6407] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6407] exit_group(0)               = ?
[pid  6407] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6407, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=32 /* 0.32 s */} ---
[pid  5066] openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] umount2("./25", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./25/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./25/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] newfstatat(4, "",  <unfinished ...>
[pid  5067] unlink("./25/binderfs" <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] <... unlink resumed>)       = 0
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5067] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./24/file0")         = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./24")               = 0
[pid  5066] mkdir("./25", 0777)         = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] close(3)                    = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6449 attached
, child_tidptr=0x55555697c750) = 6449
[pid  6449] set_robust_list(0x55555697c760, 24) = 0
[pid  6449] chdir("./25")               = 0
[pid  6449] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[  127.106604][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6449] setpgid(0, 0)               = 0
[pid  5065] <... umount2 resumed>)      = 0
[pid  5065] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6449] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6449] <... openat resumed>)       = 3
[pid  5065] newfstatat(AT_FDCWD, "./24/file0",  <unfinished ...>
[pid  6449] write(3, "1000", 4 <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6449] <... write resumed>)        = 4
[pid  6449] close(3 <unfinished ...>
[pid  5065] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6449] <... close resumed>)        = 0
[pid  6449] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "",  <unfinished ...>
[pid  6449] <... symlink resumed>)      = 0
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4,  <unfinished ...>
[pid  6449] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5065] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  6449] <... memfd_create resumed>) = 3
[pid  5065] rmdir("./24/file0")         = 0
[pid  6449] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./24")               = 0
[pid  5065] mkdir("./25", 0777)         = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5064] <... umount2 resumed>)      = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5064] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./24/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./24/file0" <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 6450
./strace-static-x86_64: Process 6450 attached
[pid  5064] <... rmdir resumed>)        = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./24")               = 0
[pid  5064] mkdir("./25", 0777 <unfinished ...>
[pid  6450] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5064] <... mkdir resumed>)        = 0
[pid  6450] <... set_robust_list resumed>) = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6450] chdir("./25")               = 0
./strace-static-x86_64: Process 6451 attached
[pid  6450] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5063] <... umount2 resumed>)      = 0
[pid  6451] set_robust_list(0x55555697c760, 24) = 0
[pid  6451] chdir("./25" <unfinished ...>
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 6451
[pid  6451] <... chdir resumed>)        = 0
[pid  6451] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6451] setpgid(0, 0)               = 0
[pid  6451] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6451] write(3, "1000", 4)         = 4
[pid  6451] close(3)                    = 0
[pid  6451] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6451] memfd_create("syzkaller", 0) = 3
[pid  6451] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6450] <... prctl resumed>)        = 0
[pid  5063] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6450] setpgid(0, 0 <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./25/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6450] <... setpgid resumed>)      = 0
[pid  6450] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5063] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6450] <... openat resumed>)       = 3
[pid  6450] write(3, "1000", 4 <unfinished ...>
[pid  5063] getdents64(4,  <unfinished ...>
[pid  6450] <... write resumed>)        = 4
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4)                    = 0
[pid  6450] close(3 <unfinished ...>
[pid  5063] rmdir("./25/file0" <unfinished ...>
[pid  6450] <... close resumed>)        = 0
[pid  5063] <... rmdir resumed>)        = 0
[pid  6450] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6450] <... symlink resumed>)      = 0
[pid  5063] close(3)                    = 0
[pid  5063] rmdir("./25")               = 0
[pid  6450] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5063] mkdir("./26", 0777)         = 0
[pid  6450] <... memfd_create resumed>) = 3
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6450] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6441] <... write resumed>)        = 16777216
[pid  5063] <... openat resumed>)       = 3
[pid  5063] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5063] close(3)                    = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6450] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6441] munmap(0x7f6d986f1000, 138412032./strace-static-x86_64: Process 6452 attached
 <unfinished ...>
[pid  6452] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 6452
[pid  6452] <... set_robust_list resumed>) = 0
[pid  6452] chdir("./26")               = 0
[pid  6452] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6452] setpgid(0, 0)               = 0
[pid  6452] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6452] write(3, "1000", 4)         = 4
[pid  6452] close(3)                    = 0
[pid  6452] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6452] memfd_create("syzkaller", 0) = 3
[pid  6452] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6441] <... munmap resumed>)       = 0
[pid  6441] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  6441] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6441] close(3 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  6441] <... close resumed>)        = 0
[pid  6441] mkdir("./file0", 0777)      = 0
[pid  6441] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5067] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./25/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[  127.534986][ T6441] loop0: detected capacity change from 0 to 32768
[pid  5067] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./25/file0")         = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./25")               = 0
[pid  5067] mkdir("./26", 0777)         = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6449] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 6458
./strace-static-x86_64: Process 6458 attached
[pid  6458] set_robust_list(0x55555697c760, 24) = 0
[pid  6458] chdir("./26")               = 0
[pid  6458] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6458] setpgid(0, 0)               = 0
[pid  6458] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6458] write(3, "1000", 4)         = 4
[pid  6458] close(3)                    = 0
[pid  6458] symlink("/dev/binderfs", "./binderfs") = 0
[  127.603453][ T6441] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  127.619341][ T6441] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6458] memfd_create("syzkaller", 0) = 3
[pid  6458] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  127.726386][ T6441] XFS (loop0): Ending clean mount
[pid  6450] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[  127.765057][ T6441] XFS (loop0): Quotacheck needed: Please wait.
[pid  6451] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6441] <... mount resumed>)        = 0
[  127.856170][ T6441] XFS (loop0): Quotacheck: Done.
[pid  6441] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6441] chdir("./file0")            = 0
[pid  6441] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6452] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6441] <... ioctl resumed>)        = 0
[pid  6441] close(4)                    = 0
[pid  6441] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6441] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6441] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6441] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6441] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6441] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6441] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6441] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6441] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6441] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6441] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6441] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6441] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6441] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6441] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6441] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6441] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6441] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6441] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6441] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  127.962456][ T6441] syz-executor246 (6441): drop_caches: 2
[pid  6441] sendfile(5, 4, [100] <unfinished ...>
[pid  6450] <... write resumed>)        = 16777216
[pid  6450] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6441] <... sendfile resumed> => [671], 571) = 571
[pid  6441] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6441] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6441] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6441] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[  128.006579][ T6441] syz-executor246 (6441): drop_caches: 2
[pid  6441] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6441] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6441] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6441] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6441] exit_group(0)               = ?
[pid  6441] +++ exited with 0 +++
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6441, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=28 /* 0.28 s */} ---
[pid  5062] umount2("./25", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./25/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6450] <... munmap resumed>)       = 0
[pid  5062] newfstatat(AT_FDCWD, "./25/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6450] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5062] unlink("./25/binderfs" <unfinished ...>
[pid  6450] <... openat resumed>)       = 4
[pid  6450] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5062] <... unlink resumed>)       = 0
[pid  6458] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6450] <... ioctl resumed>)        = 0
[pid  5062] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6450] close(3)                    = 0
[pid  6450] mkdir("./file0", 0777)      = 0
[  128.084860][ T6450] loop3: detected capacity change from 0 to 32768
[  128.093056][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6450] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6449] <... write resumed>)        = 16777216
[  128.143212][ T6450] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  128.173476][ T6450] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6449] munmap(0x7f6d986f1000, 138412032) = 0
[pid  6449] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  6452] <... write resumed>)        = 16777216
[pid  6449] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6452] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6449] <... ioctl resumed>)        = 0
[pid  6449] close(3)                    = 0
[pid  6449] mkdir("./file0", 0777)      = 0
[pid  6449] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6452] <... munmap resumed>)       = 0
[  128.316999][ T6450] XFS (loop3): Ending clean mount
[  128.323402][ T6449] loop4: detected capacity change from 0 to 32768
[  128.332584][ T6450] XFS (loop3): Quotacheck needed: Please wait.
[pid  6452] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid  6452] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6451] <... write resumed>)        = 16777216
[pid  6451] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6450] <... mount resumed>)        = 0
[pid  6450] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6450] chdir("./file0" <unfinished ...>
[pid  6452] <... ioctl resumed>)        = 0
[pid  6452] close(3)                    = 0
[pid  6450] <... chdir resumed>)        = 0
[pid  6452] mkdir("./file0", 0777 <unfinished ...>
[pid  6450] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6451] <... munmap resumed>)       = 0
[pid  6450] <... ioctl resumed>)        = 0
[pid  6452] <... mkdir resumed>)        = 0
[pid  6450] close(4 <unfinished ...>
[pid  6451] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  6450] <... close resumed>)        = 0
[pid  6451] <... openat resumed>)       = 4
[pid  6450] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6451] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6450] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6450] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6450] ftruncate(-1, 33587195 <unfinished ...>
[pid  6452] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6451] <... ioctl resumed>)        = 0
[  128.385794][ T6450] XFS (loop3): Quotacheck: Done.
[  128.393091][ T6452] loop1: detected capacity change from 0 to 32768
[  128.404662][ T6449] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  128.422067][ T6451] loop2: detected capacity change from 0 to 32768
[pid  6451] close(3 <unfinished ...>
[pid  6450] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6451] <... close resumed>)        = 0
[pid  6450] read(-1,  <unfinished ...>
[pid  6451] mkdir("./file0", 0777 <unfinished ...>
[pid  6450] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6450] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6451] <... mkdir resumed>)        = 0
[pid  6450] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6450] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6450] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6451] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6450] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6450] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6450] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6450] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6450] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6450] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6450] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6450] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6450] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6450] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6450] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6450] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6450] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  128.432960][ T6449] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  128.470780][ T6452] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[pid  6450] sendfile(5, 4, [100] => [671], 571) = 571
[pid  6450] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6450] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6450] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6450] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6450] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6450] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6450] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[  128.505845][ T6451] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  128.522271][ T6450] syz-executor246 (6450): drop_caches: 2
[  128.528803][ T6450] syz-executor246 (6450): drop_caches: 2
[  128.540132][ T6452] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  128.541010][ T6449] XFS (loop4): Ending clean mount
[pid  6450] read(-1,  <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  6450] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6450] exit_group(0)               = ?
[pid  6450] +++ exited with 0 +++
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6450, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=35 /* 0.35 s */} ---
[pid  5065] umount2("./25", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./25/file0",  <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] umount2("./25/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./25/file0" <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] <... rmdir resumed>)        = 0
[pid  5065] newfstatat(AT_FDCWD, "./25/binderfs",  <unfinished ...>
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./25")               = 0
[pid  5062] mkdir("./26", 0777 <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] <... mkdir resumed>)        = 0
[pid  5065] unlink("./25/binderfs" <unfinished ...>
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5065] <... unlink resumed>)       = 0
[  128.564334][ T6451] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  128.574382][ T6449] XFS (loop4): Quotacheck needed: Please wait.
[pid  5062] <... openat resumed>)       = 3
[pid  5065] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6449] <... mount resumed>)        = 0
[pid  6449] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6449] <... openat resumed>)       = 3
[pid  6449] chdir("./file0")            = 0
[pid  6449] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6458] <... write resumed>)        = 16777216
[pid  6449] <... ioctl resumed>)        = 0
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6458] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6449] close(4 <unfinished ...>
[pid  5062] close(3 <unfinished ...>
[pid  6449] <... close resumed>)        = 0
[pid  6458] <... munmap resumed>)       = 0
[pid  6449] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  6458] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  6449] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6458] <... openat resumed>)       = 4
[pid  6458] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6449] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6449] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 6494
[pid  6449] <... open resumed>)         = -1 EFAULT (Bad address)
[  128.614599][ T6449] XFS (loop4): Quotacheck: Done.
[  128.621694][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  128.652819][ T6458] loop5: detected capacity change from 0 to 32768
[pid  6458] <... ioctl resumed>)        = 0
[pid  6449] ftruncate(-1, 33587195./strace-static-x86_64: Process 6494 attached
 <unfinished ...>
[pid  6458] close(3)                    = 0
[pid  6494] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6458] mkdir("./file0", 0777 <unfinished ...>
[pid  6449] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6494] <... set_robust_list resumed>) = 0
[pid  6458] <... mkdir resumed>)        = 0
[pid  6449] read(-1,  <unfinished ...>
[pid  6458] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6494] chdir("./26" <unfinished ...>
[pid  6449] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6494] <... chdir resumed>)        = 0
[pid  6449] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6494] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6449] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6494] <... prctl resumed>)        = 0
[pid  6449] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6494] setpgid(0, 0)               = 0
[pid  6449] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6494] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6449] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6494] <... openat resumed>)       = 3
[pid  6449] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6449] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6494] write(3, "1000", 4 <unfinished ...>
[pid  6449] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6449] read(-1,  <unfinished ...>
[pid  6494] <... write resumed>)        = 4
[pid  6449] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6494] close(3 <unfinished ...>
[pid  6449] write(-1, NULL, 0 <unfinished ...>
[pid  6494] <... close resumed>)        = 0
[pid  6449] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6494] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6449] write(-1, NULL, 0 <unfinished ...>
[pid  6494] <... symlink resumed>)      = 0
[pid  6449] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6494] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6449] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6449] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6449] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6494] <... memfd_create resumed>) = 3
[  128.664964][ T6451] XFS (loop2): Ending clean mount
[  128.677434][ T6452] XFS (loop1): Ending clean mount
[  128.686716][ T6452] XFS (loop1): Quotacheck needed: Please wait.
[  128.706948][ T6451] XFS (loop2): Quotacheck needed: Please wait.
[pid  6449] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6494] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6449] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6494] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6449] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6449] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6449] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6452] <... mount resumed>)        = 0
[pid  6449] <... openat resumed>)       = 4
[pid  6452] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6449] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  128.746483][ T6452] XFS (loop1): Quotacheck: Done.
[  128.751907][ T6458] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[pid  6449] sendfile(5, 4, [100] <unfinished ...>
[pid  6452] chdir("./file0" <unfinished ...>
[pid  6451] <... mount resumed>)        = 0
[pid  6449] <... sendfile resumed> => [671], 571) = 571
[pid  6449] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6449] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6452] <... chdir resumed>)        = 0
[pid  6451] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6449] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6449] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6452] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6451] <... openat resumed>)       = 3
[pid  6449] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6452] <... ioctl resumed>)        = 0
[pid  6451] chdir("./file0" <unfinished ...>
[  128.803314][ T6451] XFS (loop2): Quotacheck: Done.
[  128.804862][ T6449] syz-executor246 (6449): drop_caches: 2
[  128.810011][ T6458] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  128.815283][ T6449] syz-executor246 (6449): drop_caches: 2
[pid  6449] ftruncate(-1, 33587199 <unfinished ...>
[pid  6452] close(4 <unfinished ...>
[pid  6451] <... chdir resumed>)        = 0
[pid  6449] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6452] <... close resumed>)        = 0
[pid  6452] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6451] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6449] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6449] open(NULL, O_RDONLY <unfinished ...>
[pid  6452] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6449] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6449] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6452] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6451] <... ioctl resumed>)        = 0
[pid  6449] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6449] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6452] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6451] close(4 <unfinished ...>
[pid  6449] exit_group(0)               = ?
[pid  6452] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6451] <... close resumed>)        = 0
[pid  6452] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6451] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6452] ftruncate(-1, 33587195 <unfinished ...>
[pid  6451] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6449] +++ exited with 0 +++
[pid  6452] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6451] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6452] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6452] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6451] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6452] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6451] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6452] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6451] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6449, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=29 /* 0.29 s */} ---
[pid  6452] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6451] ftruncate(-1, 33587195 <unfinished ...>
[pid  6452] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6451] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6451] read(-1,  <unfinished ...>
[pid  6452] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6451] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6452] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6451] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5066] umount2("./25", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6452] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6451] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6452] read(-1,  <unfinished ...>
[pid  6451] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5066] openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6452] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6451] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5066] <... openat resumed>)       = 3
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  6452] write(-1, NULL, 0 <unfinished ...>
[pid  6451] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6452] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6452] write(-1, NULL, 0 <unfinished ...>
[pid  6451] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6452] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6451] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5066] getdents64(3,  <unfinished ...>
[pid  6452] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6451] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6452] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6451] read(-1,  <unfinished ...>
[pid  6452] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6451] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] <... umount2 resumed>)      = 0
[pid  6452] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6451] write(-1, NULL, 0 <unfinished ...>
[pid  5066] umount2("./25/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[  128.936346][ T6458] XFS (loop5): Ending clean mount
[pid  6452] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6451] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6452] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6451] write(-1, NULL, 0 <unfinished ...>
[pid  5066] newfstatat(AT_FDCWD, "./25/binderfs",  <unfinished ...>
[pid  5065] newfstatat(AT_FDCWD, "./25/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6452] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6451] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6452] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5066] unlink("./25/binderfs" <unfinished ...>
[pid  5065] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6451] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6494] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6452] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6451] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5066] <... unlink resumed>)       = 0
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6452] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6451] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5066] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6452] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6451] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5065] <... openat resumed>)       = 4
[pid  6452] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5065] newfstatat(4, "",  <unfinished ...>
[pid  6451] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6452] <... openat resumed>)       = 4
[pid  6451] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6451] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6452] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6451] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6451] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6451] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6452] <... openat resumed>)       = 5
[pid  6451] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5065] getdents64(4,  <unfinished ...>
[pid  6452] sendfile(5, 4, [100] <unfinished ...>
[pid  6451] <... openat resumed>)       = 4
[pid  5065] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  6451] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  6451] <... openat resumed>)       = 5
[pid  5065] rmdir("./25/file0")         = 0
[pid  6451] sendfile(5, 4, [100] <unfinished ...>
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[  128.957874][ T6458] XFS (loop5): Quotacheck needed: Please wait.
[  128.982817][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5065] rmdir("./25")               = 0
[pid  5065] mkdir("./26", 0777 <unfinished ...>
[pid  6458] <... mount resumed>)        = 0
[pid  5065] <... mkdir resumed>)        = 0
[pid  6458] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6458] chdir("./file0")            = 0
[pid  6458] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6458] close(4 <unfinished ...>
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  6458] <... close resumed>)        = 0
[pid  5065] <... openat resumed>)       = 3
[  129.026101][ T6458] XFS (loop5): Quotacheck: Done.
[pid  6458] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6458] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6458] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6458] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6458] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6458] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6458] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6458] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6458] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6458] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6458] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6458] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6458] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5065] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6458] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5065] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6458] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5065] close(3 <unfinished ...>
[pid  6458] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6458] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6458] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6458] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6458] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6458] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5065] <... close resumed>)        = 0
[pid  6458] sendfile(5, 4, [100] <unfinished ...>
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6503 attached
 <unfinished ...>
[pid  6452] <... sendfile resumed> => [671], 571) = 571
[pid  6451] <... sendfile resumed> => [671], 571) = 571
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 6503
[pid  6503] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6452] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6451] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6503] <... set_robust_list resumed>) = 0
[pid  6452] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6451] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6451] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6452] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6503] chdir("./26" <unfinished ...>
[pid  6452] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6451] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6503] <... chdir resumed>)        = 0
[pid  6452] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6451] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6503] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6452] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6451] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6452] ftruncate(-1, 33587199 <unfinished ...>
[pid  6451] ftruncate(-1, 33587199 <unfinished ...>
[pid  6503] setpgid(0, 0 <unfinished ...>
[pid  6452] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6451] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6451] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6452] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6451] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6452] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6451] open(NULL, O_RDONLY <unfinished ...>
[pid  6452] open(NULL, O_RDONLY <unfinished ...>
[pid  6451] <... open resumed>)         = -1 EFAULT (Bad address)
[  129.057537][ T6451] syz-executor246 (6451): drop_caches: 2
[  129.066123][ T6452] syz-executor246 (6452): drop_caches: 2
[  129.080157][ T6451] syz-executor246 (6451): drop_caches: 2
[  129.088201][ T6452] syz-executor246 (6452): drop_caches: 2
[  129.096181][ T6458] syz-executor246 (6458): drop_caches: 2
[pid  6451] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6503] <... setpgid resumed>)      = 0
[pid  6452] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6451] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6451] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6503] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6452] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6503] <... openat resumed>)       = 3
[pid  6452] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6451] exit_group(0 <unfinished ...>
[pid  6452] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6451] <... exit_group resumed>)   = ?
[pid  6452] exit_group(0)               = ?
[pid  6503] write(3, "1000", 4 <unfinished ...>
[pid  6452] +++ exited with 0 +++
[pid  6451] +++ exited with 0 +++
[pid  6503] <... write resumed>)        = 4
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6452, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=36 /* 0.36 s */} ---
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6451, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=37 /* 0.37 s */} ---
[pid  5063] umount2("./26", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] umount2("./25", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6503] close(3 <unfinished ...>
[pid  6458] <... sendfile resumed> => [671], 571) = 571
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... openat resumed>)       = 3
[pid  6503] <... close resumed>)        = 0
[pid  6458] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5064] openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  5064] <... openat resumed>)       = 3
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6503] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6458] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5064] newfstatat(3, "",  <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  6503] <... symlink resumed>)      = 0
[pid  6458] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] getdents64(3,  <unfinished ...>
[pid  5063] umount2("./26/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./25/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6503] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6458] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./26/binderfs",  <unfinished ...>
[pid  6458] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5064] newfstatat(AT_FDCWD, "./25/binderfs",  <unfinished ...>
[pid  6458] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5064] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6458] ftruncate(-1, 33587199 <unfinished ...>
[pid  5064] unlink("./25/binderfs" <unfinished ...>
[pid  5063] unlink("./26/binderfs" <unfinished ...>
[pid  6503] <... memfd_create resumed>) = 3
[pid  6458] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5064] <... unlink resumed>)       = 0
[pid  6503] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6458] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5063] <... unlink resumed>)       = 0
[pid  6503] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6458] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5063] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[  129.147952][ T6458] syz-executor246 (6458): drop_caches: 2
[pid  5064] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6458] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6458] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6458] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6458] exit_group(0)               = ?
[pid  6458] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6458, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=32 /* 0.32 s */} ---
[pid  5067] umount2("./26", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./26/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./26/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./26/binderfs")     = 0
[  129.204015][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  129.213053][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  129.250068][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5067] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./25/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./25/file0")         = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./25")               = 0
[pid  5066] mkdir("./26", 0777)         = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] close(3)                    = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6504 attached
, child_tidptr=0x55555697c750) = 6504
[pid  6504] set_robust_list(0x55555697c760, 24) = 0
[pid  6504] chdir("./26")               = 0
[pid  6504] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6504] setpgid(0, 0)               = 0
[pid  6504] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6504] write(3, "1000", 4)         = 4
[pid  6504] close(3)                    = 0
[pid  6504] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6504] memfd_create("syzkaller", 0) = 3
[pid  6504] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6503] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5063] <... umount2 resumed>)      = 0
[pid  5063] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./26/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4)                    = 0
[pid  5063] rmdir("./26/file0")         = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6494] <... write resumed>)        = 16777216
[pid  5063] close(3)                    = 0
[pid  5063] rmdir("./26" <unfinished ...>
[pid  6494] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  5063] mkdir("./27", 0777)         = 0
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5063] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5063] close(3)                    = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6505
./strace-static-x86_64: Process 6505 attached
[pid  6505] set_robust_list(0x55555697c760, 24) = 0
[pid  6505] chdir("./27")               = 0
[pid  6505] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6505] setpgid(0, 0)               = 0
[pid  6505] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6505] write(3, "1000", 4)         = 4
[pid  6505] close(3)                    = 0
[pid  6505] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6494] <... munmap resumed>)       = 0
[pid  6505] memfd_create("syzkaller", 0) = 3
[pid  6505] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6494] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  6494] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6494] close(3)                    = 0
[pid  5064] <... umount2 resumed>)      = 0
[pid  6494] mkdir("./file0", 0777 <unfinished ...>
[pid  5064] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6494] <... mkdir resumed>)        = 0
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6494] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5067] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./26/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] newfstatat(AT_FDCWD, "./25/file0",  <unfinished ...>
[pid  5067] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5067] openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5064] <... openat resumed>)       = 4
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./25/file0" <unfinished ...>
[pid  5067] <... openat resumed>)       = 4
[pid  5064] <... rmdir resumed>)        = 0
[pid  5067] newfstatat(4, "",  <unfinished ...>
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3 <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5064] <... close resumed>)        = 0
[pid  5064] rmdir("./25")               = 0
[pid  5064] mkdir("./26", 0777 <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4 <unfinished ...>
[pid  5064] <... mkdir resumed>)        = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  5064] <... openat resumed>)       = 3
[  129.691240][ T6494] loop0: detected capacity change from 0 to 32768
[pid  5067] rmdir("./26/file0" <unfinished ...>
[pid  5064] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5067] <... rmdir resumed>)        = 0
[pid  5064] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6509 attached
, child_tidptr=0x55555697c750) = 6509
[pid  6509] set_robust_list(0x55555697c760, 24) = 0
[pid  6509] chdir("./26" <unfinished ...>
[pid  5067] getdents64(3,  <unfinished ...>
[pid  6509] <... chdir resumed>)        = 0
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6509] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5067] close(3 <unfinished ...>
[pid  6509] setpgid(0, 0 <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  6509] <... setpgid resumed>)      = 0
[pid  5067] rmdir("./26")               = 0
[pid  6509] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5067] mkdir("./27", 0777 <unfinished ...>
[pid  6509] <... openat resumed>)       = 3
[pid  5067] <... mkdir resumed>)        = 0
[pid  6509] write(3, "1000", 4)         = 4
[pid  6509] close(3 <unfinished ...>
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  6509] <... close resumed>)        = 0
[pid  6509] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5067] <... openat resumed>)       = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  6509] <... symlink resumed>)      = 0
[pid  5067] close(3 <unfinished ...>
[pid  6509] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6512 attached
 <unfinished ...>
[pid  6509] <... memfd_create resumed>) = 3
[pid  6509] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6512] set_robust_list(0x55555697c760, 24) = 0
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 6512
[pid  6512] chdir("./27")               = 0
[pid  6512] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6512] setpgid(0, 0)               = 0
[pid  6512] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6512] write(3, "1000", 4)         = 4
[pid  6512] close(3)                    = 0
[pid  6512] symlink("/dev/binderfs", "./binderfs") = 0
[  129.786008][ T6494] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  129.816552][ T6494] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6512] memfd_create("syzkaller", 0) = 3
[pid  6512] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  129.914203][ T6494] XFS (loop0): Ending clean mount
[  129.927519][ T6494] XFS (loop0): Quotacheck needed: Please wait.
[pid  6505] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6494] <... mount resumed>)        = 0
[pid  6494] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6494] chdir("./file0")            = 0
[pid  6494] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6494] close(4)                    = 0
[  129.958719][ T6494] XFS (loop0): Quotacheck: Done.
[pid  6494] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6494] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6494] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6494] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6494] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6494] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6494] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6494] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6494] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6494] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6494] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6494] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6494] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6494] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6494] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6504] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6494] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6494] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6494] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6494] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6494] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6494] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6494] sendfile(5, 4, [100] <unfinished ...>
[pid  6503] <... write resumed>)        = 16777216
[pid  6494] <... sendfile resumed> => [671], 571) = 571
[pid  6503] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6494] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6494] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6494] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6494] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6494] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6494] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[  130.052838][ T6494] syz-executor246 (6494): drop_caches: 2
[  130.096189][ T6494] syz-executor246 (6494): drop_caches: 2
[pid  6494] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6494] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6494] exit_group(0)               = ?
[pid  6494] +++ exited with 0 +++
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6494, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=30 /* 0.30 s */} ---
[pid  5062] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5062] umount2("./26", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./26/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./26/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./26/binderfs" <unfinished ...>
[pid  6503] <... munmap resumed>)       = 0
[pid  6503] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid  6503] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5062] <... unlink resumed>)       = 0
[pid  5062] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6512] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6503] <... ioctl resumed>)        = 0
[pid  6503] close(3)                    = 0
[pid  6503] mkdir("./file0", 0777)      = 0
[  130.202292][ T6503] loop3: detected capacity change from 0 to 32768
[  130.210669][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6503] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[  130.338231][ T6503] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[pid  6509] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6505] <... write resumed>)        = 16777216
[  130.394186][ T6503] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6505] munmap(0x7f6d986f1000, 138412032) = 0
[pid  6505] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid  6505] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6505] close(3)                    = 0
[pid  6505] mkdir("./file0", 0777)      = 0
[  130.460907][ T6505] loop1: detected capacity change from 0 to 32768
[  130.479316][ T6503] XFS (loop3): Ending clean mount
[  130.487607][ T6503] XFS (loop3): Quotacheck needed: Please wait.
[pid  6505] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6503] <... mount resumed>)        = 0
[pid  6503] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6504] <... write resumed>)        = 16777216
[pid  6503] chdir("./file0")            = 0
[  130.533166][ T6503] XFS (loop3): Quotacheck: Done.
[pid  6503] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6504] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6503] close(4 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  6503] <... close resumed>)        = 0
[pid  6503] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5062] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6503] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./26/file0",  <unfinished ...>
[pid  6503] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6503] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6503] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6503] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  6503] ftruncate(-1, 33587195 <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4,  <unfinished ...>
[pid  6503] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  6503] read(-1,  <unfinished ...>
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4 <unfinished ...>
[pid  6503] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5062] <... close resumed>)        = 0
[pid  6503] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5062] rmdir("./26/file0" <unfinished ...>
[pid  6503] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6503] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6503] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  6503] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5062] getdents64(3,  <unfinished ...>
[pid  6503] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6503] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6503] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6503] write(-1, NULL, 0 <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6503] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5062] close(3 <unfinished ...>
[pid  6503] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  6503] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6503] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5062] rmdir("./26" <unfinished ...>
[pid  6503] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6503] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  6503] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6503] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5062] mkdir("./27", 0777 <unfinished ...>
[pid  6503] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[  130.573436][ T6505] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  130.604568][ T6505] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6504] <... munmap resumed>)       = 0
[pid  6503] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] <... mkdir resumed>)        = 0
[pid  6503] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6503] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6503] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  6503] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5062] <... openat resumed>)       = 3
[pid  6503] sendfile(5, 4, [100] <unfinished ...>
[pid  6504] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6504] <... openat resumed>)       = 4
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6504] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5062] close(3)                    = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6532
./strace-static-x86_64: Process 6532 attached
[pid  6532] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6512] <... write resumed>)        = 16777216
[pid  6504] <... ioctl resumed>)        = 0
[pid  6504] close(3)                    = 0
[pid  6504] mkdir("./file0", 0777)      = 0
[pid  6504] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6512] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6532] <... set_robust_list resumed>) = 0
[pid  6532] chdir("./27" <unfinished ...>
[pid  6503] <... sendfile resumed> => [671], 571) = 571
[pid  6532] <... chdir resumed>)        = 0
[  130.670282][ T6503] syz-executor246 (6503): drop_caches: 2
[  130.686365][ T6504] loop4: detected capacity change from 0 to 32768
[  130.698347][ T6505] XFS (loop1): Ending clean mount
[  130.707037][ T6503] syz-executor246 (6503): drop_caches: 2
[pid  6503] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6532] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6503] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6532] <... prctl resumed>)        = 0
[pid  6503] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6532] setpgid(0, 0 <unfinished ...>
[pid  6503] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6532] <... setpgid resumed>)      = 0
[pid  6503] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6503] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6532] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6503] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6532] <... openat resumed>)       = 3
[pid  6532] write(3, "1000", 4 <unfinished ...>
[pid  6503] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6532] <... write resumed>)        = 4
[  130.724151][ T6505] XFS (loop1): Quotacheck needed: Please wait.
[  130.747870][ T6504] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[pid  6532] close(3 <unfinished ...>
[pid  6503] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6532] <... close resumed>)        = 0
[pid  6503] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6532] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6503] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6503] exit_group(0 <unfinished ...>
[pid  6532] <... symlink resumed>)      = 0
[pid  6503] <... exit_group resumed>)   = ?
[pid  6503] +++ exited with 0 +++
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6503, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=31 /* 0.31 s */} ---
[pid  6532] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5065] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  6532] <... memfd_create resumed>) = 3
[pid  5065] <... restart_syscall resumed>) = 0
[pid  5065] umount2("./26", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6532] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5065] openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] umount2("./26/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./26/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] unlink("./26/binderfs")     = 0
[pid  6532] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5065] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6512] <... munmap resumed>)       = 0
[pid  6509] <... write resumed>)        = 16777216
[pid  6512] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  6509] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6512] <... openat resumed>)       = 4
[  130.771796][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  130.793612][ T6504] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  130.806477][ T6505] XFS (loop1): Quotacheck: Done.
[pid  6512] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6505] <... mount resumed>)        = 0
[pid  6505] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6512] <... ioctl resumed>)        = 0
[pid  6512] close(3)                    = 0
[pid  6512] mkdir("./file0", 0777)      = 0
[pid  6512] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6509] <... munmap resumed>)       = 0
[pid  6505] chdir("./file0")            = 0
[pid  6505] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6505] close(4 <unfinished ...>
[pid  6509] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid  6505] <... close resumed>)        = 0
[  130.824359][ T6512] loop5: detected capacity change from 0 to 32768
[pid  6509] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6505] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6509] <... ioctl resumed>)        = 0
[pid  6509] close(3)                    = 0
[pid  6509] mkdir("./file0", 0777)      = 0
[pid  6505] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6509] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6505] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6505] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6505] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6505] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6505] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6505] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[  130.884706][ T6509] loop2: detected capacity change from 0 to 32768
[  130.894448][ T6512] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  130.913250][ T6512] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6505] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6505] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6505] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6505] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6505] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6505] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6505] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6505] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6505] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6505] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6505] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  6505] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[  130.995419][ T6509] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  131.027666][ T6512] XFS (loop5): Ending clean mount
[  131.037206][ T6504] XFS (loop4): Ending clean mount
[pid  6532] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6505] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5065] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6505] <... openat resumed>)       = 4
[pid  5065] newfstatat(AT_FDCWD, "./26/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  6505] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5065] newfstatat(4, "",  <unfinished ...>
[pid  6505] <... openat resumed>)       = 5
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  6505] sendfile(5, 4, [100] <unfinished ...>
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./26/file0")         = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./26")               = 0
[pid  5065] mkdir("./27", 0777)         = 0
[  131.044322][ T6509] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  131.059829][ T6504] XFS (loop4): Quotacheck needed: Please wait.
[  131.060215][ T6512] XFS (loop5): Quotacheck needed: Please wait.
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6557
[  131.107085][ T6512] XFS (loop5): Quotacheck: Done.
./strace-static-x86_64: Process 6557 attached
[pid  6512] <... mount resumed>)        = 0
[pid  6557] set_robust_list(0x55555697c760, 24) = 0
[pid  6557] chdir("./27")               = 0
[pid  6557] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6557] setpgid(0, 0)               = 0
[pid  6557] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6557] write(3, "1000", 4)         = 4
[pid  6557] close(3)                    = 0
[pid  6557] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6557] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6512] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6557] <... memfd_create resumed>) = 3
[pid  6512] <... openat resumed>)       = 3
[pid  6557] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6512] chdir("./file0" <unfinished ...>
[pid  6557] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6512] <... chdir resumed>)        = 0
[pid  6512] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6512] close(4 <unfinished ...>
[pid  6504] <... mount resumed>)        = 0
[pid  6512] <... close resumed>)        = 0
[pid  6504] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6512] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6504] <... openat resumed>)       = 3
[pid  6512] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6504] chdir("./file0" <unfinished ...>
[pid  6512] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6504] <... chdir resumed>)        = 0
[pid  6512] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6504] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6512] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6504] <... ioctl resumed>)        = 0
[pid  6512] ftruncate(-1, 33587195 <unfinished ...>
[pid  6504] close(4 <unfinished ...>
[pid  6512] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6504] <... close resumed>)        = 0
[pid  6512] read(-1,  <unfinished ...>
[pid  6504] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6512] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6504] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6512] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6504] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6512] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6504] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6512] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6504] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6512] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6504] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6512] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6504] ftruncate(-1, 33587195 <unfinished ...>
[pid  6512] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6504] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6512] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6504] read(-1,  <unfinished ...>
[pid  6512] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6504] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6512] read(-1,  <unfinished ...>
[pid  6504] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6512] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[  131.131936][ T6504] XFS (loop4): Quotacheck: Done.
[  131.145382][ T6509] XFS (loop2): Ending clean mount
[  131.153503][ T6509] XFS (loop2): Quotacheck needed: Please wait.
[  131.164645][ T6505] syz-executor246 (6505): drop_caches: 2
[pid  6504] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6512] write(-1, NULL, 0 <unfinished ...>
[pid  6504] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6512] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6504] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6512] write(-1, NULL, 0 <unfinished ...>
[  131.203214][ T6509] XFS (loop2): Quotacheck: Done.
[pid  6504] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6512] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6504] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6509] <... mount resumed>)        = 0
[pid  6509] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6504] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6512] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6504] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6512] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6509] chdir("./file0" <unfinished ...>
[pid  6504] read(-1,  <unfinished ...>
[pid  6509] <... chdir resumed>)        = 0
[pid  6504] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6509] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6504] write(-1, NULL, 0 <unfinished ...>
[pid  6512] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6509] <... ioctl resumed>)        = 0
[pid  6504] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6509] close(4 <unfinished ...>
[pid  6504] write(-1, NULL, 0 <unfinished ...>
[pid  6509] <... close resumed>)        = 0
[pid  6504] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6509] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6504] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6512] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6509] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6504] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6512] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6509] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6504] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6512] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6509] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6504] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6512] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6509] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6504] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6512] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6509] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6504] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6512] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6509] ftruncate(-1, 33587195 <unfinished ...>
[pid  6504] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6512] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6509] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6504] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6512] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6509] read(-1,  <unfinished ...>
[pid  6504] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6512] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6509] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6504] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6512] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6509] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6504] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6512] <... openat resumed>)       = 4
[pid  6509] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6504] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6512] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6509] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6504] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6512] <... openat resumed>)       = 5
[pid  6509] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6504] <... openat resumed>)       = 4
[  131.241438][ T6505] syz-executor246 (6505): drop_caches: 2
[  131.280867][ T6504] syz-executor246 (6504): drop_caches: 2
[pid  6512] sendfile(5, 4, [100] <unfinished ...>
[pid  6509] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6504] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6509] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6504] <... openat resumed>)       = 5
[pid  6509] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6504] sendfile(5, 4, [100] <unfinished ...>
[pid  6509] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6509] read(-1,  <unfinished ...>
[pid  6505] <... sendfile resumed> => [671], 571) = 571
[pid  6509] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6509] write(-1, NULL, 0 <unfinished ...>
[pid  6505] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6509] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6505] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6505] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6509] write(-1, NULL, 0 <unfinished ...>
[pid  6505] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6509] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6505] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6509] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6505] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6509] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6505] ftruncate(-1, 33587199 <unfinished ...>
[pid  6509] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6505] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6509] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6505] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6509] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6505] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6509] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6509] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6509] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6509] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6505] open(NULL, O_RDONLY <unfinished ...>
[  131.289852][ T6512] syz-executor246 (6512): drop_caches: 2
[pid  6509] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6505] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6509] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6505] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6509] <... openat resumed>)       = 4
[pid  6505] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6509] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6505] read(-1,  <unfinished ...>
[pid  6509] <... openat resumed>)       = 5
[pid  6505] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6509] sendfile(5, 4, [100] <unfinished ...>
[pid  6505] exit_group(0)               = ?
[pid  6504] <... sendfile resumed> => [671], 571) = 571
[pid  6505] +++ exited with 0 +++
[pid  6504] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6505, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=31 /* 0.31 s */} ---
[pid  6504] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6504] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5063] umount2("./27", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6504] ftruncate(-1, 33587199 <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6504] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5063] <... openat resumed>)       = 3
[pid  6504] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  6504] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6504] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6504] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6504] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5063] umount2("./27/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6512] <... sendfile resumed> => [671], 571) = 571
[pid  6504] exit_group(0 <unfinished ...>
[pid  6532] <... write resumed>)        = 16777216
[pid  6512] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6504] <... exit_group resumed>)   = ?
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6512] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6512] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6532] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6512] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6504] +++ exited with 0 +++
[pid  5063] newfstatat(AT_FDCWD, "./27/binderfs",  <unfinished ...>
[pid  6512] ftruncate(-1, 33587199 <unfinished ...>
[pid  6509] <... sendfile resumed> => [671], 571) = 571
[pid  6512] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6512] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6509] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6504, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=37 /* 0.37 s */} ---
[pid  6512] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6509] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5063] unlink("./27/binderfs" <unfinished ...>
[pid  6512] open(NULL, O_RDONLY <unfinished ...>
[pid  6509] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6512] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6509] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] <... unlink resumed>)       = 0
[pid  6512] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6509] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5063] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6512] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[  131.318730][ T6509] syz-executor246 (6509): drop_caches: 2
[  131.323370][ T6504] syz-executor246 (6504): drop_caches: 2
[  131.327533][ T6512] syz-executor246 (6512): drop_caches: 2
[  131.340439][ T6509] syz-executor246 (6509): drop_caches: 2
[pid  6509] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6512] exit_group(0)               = ?
[pid  6509] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6509] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6509] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6509] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6509] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6509] exit_group(0 <unfinished ...>
[pid  6512] +++ exited with 0 +++
[pid  6509] <... exit_group resumed>)   = ?
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6512, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=32 /* 0.32 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./27", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6509] +++ exited with 0 +++
[pid  5067] openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5066] umount2("./26", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... openat resumed>)       = 3
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6509, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=31 /* 0.31 s */} ---
[pid  5064] umount2("./26", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5064] openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  5064] <... openat resumed>)       = 3
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] newfstatat(3, "",  <unfinished ...>
[pid  5067] umount2("./27/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] getdents64(3,  <unfinished ...>
[pid  5067] newfstatat(AT_FDCWD, "./27/binderfs",  <unfinished ...>
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./26/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] unlink("./27/binderfs" <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] <... unlink resumed>)       = 0
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] newfstatat(AT_FDCWD, "./26/binderfs",  <unfinished ...>
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] unlink("./26/binderfs" <unfinished ...>
[pid  5066] umount2("./26/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... unlink resumed>)       = 0
[  131.372741][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6532] <... munmap resumed>)       = 0
[pid  5066] newfstatat(AT_FDCWD, "./26/binderfs",  <unfinished ...>
[pid  6532] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] unlink("./26/binderfs" <unfinished ...>
[pid  6532] <... openat resumed>)       = 4
[pid  5066] <... unlink resumed>)       = 0
[pid  6532] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[  131.414455][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  131.428304][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  131.453973][ T6532] loop0: detected capacity change from 0 to 32768
[pid  5066] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6532] <... ioctl resumed>)        = 0
[  131.467996][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6532] close(3 <unfinished ...>
[pid  6557] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6532] <... close resumed>)        = 0
[pid  6532] mkdir("./file0", 0777)      = 0
[pid  6532] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6557] <... write resumed>)        = 16777216
[  131.644473][ T6532] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  131.663055][ T6532] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6557] munmap(0x7f6d986f1000, 138412032) = 0
[pid  6557] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid  6557] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6557] close(3)                    = 0
[pid  6557] mkdir("./file0", 0777)      = 0
[pid  6557] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  131.763837][ T6557] loop3: detected capacity change from 0 to 32768
[pid  5066] newfstatat(AT_FDCWD, "./26/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./26/file0")         = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./26")               = 0
[pid  5066] mkdir("./27", 0777)         = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[  131.821476][ T6532] XFS (loop0): Ending clean mount
[  131.831960][ T6557] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  131.833571][ T6532] XFS (loop0): Quotacheck needed: Please wait.
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] close(3)                    = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6572
./strace-static-x86_64: Process 6572 attached
[pid  6572] set_robust_list(0x55555697c760, 24) = 0
[pid  6572] chdir("./27")               = 0
[pid  6572] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6572] setpgid(0, 0)               = 0
[  131.874114][ T6557] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6572] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6572] write(3, "1000", 4)         = 4
[pid  6572] close(3)                    = 0
[pid  6572] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6572] memfd_create("syzkaller", 0) = 3
[pid  6572] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6532] <... mount resumed>)        = 0
[pid  6532] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  6532] <... openat resumed>)       = 3
[  131.921434][ T6532] XFS (loop0): Quotacheck: Done.
[pid  5067] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6532] chdir("./file0" <unfinished ...>
[pid  5063] <... umount2 resumed>)      = 0
[pid  6532] <... chdir resumed>)        = 0
[pid  5067] newfstatat(AT_FDCWD, "./27/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6532] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6532] close(4)                    = 0
[pid  6532] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5067] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6532] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6532] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./27/file0",  <unfinished ...>
[pid  6532] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5067] <... openat resumed>)       = 4
[pid  6532] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] newfstatat(4, "",  <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6532] ftruncate(-1, 33587195 <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6532] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  6532] read(-1,  <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6532] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5063] openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6532] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5063] <... openat resumed>)       = 4
[pid  6532] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5064] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  6532] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6532] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5063] getdents64(4,  <unfinished ...>
[pid  6532] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  6532] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5063] getdents64(4,  <unfinished ...>
[pid  6532] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  6532] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] close(4 <unfinished ...>
[pid  6532] read(-1,  <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] <... close resumed>)        = 0
[pid  6532] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5067] close(4 <unfinished ...>
[pid  5063] rmdir("./27/file0" <unfinished ...>
[pid  6532] write(-1, NULL, 0 <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  5064] newfstatat(AT_FDCWD, "./26/file0",  <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  6532] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5063] getdents64(3,  <unfinished ...>
[pid  6532] write(-1, NULL, 0 <unfinished ...>
[pid  5067] rmdir("./27/file0" <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6532] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5067] <... rmdir resumed>)        = 0
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6532] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5063] close(3 <unfinished ...>
[pid  6532] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] <... close resumed>)        = 0
[pid  6532] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5067] close(3 <unfinished ...>
[pid  5063] rmdir("./27" <unfinished ...>
[pid  6532] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5067] <... close resumed>)        = 0
[pid  5064] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  6532] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5067] rmdir("./27" <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] mkdir("./28", 0777 <unfinished ...>
[pid  6532] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] <... rmdir resumed>)        = 0
[pid  5064] openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5063] <... mkdir resumed>)        = 0
[pid  6532] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5067] mkdir("./28", 0777 <unfinished ...>
[pid  5064] <... openat resumed>)       = 4
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6532] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... mkdir resumed>)        = 0
[pid  6532] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5064] newfstatat(4, "",  <unfinished ...>
[pid  5063] <... openat resumed>)       = 3
[pid  6532] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... openat resumed>)       = 3
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6532] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6532] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5064] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] close(3 <unfinished ...>
[pid  6532] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5067] close(3 <unfinished ...>
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  6532] <... openat resumed>)       = 4
[pid  5067] <... close resumed>)        = 0
[pid  6532] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5064] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  6532] <... openat resumed>)       = 5
[pid  5064] close(4 <unfinished ...>
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6576 attached
./strace-static-x86_64: Process 6575 attached
 <unfinished ...>
[pid  6532] sendfile(5, 4, [100] <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 6575
[pid  5064] <... close resumed>)        = 0
[pid  6576] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6575] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5064] rmdir("./26/file0" <unfinished ...>
[pid  6576] <... set_robust_list resumed>) = 0
[pid  6575] <... set_robust_list resumed>) = 0
[pid  5064] <... rmdir resumed>)        = 0
[pid  5064] getdents64(3,  <unfinished ...>
[pid  6576] chdir("./28" <unfinished ...>
[pid  6575] chdir("./28" <unfinished ...>
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6576] <... chdir resumed>)        = 0
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 6576
[pid  6575] <... chdir resumed>)        = 0
[pid  6576] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6575] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6576] <... prctl resumed>)        = 0
[pid  6575] <... prctl resumed>)        = 0
[pid  6576] setpgid(0, 0 <unfinished ...>
[pid  6575] setpgid(0, 0 <unfinished ...>
[pid  5064] close(3 <unfinished ...>
[pid  6576] <... setpgid resumed>)      = 0
[pid  6575] <... setpgid resumed>)      = 0
[pid  6575] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5064] <... close resumed>)        = 0
[pid  6576] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6575] <... openat resumed>)       = 3
[pid  5064] rmdir("./26")               = 0
[pid  5064] mkdir("./27", 0777 <unfinished ...>
[pid  6576] <... openat resumed>)       = 3
[pid  6575] write(3, "1000", 4 <unfinished ...>
[pid  5064] <... mkdir resumed>)        = 0
[pid  6576] write(3, "1000", 4)         = 4
[pid  6575] <... write resumed>)        = 4
[pid  6576] close(3 <unfinished ...>
[pid  6575] close(3 <unfinished ...>
[pid  6576] <... close resumed>)        = 0
[pid  6575] <... close resumed>)        = 0
[pid  6576] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6575] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6576] <... symlink resumed>)      = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  6575] <... symlink resumed>)      = 0
[pid  5064] <... openat resumed>)       = 3
[pid  6575] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5064] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6576] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6575] <... memfd_create resumed>) = 3
[pid  5064] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6575] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6576] <... memfd_create resumed>) = 3
[pid  6576] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 6577
[pid  6576] <... mmap resumed>)         = 0x7f6d986f1000
./strace-static-x86_64: Process 6577 attached
[pid  6577] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6575] <... mmap resumed>)         = 0x7f6d986f1000
[  132.075910][ T6557] XFS (loop3): Ending clean mount
[  132.095966][ T6532] syz-executor246 (6532): drop_caches: 2
[  132.115493][ T6557] XFS (loop3): Quotacheck needed: Please wait.
[pid  6532] <... sendfile resumed> => [671], 571) = 571
[pid  6577] <... set_robust_list resumed>) = 0
[pid  6577] chdir("./27")               = 0
[pid  6572] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6577] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6577] setpgid(0, 0)               = 0
[pid  6577] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6577] write(3, "1000", 4)         = 4
[  132.136399][ T6532] syz-executor246 (6532): drop_caches: 2
[pid  6577] close(3)                    = 0
[pid  6557] <... mount resumed>)        = 0
[pid  6532] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6577] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6557] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6577] <... symlink resumed>)      = 0
[pid  6532] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6577] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6557] <... openat resumed>)       = 3
[pid  6532] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6577] <... memfd_create resumed>) = 3
[pid  6532] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6577] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6532] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6577] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6532] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6532] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6532] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6532] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6532] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6557] chdir("./file0" <unfinished ...>
[pid  6532] exit_group(0 <unfinished ...>
[pid  6557] <... chdir resumed>)        = 0
[pid  6532] <... exit_group resumed>)   = ?
[pid  6557] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6557] close(4)                    = 0
[pid  6557] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6532] +++ exited with 0 +++
[pid  6557] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6532, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=38 /* 0.38 s */} ---
[pid  6557] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[  132.177067][ T6557] XFS (loop3): Quotacheck: Done.
[pid  6557] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5062] <... restart_syscall resumed>) = 0
[pid  6557] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6557] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5062] umount2("./27", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  6557] read(-1,  <unfinished ...>
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  6557] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6557] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6557] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./27/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6557] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./27/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6557] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] unlink("./27/binderfs")     = 0
[pid  5062] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6557] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6557] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6557] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6557] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6557] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6557] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6557] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6557] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6557] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6557] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6557] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6557] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6557] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  132.259329][ T6557] syz-executor246 (6557): drop_caches: 2
[  132.265879][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6557] sendfile(5, 4, [100] => [671], 571) = 571
[pid  6557] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6557] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6557] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6557] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6557] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6557] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[  132.311373][ T6557] syz-executor246 (6557): drop_caches: 2
[pid  6557] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6557] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6557] exit_group(0)               = ?
[pid  6557] +++ exited with 0 +++
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6557, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=27 /* 0.27 s */} ---
[pid  5065] umount2("./27", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] umount2("./27/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./27/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] unlink("./27/binderfs")     = 0
[  132.434858][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5065] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6576] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6575] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6577] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6572] <... write resumed>)        = 16777216
[pid  6572] munmap(0x7f6d986f1000, 138412032) = 0
[pid  6572] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  6572] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  6572] <... ioctl resumed>)        = 0
[pid  6572] close(3)                    = 0
[pid  6572] mkdir("./file0", 0777)      = 0
[pid  6572] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5062] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./27/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[  132.744329][ T6572] loop4: detected capacity change from 0 to 32768
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./27/file0")         = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./27")               = 0
[pid  5062] mkdir("./28", 0777)         = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3)                    = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6583 attached
[  132.818735][ T6572] XFS (loop4): DAX unsupported by block device. Turning off DAX.
, child_tidptr=0x55555697c750) = 6583
[pid  6583] set_robust_list(0x55555697c760, 24) = 0
[pid  6583] chdir("./28")               = 0
[pid  6583] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6583] setpgid(0, 0)               = 0
[  132.863548][ T6572] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6583] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5065] <... umount2 resumed>)      = 0
[pid  6583] write(3, "1000", 4)         = 4
[pid  6583] close(3)                    = 0
[pid  6583] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6583] memfd_create("syzkaller", 0) = 3
[pid  5065] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6583] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./27/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4,  <unfinished ...>
[pid  6577] <... write resumed>)        = 16777216
[pid  5065] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  6577] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./27/file0")         = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./27")               = 0
[pid  5065] mkdir("./28", 0777)         = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6587 attached
 <unfinished ...>
[pid  6587] set_robust_list(0x55555697c760, 24) = 0
[pid  6587] chdir("./28" <unfinished ...>
[pid  6577] <... munmap resumed>)       = 0
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 6587
[pid  6577] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid  6587] <... chdir resumed>)        = 0
[pid  6575] <... write resumed>)        = 16777216
[pid  6577] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6587] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6587] setpgid(0, 0 <unfinished ...>
[pid  6575] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6587] <... setpgid resumed>)      = 0
[pid  6577] <... ioctl resumed>)        = 0
[pid  6587] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6576] <... write resumed>)        = 16777216
[pid  6576] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6587] write(3, "1000", 4)         = 4
[pid  6587] close(3)                    = 0
[pid  6587] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6587] memfd_create("syzkaller", 0) = 3
[pid  6587] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6577] close(3)                    = 0
[pid  6577] mkdir("./file0", 0777)      = 0
[  133.084057][ T6577] loop2: detected capacity change from 0 to 32768
[pid  6577] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6576] <... munmap resumed>)       = 0
[pid  6575] <... munmap resumed>)       = 0
[pid  6576] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6575] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  6576] <... openat resumed>)       = 4
[pid  6576] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6575] <... openat resumed>)       = 4
[  133.143938][ T6572] XFS (loop4): Ending clean mount
[  133.151835][ T6572] XFS (loop4): Quotacheck needed: Please wait.
[  133.173183][ T6576] loop1: detected capacity change from 0 to 32768
[  133.187242][ T6577] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[pid  6575] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6576] close(3 <unfinished ...>
[pid  6572] <... mount resumed>)        = 0
[pid  6576] <... close resumed>)        = 0
[pid  6576] mkdir("./file0", 0777 <unfinished ...>
[pid  6575] <... ioctl resumed>)        = 0
[pid  6576] <... mkdir resumed>)        = 0
[pid  6575] close(3 <unfinished ...>
[pid  6576] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6575] <... close resumed>)        = 0
[pid  6575] mkdir("./file0", 0777)      = 0
[pid  6575] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6572] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6572] chdir("./file0")            = 0
[pid  6572] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6572] close(4)                    = 0
[  133.214849][ T6575] loop5: detected capacity change from 0 to 32768
[  133.223933][ T6572] XFS (loop4): Quotacheck: Done.
[  133.230119][ T6577] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6572] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6572] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6572] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6572] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6572] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6572] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6572] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6572] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[  133.287474][ T6576] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  133.308901][ T6575] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[pid  6572] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6583] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6572] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6572] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6572] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6572] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6572] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[  133.341867][ T6576] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  133.369573][ T6575] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6572] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6572] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6572] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6572] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6572] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6572] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  133.397825][ T6577] XFS (loop2): Ending clean mount
[  133.436061][ T6577] XFS (loop2): Quotacheck needed: Please wait.
[  133.449675][ T6572] syz-executor246 (6572): drop_caches: 2
[  133.461450][ T6576] XFS (loop1): Ending clean mount
[pid  6572] sendfile(5, 4, [100] <unfinished ...>
[pid  6587] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6572] <... sendfile resumed> => [671], 571) = 571
[pid  6572] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6572] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6572] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6572] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[  133.500572][ T6576] XFS (loop1): Quotacheck needed: Please wait.
[  133.509142][ T6572] syz-executor246 (6572): drop_caches: 2
[pid  6572] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6572] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6572] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6572] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6572] exit_group(0)               = ?
[pid  6572] +++ exited with 0 +++
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6572, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=29 /* 0.29 s */} ---
[pid  5066] umount2("./27", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./27/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./27/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] unlink("./27/binderfs")     = 0
[  133.601828][ T6577] XFS (loop2): Quotacheck: Done.
[pid  5066] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6577] <... mount resumed>)        = 0
[pid  6577] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6577] chdir("./file0")            = 0
[pid  6577] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6577] close(4)                    = 0
[pid  6577] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[  133.623296][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6577] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6583] <... write resumed>)        = 16777216
[pid  6577] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6583] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6577] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6577] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6577] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[  133.683555][ T6575] XFS (loop5): Ending clean mount
[  133.694830][ T6575] XFS (loop5): Quotacheck needed: Please wait.
[pid  6577] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6577] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6577] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6577] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6577] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6577] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6577] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6577] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6577] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[  133.724607][ T6576] XFS (loop1): Quotacheck: Done.
[pid  6577] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6577] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6577] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6577] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6577] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6576] <... mount resumed>)        = 0
[pid  6575] <... mount resumed>)        = 0
[pid  6577] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6575] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6577] <... openat resumed>)       = 5
[pid  6576] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6575] <... openat resumed>)       = 3
[pid  6577] sendfile(5, 4, [100] <unfinished ...>
[pid  6576] <... openat resumed>)       = 3
[pid  6575] chdir("./file0" <unfinished ...>
[pid  6576] chdir("./file0" <unfinished ...>
[pid  6575] <... chdir resumed>)        = 0
[pid  6576] <... chdir resumed>)        = 0
[pid  6576] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6575] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6576] <... ioctl resumed>)        = 0
[pid  6576] close(4 <unfinished ...>
[pid  6575] <... ioctl resumed>)        = 0
[pid  6575] close(4 <unfinished ...>
[pid  6576] <... close resumed>)        = 0
[pid  6575] <... close resumed>)        = 0
[pid  6576] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6576] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6575] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6576] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6576] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6575] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6576] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6575] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6576] ftruncate(-1, 33587195 <unfinished ...>
[pid  6575] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6576] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6575] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6576] read(-1,  <unfinished ...>
[pid  6575] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6576] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6576] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6575] ftruncate(-1, 33587195 <unfinished ...>
[pid  6576] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6576] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6575] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6576] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6575] read(-1,  <unfinished ...>
[pid  6583] <... munmap resumed>)       = 0
[pid  6576] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6583] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  6576] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6575] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6576] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6575] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6583] <... openat resumed>)       = 4
[pid  6576] read(-1,  <unfinished ...>
[pid  6575] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6576] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[  133.767103][ T6575] XFS (loop5): Quotacheck: Done.
[  133.784845][ T6577] syz-executor246 (6577): drop_caches: 2
[pid  6583] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6576] write(-1, NULL, 0 <unfinished ...>
[pid  6575] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6576] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6576] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6575] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6575] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6576] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6575] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6576] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6576] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6575] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6576] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6576] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6576] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6575] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6583] <... ioctl resumed>)        = 0
[pid  6576] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6575] read(-1,  <unfinished ...>
[pid  6583] close(3 <unfinished ...>
[pid  6576] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6575] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6576] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6576] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6575] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6575] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6576] <... openat resumed>)       = 4
[pid  6575] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6576] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6575] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[  133.828451][ T6577] syz-executor246 (6577): drop_caches: 2
[  133.838152][ T6583] loop0: detected capacity change from 0 to 32768
[pid  6583] <... close resumed>)        = 0
[pid  6577] <... sendfile resumed> => [671], 571) = 571
[pid  6576] <... openat resumed>)       = 5
[pid  6575] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6577] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6576] sendfile(5, 4, [100] <unfinished ...>
[pid  6575] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6575] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6577] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6575] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6575] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6577] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6583] mkdir("./file0", 0777 <unfinished ...>
[pid  6577] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6583] <... mkdir resumed>)        = 0
[pid  6577] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6575] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6575] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6577] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6577] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6577] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6577] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6577] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6577] exit_group(0)               = ?
[pid  6577] +++ exited with 0 +++
[pid  6575] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6575] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6577, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=29 /* 0.29 s */} ---
[pid  6583] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6575] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6575] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5064] umount2("./27", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6575] <... openat resumed>)       = 4
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6575] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5064] <... openat resumed>)       = 3
[pid  6575] sendfile(5, 4, [100] <unfinished ...>
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[  133.908295][ T6576] syz-executor246 (6576): drop_caches: 2
[  133.946335][ T6575] syz-executor246 (6575): drop_caches: 2
[pid  5064] umount2("./27/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./27/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./27/binderfs")     = 0
[pid  5064] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6575] <... sendfile resumed> => [671], 571) = 571
[  133.977988][ T6576] syz-executor246 (6576): drop_caches: 2
[  133.999422][ T6583] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  134.015797][ T6575] syz-executor246 (6575): drop_caches: 2
[pid  6576] <... sendfile resumed> => [671], 571) = 571
[pid  6575] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6576] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6575] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6575] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6576] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6575] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6576] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6575] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6576] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6575] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6576] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6575] ftruncate(-1, 33587199 <unfinished ...>
[pid  6576] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6576] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6576] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6575] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6575] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6576] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6576] open(NULL, O_RDONLY <unfinished ...>
[pid  6575] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6576] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6575] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6576] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6575] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6576] read(-1,  <unfinished ...>
[pid  6575] read(-1,  <unfinished ...>
[pid  6576] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6575] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6575] exit_group(0 <unfinished ...>
[pid  6576] exit_group(0 <unfinished ...>
[pid  6575] <... exit_group resumed>)   = ?
[pid  6587] <... write resumed>)        = 16777216
[pid  6576] <... exit_group resumed>)   = ?
[pid  6575] +++ exited with 0 +++
[  134.044051][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  134.057251][ T6583] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6575, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=30 /* 0.30 s */} ---
[pid  6587] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6576] +++ exited with 0 +++
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6576, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} ---
[pid  5063] umount2("./28", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] umount2("./28", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5067] <... openat resumed>)       = 3
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  5063] umount2("./28/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./28/binderfs",  <unfinished ...>
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./28/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] unlink("./28/binderfs" <unfinished ...>
[pid  5067] newfstatat(AT_FDCWD, "./28/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] <... unlink resumed>)       = 0
[pid  5067] unlink("./28/binderfs" <unfinished ...>
[pid  5063] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... unlink resumed>)       = 0
[  134.165777][ T6583] XFS (loop0): Ending clean mount
[  134.177919][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  134.177941][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5067] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6587] <... munmap resumed>)       = 0
[pid  6587] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  6587] <... openat resumed>)       = 4
[pid  6587] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  5064] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6587] <... ioctl resumed>)        = 0
[pid  5066] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6587] close(3 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./27/file0",  <unfinished ...>
[pid  6587] <... close resumed>)        = 0
[pid  5066] newfstatat(AT_FDCWD, "./27/file0",  <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6587] mkdir("./file0", 0777 <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6587] <... mkdir resumed>)        = 0
[pid  5066] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] <... openat resumed>)       = 4
[pid  5066] openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5064] newfstatat(4, "",  <unfinished ...>
[pid  5066] <... openat resumed>)       = 4
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] newfstatat(4, "",  <unfinished ...>
[pid  5064] getdents64(4,  <unfinished ...>
[pid  6587] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5064] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5066] close(4)                    = 0
[  134.214902][ T6583] XFS (loop0): Quotacheck needed: Please wait.
[  134.233956][ T6587] loop3: detected capacity change from 0 to 32768
[pid  5064] rmdir("./27/file0")         = 0
[pid  5066] rmdir("./27/file0")         = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./27" <unfinished ...>
[pid  6583] <... mount resumed>)        = 0
[pid  5064] <... rmdir resumed>)        = 0
[pid  6583] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5066] getdents64(3,  <unfinished ...>
[pid  6583] <... openat resumed>)       = 3
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] mkdir("./28", 0777 <unfinished ...>
[pid  6583] chdir("./file0" <unfinished ...>
[pid  5066] close(3 <unfinished ...>
[pid  5064] <... mkdir resumed>)        = 0
[pid  6583] <... chdir resumed>)        = 0
[pid  5066] <... close resumed>)        = 0
[pid  6583] ioctl(4, LOOP_CLR_FD <unfinished ...>
[  134.283860][ T6583] XFS (loop0): Quotacheck: Done.
[pid  5066] rmdir("./27" <unfinished ...>
[pid  6583] <... ioctl resumed>)        = 0
[pid  5066] <... rmdir resumed>)        = 0
[pid  6583] close(4 <unfinished ...>
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5066] mkdir("./28", 0777)         = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  6583] <... close resumed>)        = 0
[pid  5066] close(3 <unfinished ...>
[pid  5064] <... openat resumed>)       = 3
[pid  5066] <... close resumed>)        = 0
[pid  5064] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6583] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5064] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
./strace-static-x86_64: Process 6626 attached
[pid  6583] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5064] close(3 <unfinished ...>
[pid  6626] set_robust_list(0x55555697c760, 24) = 0
[pid  6626] chdir("./28")               = 0
[pid  6583] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 6626
[pid  6626] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5064] <... close resumed>)        = 0
[pid  6626] <... prctl resumed>)        = 0
[pid  6583] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[  134.304491][ T6587] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[pid  6583] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 6627
[pid  6583] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6583] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6583] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6583] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6583] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6583] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6583] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6583] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6583] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6583] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6583] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6583] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6583] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6583] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6583] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6583] openat(AT_FDCWD, "/proc/partitions", O_RDONLY./strace-static-x86_64: Process 6627 attached
 <unfinished ...>
[pid  6626] setpgid(0, 0 <unfinished ...>
[pid  6583] <... openat resumed>)       = 4
[pid  6583] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6583] sendfile(5, 4, [100] <unfinished ...>
[pid  6627] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6626] <... setpgid resumed>)      = 0
[pid  6626] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6627] <... set_robust_list resumed>) = 0
[pid  6627] chdir("./28" <unfinished ...>
[pid  6626] <... openat resumed>)       = 3
[pid  6627] <... chdir resumed>)        = 0
[pid  6626] write(3, "1000", 4 <unfinished ...>
[pid  6627] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6626] <... write resumed>)        = 4
[pid  6627] <... prctl resumed>)        = 0
[pid  6626] close(3 <unfinished ...>
[pid  6627] setpgid(0, 0 <unfinished ...>
[pid  6626] <... close resumed>)        = 0
[pid  6626] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6627] <... setpgid resumed>)      = 0
[pid  6626] <... symlink resumed>)      = 0
[pid  6627] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6626] memfd_create("syzkaller", 0) = 3
[pid  6626] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[  134.355629][ T6587] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  134.372363][ T6583] syz-executor246 (6583): drop_caches: 2
[pid  6627] write(3, "1000", 4)         = 4
[pid  6626] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6627] close(3)                    = 0
[pid  6627] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6583] <... sendfile resumed> => [671], 571) = 571
[pid  6627] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6583] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6583] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6583] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6583] ftruncate(-1, 33587199 <unfinished ...>
[pid  6627] <... memfd_create resumed>) = 3
[pid  6583] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6627] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6583] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6627] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6583] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6583] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[  134.395866][ T6583] syz-executor246 (6583): drop_caches: 2
[pid  6583] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6583] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6583] exit_group(0)               = ?
[pid  6583] +++ exited with 0 +++
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6583, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=34 /* 0.34 s */} ---
[pid  5062] umount2("./28", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./28/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./28/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./28/binderfs")     = 0
[  134.501624][ T6587] XFS (loop3): Ending clean mount
[  134.516926][ T6587] XFS (loop3): Quotacheck needed: Please wait.
[pid  5062] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6587] <... mount resumed>)        = 0
[pid  6587] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5067] <... umount2 resumed>)      = 0
[pid  6587] chdir("./file0" <unfinished ...>
[pid  5067] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6587] <... chdir resumed>)        = 0
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6587] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5067] newfstatat(AT_FDCWD, "./28/file0",  <unfinished ...>
[pid  6587] close(4 <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6587] <... close resumed>)        = 0
[pid  5067] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6587] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6587] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6587] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6587] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6587] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[  134.549637][ T6587] XFS (loop3): Quotacheck: Done.
[  134.555715][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6587] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5067] openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6587] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6587] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5067] <... openat resumed>)       = 4
[pid  6587] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6587] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6587] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6587] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6587] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6587] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6587] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6587] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6587] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5067] newfstatat(4, "",  <unfinished ...>
[pid  6587] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6587] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] getdents64(4,  <unfinished ...>
[pid  6587] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5067] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  6587] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5067] getdents64(4,  <unfinished ...>
[pid  6587] <... openat resumed>)       = 4
[pid  5067] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  6587] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5067] close(4 <unfinished ...>
[pid  6587] <... openat resumed>)       = 5
[pid  6587] sendfile(5, 4, [100] <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  5067] rmdir("./28/file0")         = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./28")               = 0
[pid  5067] mkdir("./29", 0777)         = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[  134.638208][ T6587] syz-executor246 (6587): drop_caches: 2
[pid  5067] close(3)                    = 0
[pid  5063] <... umount2 resumed>)      = 0
[pid  5063] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./28/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4)                    = 0
[pid  5063] rmdir("./28/file0" <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 6631
./strace-static-x86_64: Process 6631 attached
[pid  6631] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  6631] <... set_robust_list resumed>) = 0
[pid  6631] chdir("./29" <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  6631] <... chdir resumed>)        = 0
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3 <unfinished ...>
[pid  6631] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5063] rmdir("./28")               = 0
[pid  5063] mkdir("./29", 0777)         = 0
[pid  6631] <... prctl resumed>)        = 0
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6631] setpgid(0, 0 <unfinished ...>
[pid  5063] <... openat resumed>)       = 3
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6631] <... setpgid resumed>)      = 0
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5063] close(3 <unfinished ...>
[  134.687647][ T6587] syz-executor246 (6587): drop_caches: 2
[pid  6631] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  6631] <... openat resumed>)       = 3
[pid  6587] <... sendfile resumed> => [671], 571) = 571
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6631] write(3, "1000", 4 <unfinished ...>
[pid  6587] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6587] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6631] <... write resumed>)        = 4
[pid  6587] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6631] close(3 <unfinished ...>
[pid  6587] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 6632
./strace-static-x86_64: Process 6632 attached
[pid  6587] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6632] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6631] <... close resumed>)        = 0
[pid  6587] ftruncate(-1, 33587199 <unfinished ...>
[pid  6632] <... set_robust_list resumed>) = 0
[pid  6587] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6632] chdir("./29" <unfinished ...>
[pid  6587] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6632] <... chdir resumed>)        = 0
[pid  6587] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6632] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6587] open(NULL, O_RDONLY <unfinished ...>
[pid  6632] <... prctl resumed>)        = 0
[pid  6632] setpgid(0, 0 <unfinished ...>
[pid  6631] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6587] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6632] <... setpgid resumed>)      = 0
[pid  6587] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6632] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6631] <... symlink resumed>)      = 0
[pid  6587] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6632] <... openat resumed>)       = 3
[pid  6587] read(-1,  <unfinished ...>
[pid  6632] write(3, "1000", 4 <unfinished ...>
[pid  6587] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6632] <... write resumed>)        = 4
[pid  6587] exit_group(0 <unfinished ...>
[pid  6632] close(3 <unfinished ...>
[pid  6587] <... exit_group resumed>)   = ?
[pid  6632] <... close resumed>)        = 0
[pid  6631] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6587] +++ exited with 0 +++
[pid  6632] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6587, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=32 /* 0.32 s */} ---
[pid  6632] <... symlink resumed>)      = 0
[pid  5065] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  6631] <... memfd_create resumed>) = 3
[pid  6632] memfd_create("syzkaller", 0) = 3
[pid  6631] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6632] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5065] umount2("./28", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6632] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6631] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] umount2("./28/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./28/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] unlink("./28/binderfs")     = 0
[pid  5065] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[  134.809482][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6626] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6627] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  5062] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./28/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./28/file0")         = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./28")               = 0
[pid  5062] mkdir("./29", 0777)         = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3)                    = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6633 attached
, child_tidptr=0x55555697c750) = 6633
[pid  6633] set_robust_list(0x55555697c760, 24) = 0
[pid  6633] chdir("./29")               = 0
[pid  6633] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6633] setpgid(0, 0)               = 0
[pid  6633] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6633] write(3, "1000", 4)         = 4
[pid  6633] close(3)                    = 0
[pid  6633] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6633] memfd_create("syzkaller", 0) = 3
[pid  6633] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6631] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6632] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  5065] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./28/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./28/file0" <unfinished ...>
[pid  6627] <... write resumed>)        = 16777216
[pid  6627] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5065] <... rmdir resumed>)        = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./28" <unfinished ...>
[pid  6627] <... munmap resumed>)       = 0
[pid  5065] <... rmdir resumed>)        = 0
[pid  5065] mkdir("./29", 0777 <unfinished ...>
[pid  6627] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5065] <... mkdir resumed>)        = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  6627] <... openat resumed>)       = 4
[pid  5065] <... openat resumed>)       = 3
[pid  5065] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6627] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5065] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5065] close(3 <unfinished ...>
[pid  6627] <... ioctl resumed>)        = 0
[pid  5065] <... close resumed>)        = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6627] close(3)                    = 0
[pid  6627] mkdir("./file0", 0777./strace-static-x86_64: Process 6634 attached
)      = 0
[pid  6626] <... write resumed>)        = 16777216
[pid  6634] set_robust_list(0x55555697c760, 24) = 0
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 6634
[pid  6627] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6634] chdir("./29")               = 0
[pid  6634] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6626] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6634] setpgid(0, 0)               = 0
[  135.394099][ T6627] loop2: detected capacity change from 0 to 32768
[pid  6634] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6634] write(3, "1000", 4)         = 4
[pid  6633] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6634] close(3 <unfinished ...>
[pid  6632] <... write resumed>)        = 16777216
[pid  6634] <... close resumed>)        = 0
[pid  6634] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6632] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6626] <... munmap resumed>)       = 0
[pid  6634] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6626] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  6634] <... memfd_create resumed>) = 3
[pid  6626] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6634] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6632] <... munmap resumed>)       = 0
[pid  6626] <... ioctl resumed>)        = 0
[pid  6626] close(3)                    = 0
[pid  6626] mkdir("./file0", 0777)      = 0
[pid  6626] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6632] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[  135.479900][ T6627] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  135.496758][ T6626] loop4: detected capacity change from 0 to 32768
[  135.503929][ T6627] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6632] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6632] close(3)                    = 0
[pid  6632] mkdir("./file0", 0777)      = 0
[  135.553075][ T6632] loop1: detected capacity change from 0 to 32768
[  135.587427][ T6627] XFS (loop2): Ending clean mount
[  135.598473][ T6627] XFS (loop2): Quotacheck needed: Please wait.
[pid  6632] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6627] <... mount resumed>)        = 0
[pid  6627] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6627] chdir("./file0")            = 0
[pid  6627] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6627] close(4)                    = 0
[pid  6627] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6627] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6627] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6627] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6627] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6627] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6627] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6627] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6627] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6627] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6627] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6627] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6627] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6627] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6627] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6627] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6627] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6627] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6627] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6627] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  135.624969][ T6626] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  135.632972][ T6627] XFS (loop2): Quotacheck: Done.
[  135.645492][ T6626] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  135.663088][ T6632] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  135.673408][ T6632] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6627] sendfile(5, 4, [100] <unfinished ...>
[pid  6634] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6631] <... write resumed>)        = 16777216
[  135.725199][ T6627] syz-executor246 (6627): drop_caches: 2
[pid  6631] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6627] <... sendfile resumed> => [671], 571) = 571
[pid  6631] <... munmap resumed>)       = 0
[pid  6633] <... write resumed>)        = 16777216
[pid  6627] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6633] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6627] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6631] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  6627] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6627] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6631] <... openat resumed>)       = 4
[pid  6627] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6631] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6627] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6627] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6627] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6627] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[  135.815461][ T6627] syz-executor246 (6627): drop_caches: 2
[  135.832290][ T6632] XFS (loop1): Ending clean mount
[  135.852058][ T6626] XFS (loop4): Ending clean mount
[  135.858727][ T6631] loop5: detected capacity change from 0 to 32768
[pid  6627] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6627] exit_group(0)               = ?
[pid  6627] +++ exited with 0 +++
[pid  6631] <... ioctl resumed>)        = 0
[pid  6633] <... munmap resumed>)       = 0
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6627, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=28 /* 0.28 s */} ---
[pid  6631] close(3 <unfinished ...>
[pid  6633] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  6631] <... close resumed>)        = 0
[  135.871174][ T6632] XFS (loop1): Quotacheck needed: Please wait.
[  135.882996][ T6626] XFS (loop4): Quotacheck needed: Please wait.
[pid  6633] <... openat resumed>)       = 4
[pid  6631] mkdir("./file0", 0777 <unfinished ...>
[pid  6633] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6631] <... mkdir resumed>)        = 0
[pid  5064] umount2("./28", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6631] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6633] <... ioctl resumed>)        = 0
[pid  6626] <... mount resumed>)        = 0
[pid  5064] openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5064] newfstatat(3, "",  <unfinished ...>
[pid  6633] close(3 <unfinished ...>
[pid  6632] <... mount resumed>)        = 0
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6633] <... close resumed>)        = 0
[pid  6632] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5064] getdents64(3,  <unfinished ...>
[pid  6633] mkdir("./file0", 0777 <unfinished ...>
[pid  6632] <... openat resumed>)       = 3
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6633] <... mkdir resumed>)        = 0
[pid  6632] chdir("./file0" <unfinished ...>
[pid  5064] umount2("./28/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6632] <... chdir resumed>)        = 0
[pid  6632] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6633] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6632] <... ioctl resumed>)        = 0
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6632] close(4 <unfinished ...>
[pid  5064] newfstatat(AT_FDCWD, "./28/binderfs",  <unfinished ...>
[pid  6632] <... close resumed>)        = 0
[pid  6632] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6632] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6626] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6626] chdir("./file0")            = 0
[  135.912705][ T6633] loop0: detected capacity change from 0 to 32768
[  135.923307][ T6626] XFS (loop4): Quotacheck: Done.
[  135.923550][ T6632] XFS (loop1): Quotacheck: Done.
[pid  6632] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6626] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5064] unlink("./28/binderfs" <unfinished ...>
[pid  6632] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6632] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6626] <... ioctl resumed>)        = 0
[pid  5064] <... unlink resumed>)       = 0
[pid  6632] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6626] close(4 <unfinished ...>
[pid  5064] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6632] ftruncate(-1, 33587195 <unfinished ...>
[pid  6626] <... close resumed>)        = 0
[pid  6626] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6632] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6632] read(-1,  <unfinished ...>
[pid  6626] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6632] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6626] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6632] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6626] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6632] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6632] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6626] ftruncate(-1, 33587195 <unfinished ...>
[pid  6632] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6626] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6632] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6626] read(-1,  <unfinished ...>
[pid  6632] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6626] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6632] write(-1, NULL, 0 <unfinished ...>
[pid  6626] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6632] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6626] <... openat resumed>)       = -1 EFAULT (Bad address)
[  135.956881][ T6631] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  135.970082][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  135.986059][ T6631] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6632] write(-1, NULL, 0 <unfinished ...>
[pid  6626] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6632] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6626] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6632] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6626] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6626] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6626] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6626] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6632] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6626] write(-1, NULL, 0 <unfinished ...>
[pid  6632] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6626] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6632] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6626] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6632] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6626] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6632] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6626] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6632] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6626] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6632] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6626] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6632] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6626] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6632] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6626] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6626] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6626] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6626] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6632] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6626] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6632] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6626] <... openat resumed>)       = 5
[pid  6632] <... openat resumed>)       = 4
[pid  6626] sendfile(5, 4, [100] <unfinished ...>
[pid  6632] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  136.001960][ T6633] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  136.020649][ T6633] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  136.077448][ T6626] syz-executor246 (6626): drop_caches: 2
[  136.087074][ T6632] syz-executor246 (6632): drop_caches: 2
[  136.114790][ T6632] syz-executor246 (6632): drop_caches: 2
[pid  6632] sendfile(5, 4, [100] => [671], 571) = 571
[pid  6626] <... sendfile resumed> => [671], 571) = 571
[pid  6632] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6632] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6626] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6632] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6626] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6632] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6626] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6632] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6626] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6632] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6626] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6632] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6626] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6632] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6626] ftruncate(-1, 33587199 <unfinished ...>
[pid  6632] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6626] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6632] read(-1,  <unfinished ...>
[pid  6626] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6632] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6632] exit_group(0 <unfinished ...>
[pid  6626] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6632] <... exit_group resumed>)   = ?
[pid  6626] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6626] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6626] read(-1,  <unfinished ...>
[pid  6632] +++ exited with 0 +++
[pid  6626] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[  136.124260][ T6626] syz-executor246 (6626): drop_caches: 2
[  136.126299][ T6631] XFS (loop5): Ending clean mount
[  136.161615][ T6631] XFS (loop5): Quotacheck needed: Please wait.
[pid  6634] <... write resumed>)        = 16777216
[pid  6626] exit_group(0 <unfinished ...>
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6632, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=30 /* 0.30 s */} ---
[pid  6626] <... exit_group resumed>)   = ?
[pid  5063] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  6626] +++ exited with 0 +++
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6626, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=36 /* 0.36 s */} ---
[pid  6634] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5066] umount2("./28", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] umount2("./29", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5063] openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] <... openat resumed>)       = 3
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./28/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[  136.179389][ T6633] XFS (loop0): Ending clean mount
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5066] newfstatat(AT_FDCWD, "./28/binderfs",  <unfinished ...>
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./29/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] unlink("./28/binderfs")     = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./29/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] unlink("./29/binderfs")     = 0
[pid  6634] <... munmap resumed>)       = 0
[pid  6631] <... mount resumed>)        = 0
[pid  5063] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6631] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6634] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  6631] <... openat resumed>)       = 3
[pid  6634] <... openat resumed>)       = 4
[pid  6631] chdir("./file0")            = 0
[  136.209623][ T6631] XFS (loop5): Quotacheck: Done.
[  136.223132][ T6633] XFS (loop0): Quotacheck needed: Please wait.
[  136.234552][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  136.241275][ T6633] XFS (loop0): Quotacheck: Done.
[pid  6631] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6633] <... mount resumed>)        = 0
[pid  6634] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6631] <... ioctl resumed>)        = 0
[pid  6631] close(4)                    = 0
[pid  6633] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6631] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6633] <... openat resumed>)       = 3
[pid  6631] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6633] chdir("./file0" <unfinished ...>
[pid  6631] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6633] <... chdir resumed>)        = 0
[pid  6631] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6633] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6631] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6633] <... ioctl resumed>)        = 0
[pid  6631] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6633] close(4 <unfinished ...>
[pid  6631] ftruncate(-1, 33587195 <unfinished ...>
[pid  6633] <... close resumed>)        = 0
[pid  6631] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6633] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6633] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6633] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6633] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6631] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6631] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6633] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6633] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6634] <... ioctl resumed>)        = 0
[pid  6633] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6634] close(3 <unfinished ...>
[pid  6633] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6631] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6631] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6634] <... close resumed>)        = 0
[pid  6633] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6634] mkdir("./file0", 0777 <unfinished ...>
[pid  6633] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6631] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6634] <... mkdir resumed>)        = 0
[pid  6633] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6631] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6633] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6631] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6633] read(-1,  <unfinished ...>
[pid  6631] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6634] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6633] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6633] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6633] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6633] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6631] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6631] read(-1,  <unfinished ...>
[pid  6633] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6633] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6631] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6633] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[  136.252477][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  136.268670][ T6634] loop3: detected capacity change from 0 to 32768
[pid  6633] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6631] write(-1, NULL, 0 <unfinished ...>
[pid  6633] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6631] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6633] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6631] write(-1, NULL, 0 <unfinished ...>
[pid  6633] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6631] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6633] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6631] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6633] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6631] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6633] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6631] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6633] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  6633] <... openat resumed>)       = 4
[pid  6631] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6631] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6633] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6633] sendfile(5, 4, [100] <unfinished ...>
[pid  6631] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6631] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6631] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6631] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6631] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5064] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6631] <... openat resumed>)       = 4
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6631] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5064] newfstatat(AT_FDCWD, "./28/file0",  <unfinished ...>
[pid  6631] <... openat resumed>)       = 5
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6631] sendfile(5, 4, [100] <unfinished ...>
[pid  5064] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./28/file0")         = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./28")               = 0
[pid  5064] mkdir("./29", 0777)         = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[  136.377665][ T6634] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  136.379693][ T6631] syz-executor246 (6631): drop_caches: 2
[  136.398576][ T6633] syz-executor246 (6633): drop_caches: 2
[  136.404904][ T6634] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5064] close(3 <unfinished ...>
[pid  6631] <... sendfile resumed> => [671], 571) = 571
[pid  5064] <... close resumed>)        = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6633] <... sendfile resumed> => [671], 571) = 571
[pid  6631] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 6680
./strace-static-x86_64: Process 6680 attached
[pid  6633] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6631] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6680] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6633] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6631] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6680] <... set_robust_list resumed>) = 0
[pid  6633] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6631] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6631] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6633] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6631] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6680] chdir("./29" <unfinished ...>
[pid  6633] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6631] ftruncate(-1, 33587199 <unfinished ...>
[pid  6680] <... chdir resumed>)        = 0
[pid  6633] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6631] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6633] ftruncate(-1, 33587199 <unfinished ...>
[pid  6631] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6633] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6631] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6633] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6631] open(NULL, O_RDONLY <unfinished ...>
[pid  6633] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6631] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6633] open(NULL, O_RDONLY <unfinished ...>
[pid  6631] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6633] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6680] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6633] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6631] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6680] <... prctl resumed>)        = 0
[pid  6633] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6631] read(-1,  <unfinished ...>
[pid  6680] setpgid(0, 0 <unfinished ...>
[pid  6633] read(-1,  <unfinished ...>
[pid  6631] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6680] <... setpgid resumed>)      = 0
[pid  6633] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6631] exit_group(0 <unfinished ...>
[pid  6680] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6633] exit_group(0 <unfinished ...>
[pid  6631] <... exit_group resumed>)   = ?
[pid  6633] <... exit_group resumed>)   = ?
[pid  6680] <... openat resumed>)       = 3
[pid  6631] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6631, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=35 /* 0.35 s */} ---
[  136.435855][ T6631] syz-executor246 (6631): drop_caches: 2
[  136.444747][ T6633] syz-executor246 (6633): drop_caches: 2
[pid  6680] write(3, "1000", 4 <unfinished ...>
[pid  6633] +++ exited with 0 +++
[pid  5067] umount2("./29", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6680] <... write resumed>)        = 4
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6633, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=37 /* 0.37 s */} ---
[pid  6680] close(3 <unfinished ...>
[pid  5067] openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6680] <... close resumed>)        = 0
[pid  5067] <... openat resumed>)       = 3
[pid  6680] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  6680] <... symlink resumed>)      = 0
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6680] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5062] umount2("./29", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6680] <... memfd_create resumed>) = 3
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6680] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5067] umount2("./29/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6680] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5067] newfstatat(AT_FDCWD, "./29/binderfs",  <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  5067] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  5067] unlink("./29/binderfs" <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] <... unlink resumed>)       = 0
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5067] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./29/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./29/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./29/binderfs")     = 0
[pid  5062] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... umount2 resumed>)      = 0
[pid  5063] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./29/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[  136.534669][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  136.537154][ T6634] XFS (loop3): Ending clean mount
[  136.555111][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  136.572302][ T6634] XFS (loop3): Quotacheck needed: Please wait.
[pid  5063] close(4)                    = 0
[pid  5063] rmdir("./29/file0" <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  5063] <... rmdir resumed>)        = 0
[pid  5066] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3 <unfinished ...>
[pid  5066] newfstatat(AT_FDCWD, "./28/file0",  <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] rmdir("./29" <unfinished ...>
[pid  5066] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] <... rmdir resumed>)        = 0
[pid  5066] openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5066] newfstatat(4, "",  <unfinished ...>
[pid  5063] mkdir("./30", 0777 <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5063] <... mkdir resumed>)        = 0
[pid  5066] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5063] <... openat resumed>)       = 3
[pid  5066] rmdir("./28/file0" <unfinished ...>
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6634] <... mount resumed>)        = 0
[pid  5066] <... rmdir resumed>)        = 0
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5063] close(3 <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] <... close resumed>)        = 0
[pid  5066] close(3 <unfinished ...>
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6684 attached
 <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 6684
[pid  6634] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6634] chdir("./file0")            = 0
[pid  6634] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6634] close(4)                    = 0
[pid  6634] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6634] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6634] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6634] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[  136.656758][ T6634] XFS (loop3): Quotacheck: Done.
[pid  6634] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6634] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6634] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6634] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6634] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6634] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6634] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6634] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6634] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6634] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6634] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6634] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6634] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6684] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6634] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] rmdir("./28" <unfinished ...>
[pid  6684] <... set_robust_list resumed>) = 0
[pid  6684] chdir("./30" <unfinished ...>
[pid  6634] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  6684] <... chdir resumed>)        = 0
[pid  6684] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5066] mkdir("./29", 0777 <unfinished ...>
[pid  6684] <... prctl resumed>)        = 0
[pid  6684] setpgid(0, 0 <unfinished ...>
[pid  5066] <... mkdir resumed>)        = 0
[pid  6684] <... setpgid resumed>)      = 0
[pid  6684] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6634] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6634] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6684] <... openat resumed>)       = 3
[pid  6634] <... openat resumed>)       = 4
[pid  6684] write(3, "1000", 4 <unfinished ...>
[pid  6634] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  6684] <... write resumed>)        = 4
[pid  6634] <... openat resumed>)       = 5
[pid  5066] <... openat resumed>)       = 3
[pid  6684] close(3 <unfinished ...>
[pid  6634] sendfile(5, 4, [100] <unfinished ...>
[pid  5066] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6684] <... close resumed>)        = 0
[pid  5066] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6684] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5066] close(3 <unfinished ...>
[pid  6684] <... symlink resumed>)      = 0
[pid  5066] <... close resumed>)        = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6684] memfd_create("syzkaller", 0./strace-static-x86_64: Process 6685 attached
 <unfinished ...>
[pid  6685] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6684] <... memfd_create resumed>) = 3
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 6685
[pid  6685] <... set_robust_list resumed>) = 0
[pid  6685] chdir("./29" <unfinished ...>
[pid  6684] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  136.736028][ T6634] syz-executor246 (6634): drop_caches: 2
[pid  6680] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6685] <... chdir resumed>)        = 0
[pid  6685] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6685] setpgid(0, 0)               = 0
[pid  6685] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6634] <... sendfile resumed> => [671], 571) = 571
[pid  6685] write(3, "1000", 4)         = 4
[pid  6685] close(3)                    = 0
[pid  6685] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6634] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6634] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6634] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6685] <... symlink resumed>)      = 0
[pid  6634] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6634] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[  136.799465][ T6634] syz-executor246 (6634): drop_caches: 2
[pid  6634] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6685] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6634] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6634] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6634] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6634] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6685] <... memfd_create resumed>) = 3
[pid  6634] exit_group(0 <unfinished ...>
[pid  6685] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6634] <... exit_group resumed>)   = ?
[pid  6685] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6634] +++ exited with 0 +++
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6634, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=35 /* 0.35 s */} ---
[pid  5065] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5065] umount2("./29", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] umount2("./29/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./29/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] unlink("./29/binderfs")     = 0
[pid  5065] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5067] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./29/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./29/file0")         = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./29")               = 0
[pid  5067] mkdir("./30", 0777)         = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6686 attached
 <unfinished ...>
[pid  6686] set_robust_list(0x55555697c760, 24) = 0
[pid  6686] chdir("./30" <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 6686
[pid  6686] <... chdir resumed>)        = 0
[pid  6686] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6686] setpgid(0, 0)               = 0
[pid  6686] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6686] write(3, "1000", 4)         = 4
[pid  6686] close(3)                    = 0
[pid  6686] symlink("/dev/binderfs", "./binderfs") = 0
[  136.961302][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6686] memfd_create("syzkaller", 0) = 3
[pid  6686] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5062] <... umount2 resumed>)      = 0
[pid  5062] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./29/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./29/file0")         = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./29")               = 0
[pid  5062] mkdir("./30", 0777)         = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3)                    = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6687 attached
, child_tidptr=0x55555697c750) = 6687
[pid  6687] set_robust_list(0x55555697c760, 24) = 0
[pid  6687] chdir("./30")               = 0
[pid  6687] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6687] setpgid(0, 0)               = 0
[pid  6687] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6687] write(3, "1000", 4)         = 4
[pid  6687] close(3)                    = 0
[pid  6687] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6687] memfd_create("syzkaller", 0) = 3
[pid  6687] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6684] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6685] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  5065] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./29/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6680] <... write resumed>)        = 16777216
[pid  5065] <... openat resumed>)       = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./29/file0")         = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3 <unfinished ...>
[pid  6680] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5065] <... close resumed>)        = 0
[pid  5065] rmdir("./29")               = 0
[pid  5065] mkdir("./30", 0777)         = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6688 attached
, child_tidptr=0x55555697c750) = 6688
[pid  6688] set_robust_list(0x55555697c760, 24) = 0
[pid  6688] chdir("./30")               = 0
[pid  6686] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6688] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6688] setpgid(0, 0)               = 0
[pid  6680] <... munmap resumed>)       = 0
[pid  6688] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6688] write(3, "1000", 4 <unfinished ...>
[pid  6680] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  6688] <... write resumed>)        = 4
[pid  6680] <... openat resumed>)       = 4
[pid  6688] close(3 <unfinished ...>
[pid  6680] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6688] <... close resumed>)        = 0
[pid  6680] <... ioctl resumed>)        = 0
[pid  6688] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6680] close(3 <unfinished ...>
[pid  6688] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6680] <... close resumed>)        = 0
[pid  6688] <... memfd_create resumed>) = 3
[pid  6680] mkdir("./file0", 0777 <unfinished ...>
[pid  6688] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6680] <... mkdir resumed>)        = 0
[pid  6688] <... mmap resumed>)         = 0x7f6d986f1000
[  137.473014][ T6680] loop2: detected capacity change from 0 to 32768
[pid  6680] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[  137.567666][ T6680] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[pid  6687] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[  137.615408][ T6680] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6688] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6685] <... write resumed>)        = 16777216
[pid  6685] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6684] <... write resumed>)        = 16777216
[pid  6685] <... munmap resumed>)       = 0
[pid  6685] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  6684] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6685] <... openat resumed>)       = 4
[pid  6685] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6687] <... write resumed>)        = 16777216
[pid  6687] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6685] <... ioctl resumed>)        = 0
[pid  6685] close(3 <unfinished ...>
[pid  6684] <... munmap resumed>)       = 0
[pid  6685] <... close resumed>)        = 0
[pid  6685] mkdir("./file0", 0777)      = 0
[pid  6684] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[  137.858451][ T6685] loop4: detected capacity change from 0 to 32768
[  137.893944][ T6680] XFS (loop2): Ending clean mount
[pid  6684] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6685] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6687] <... munmap resumed>)       = 0
[pid  6687] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  6687] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6684] <... ioctl resumed>)        = 0
[pid  6684] close(3)                    = 0
[pid  6684] mkdir("./file0", 0777)      = 0
[pid  6684] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6687] <... ioctl resumed>)        = 0
[pid  6687] close(3)                    = 0
[pid  6687] mkdir("./file0", 0777)      = 0
[  137.903290][ T6684] loop1: detected capacity change from 0 to 32768
[  137.916342][ T6687] loop0: detected capacity change from 0 to 32768
[  137.931249][ T6680] XFS (loop2): Quotacheck needed: Please wait.
[  137.942590][ T6685] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[pid  6687] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6680] <... mount resumed>)        = 0
[pid  6680] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6680] chdir("./file0")            = 0
[pid  6680] ioctl(4, LOOP_CLR_FD)       = 0
[  137.975962][ T6680] XFS (loop2): Quotacheck: Done.
[  137.976273][ T6685] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  137.992112][ T6684] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  138.009594][ T6684] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6680] close(4 <unfinished ...>
[pid  6686] <... write resumed>)        = 16777216
[pid  6680] <... close resumed>)        = 0
[pid  6680] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6680] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6686] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6680] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6688] <... write resumed>)        = 16777216
[pid  6680] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6688] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6680] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6680] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6680] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6680] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6680] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6680] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[  138.025615][ T6687] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  138.063318][ T6687] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6680] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6680] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6680] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6680] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6680] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6680] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6680] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6686] <... munmap resumed>)       = 0
[pid  6680] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6680] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6680] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6680] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6680] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6680] sendfile(5, 4, [100] <unfinished ...>
[pid  6688] <... munmap resumed>)       = 0
[pid  6688] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  6686] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  6688] <... openat resumed>)       = 4
[pid  6686] <... openat resumed>)       = 4
[  138.094990][ T6685] XFS (loop4): Ending clean mount
[  138.097784][ T6684] XFS (loop1): Ending clean mount
[  138.116244][ T6684] XFS (loop1): Quotacheck needed: Please wait.
[  138.134390][ T6686] loop5: detected capacity change from 0 to 32768
[pid  6688] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6686] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6686] close(3)                    = 0
[pid  6686] mkdir("./file0", 0777)      = 0
[pid  6686] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6688] <... ioctl resumed>)        = 0
[pid  6684] <... mount resumed>)        = 0
[pid  6688] close(3)                    = 0
[pid  6684] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6688] mkdir("./file0", 0777 <unfinished ...>
[pid  6684] <... openat resumed>)       = 3
[pid  6684] chdir("./file0")            = 0
[pid  6684] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6688] <... mkdir resumed>)        = 0
[pid  6684] <... ioctl resumed>)        = 0
[  138.139003][ T6685] XFS (loop4): Quotacheck needed: Please wait.
[  138.141807][ T6688] loop3: detected capacity change from 0 to 32768
[  138.168568][ T6680] syz-executor246 (6680): drop_caches: 2
[  138.175727][ T6684] XFS (loop1): Quotacheck: Done.
[  138.190374][ T6685] XFS (loop4): Quotacheck: Done.
[pid  6688] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6685] <... mount resumed>)        = 0
[pid  6684] close(4 <unfinished ...>
[pid  6685] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6685] chdir("./file0")            = 0
[pid  6685] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6685] close(4)                    = 0
[pid  6685] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6685] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6684] <... close resumed>)        = 0
[pid  6685] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6684] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6685] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6684] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6685] ftruncate(-1, 33587195 <unfinished ...>
[pid  6684] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6685] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6684] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6685] read(-1,  <unfinished ...>
[pid  6684] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6685] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6684] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6685] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6684] ftruncate(-1, 33587195 <unfinished ...>
[pid  6685] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6684] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6685] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6684] read(-1,  <unfinished ...>
[pid  6685] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6684] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6685] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6684] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6685] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6684] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6685] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6684] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6685] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6684] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6685] read(-1,  <unfinished ...>
[pid  6684] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6685] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6684] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6685] write(-1, NULL, 0 <unfinished ...>
[pid  6684] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6685] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6684] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6685] write(-1, NULL, 0 <unfinished ...>
[pid  6684] read(-1,  <unfinished ...>
[pid  6685] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6684] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6685] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6684] write(-1, NULL, 0 <unfinished ...>
[pid  6685] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6684] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6685] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6684] write(-1, NULL, 0 <unfinished ...>
[pid  6685] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6684] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6685] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6684] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6685] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6684] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6685] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6684] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6685] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6684] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6685] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6684] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6685] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6684] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6685] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6684] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6685] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6684] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6685] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6684] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6685] <... openat resumed>)       = 4
[pid  6684] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6685] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6684] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6685] <... openat resumed>)       = 5
[pid  6684] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6685] sendfile(5, 4, [100] <unfinished ...>
[pid  6684] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6684] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6684] sendfile(5, 4, [100] <unfinished ...>
[pid  6680] <... sendfile resumed> => [671], 571) = 571
[pid  6680] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6680] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6680] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6680] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6680] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6680] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6680] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6680] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6680] exit_group(0)               = ?
[pid  6680] +++ exited with 0 +++
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6680, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=36 /* 0.36 s */} ---
[pid  5064] umount2("./29", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  138.204350][ T6686] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  138.205117][ T6680] syz-executor246 (6680): drop_caches: 2
[  138.214038][ T6687] XFS (loop0): Ending clean mount
[  138.234026][ T6686] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  138.234366][ T6685] syz-executor246 (6685): drop_caches: 2
[  138.247132][ T6687] XFS (loop0): Quotacheck needed: Please wait.
[pid  5064] openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./29/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./29/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[  138.261733][ T6684] syz-executor246 (6684): drop_caches: 2
[  138.291050][ T6685] syz-executor246 (6685): drop_caches: 2
[  138.292056][ T6687] XFS (loop0): Quotacheck: Done.
[pid  5064] unlink("./29/binderfs" <unfinished ...>
[pid  6687] <... mount resumed>)        = 0
[pid  6685] <... sendfile resumed> => [671], 571) = 571
[pid  6687] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6685] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6687] <... openat resumed>)       = 3
[pid  6685] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6687] chdir("./file0" <unfinished ...>
[pid  6685] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6684] <... sendfile resumed> => [671], 571) = 571
[pid  5064] <... unlink resumed>)       = 0
[pid  6687] <... chdir resumed>)        = 0
[pid  6685] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6687] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6685] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6687] <... ioctl resumed>)        = 0
[pid  6685] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6687] close(4 <unfinished ...>
[pid  6685] ftruncate(-1, 33587199 <unfinished ...>
[pid  6684] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5064] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6685] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6684] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6687] <... close resumed>)        = 0
[pid  6687] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6685] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6684] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6687] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6685] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6684] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6684] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6687] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6685] open(NULL, O_RDONLY <unfinished ...>
[pid  6684] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6687] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6685] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6684] ftruncate(-1, 33587199 <unfinished ...>
[pid  6687] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6685] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6684] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6687] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6685] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6687] ftruncate(-1, 33587195 <unfinished ...>
[pid  6685] read(-1,  <unfinished ...>
[pid  6684] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6687] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6687] read(-1,  <unfinished ...>
[pid  6685] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6684] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6687] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6685] exit_group(0 <unfinished ...>
[pid  6684] open(NULL, O_RDONLY <unfinished ...>
[pid  6687] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6685] <... exit_group resumed>)   = ?
[pid  6684] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6684] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6685] +++ exited with 0 +++
[pid  6684] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6687] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6684] read(-1,  <unfinished ...>
[pid  6687] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6684] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6685, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=31 /* 0.31 s */} ---
[pid  6687] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6684] exit_group(0 <unfinished ...>
[pid  5066] umount2("./29", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6687] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6684] <... exit_group resumed>)   = ?
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6687] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5066] openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6687] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6684] +++ exited with 0 +++
[pid  5066] <... openat resumed>)       = 3
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6684, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=32 /* 0.32 s */} ---
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5063] umount2("./30", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6687] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6687] read(-1,  <unfinished ...>
[pid  5066] umount2("./29/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6687] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... openat resumed>)       = 3
[pid  6687] write(-1, NULL, 0 <unfinished ...>
[pid  5066] newfstatat(AT_FDCWD, "./29/binderfs",  <unfinished ...>
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  6687] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[  138.308407][ T6684] syz-executor246 (6684): drop_caches: 2
[  138.318191][ T6688] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  138.330017][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  138.345687][ T6688] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6687] write(-1, NULL, 0 <unfinished ...>
[pid  5066] unlink("./29/binderfs" <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5066] <... unlink resumed>)       = 0
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] umount2("./30/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6687] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./30/binderfs",  <unfinished ...>
[pid  6687] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] unlink("./30/binderfs")     = 0
[pid  6687] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5063] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6687] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6687] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6687] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6687] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6687] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6687] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6687] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  138.418153][ T6686] XFS (loop5): Ending clean mount
[  138.426504][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  138.435603][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  138.457913][ T6686] XFS (loop5): Quotacheck needed: Please wait.
[pid  6687] sendfile(5, 4, [100] => [671], 571) = 571
[pid  6687] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6687] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6687] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6687] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6687] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6687] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6687] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6687] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[  138.470654][ T6687] syz-executor246 (6687): drop_caches: 2
[  138.484175][ T6687] syz-executor246 (6687): drop_caches: 2
[pid  6687] exit_group(0)               = ?
[pid  6687] +++ exited with 0 +++
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6687, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=37 /* 0.37 s */} ---
[pid  5062] umount2("./30", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./30/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./30/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./30/binderfs")     = 0
[  138.527207][ T6688] XFS (loop3): Ending clean mount
[pid  5062] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6686] <... mount resumed>)        = 0
[pid  6686] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6686] chdir("./file0")            = 0
[pid  6686] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6686] close(4)                    = 0
[pid  6686] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6686] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6686] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6686] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6686] read(-1,  <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  6686] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6686] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6686] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6686] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6686] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6686] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6686] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6686] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6686] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[  138.557193][ T6686] XFS (loop5): Quotacheck: Done.
[  138.562460][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  138.582843][ T6688] XFS (loop3): Quotacheck needed: Please wait.
[pid  6686] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5064] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./29/file0",  <unfinished ...>
[pid  6686] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6686] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6686] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6686] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6686] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6686] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5064] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6686] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5064] <... openat resumed>)       = 4
[pid  6686] <... openat resumed>)       = 5
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6686] sendfile(5, 4, [100] <unfinished ...>
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  6688] <... mount resumed>)        = 0
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[  138.663499][ T6688] XFS (loop3): Quotacheck: Done.
[pid  5064] rmdir("./29/file0" <unfinished ...>
[pid  6688] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5064] <... rmdir resumed>)        = 0
[pid  6688] <... openat resumed>)       = 3
[pid  5064] getdents64(3,  <unfinished ...>
[pid  6688] chdir("./file0" <unfinished ...>
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6688] <... chdir resumed>)        = 0
[pid  5064] close(3 <unfinished ...>
[pid  6688] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5064] <... close resumed>)        = 0
[pid  5064] rmdir("./29" <unfinished ...>
[pid  6688] <... ioctl resumed>)        = 0
[pid  6688] close(4 <unfinished ...>
[pid  5064] <... rmdir resumed>)        = 0
[pid  6688] <... close resumed>)        = 0
[pid  6688] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5064] mkdir("./30", 0777 <unfinished ...>
[pid  6688] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6688] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5064] <... mkdir resumed>)        = 0
[pid  6688] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  6688] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5064] <... openat resumed>)       = 3
[  138.686205][ T6686] syz-executor246 (6686): drop_caches: 2
[  138.692603][ T6686] syz-executor246 (6686): drop_caches: 2
[pid  6688] ftruncate(-1, 33587195 <unfinished ...>
[pid  5064] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6688] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6688] read(-1,  <unfinished ...>
[pid  5064] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6688] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6688] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5064] close(3 <unfinished ...>
[pid  6688] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5064] <... close resumed>)        = 0
[pid  6688] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6686] <... sendfile resumed> => [671], 571) = 571
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6686] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6686] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6688] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6686] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6686] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6686] openat(-1, NULL, O_RDONLY./strace-static-x86_64: Process 6737 attached
 <unfinished ...>
[pid  6688] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6686] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 6737
[pid  6737] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6688] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6686] open(NULL, O_RDONLY <unfinished ...>
[pid  6737] <... set_robust_list resumed>) = 0
[pid  6737] chdir("./30" <unfinished ...>
[pid  6688] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6737] <... chdir resumed>)        = 0
[pid  6688] read(-1,  <unfinished ...>
[pid  6737] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6688] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6686] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6737] setpgid(0, 0 <unfinished ...>
[pid  6688] write(-1, NULL, 0 <unfinished ...>
[pid  6737] <... setpgid resumed>)      = 0
[pid  6688] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6686] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6686] read(-1,  <unfinished ...>
[pid  6737] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6688] write(-1, NULL, 0 <unfinished ...>
[pid  6686] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6688] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6737] <... openat resumed>)       = 3
[pid  6686] exit_group(0)               = ?
[pid  6686] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6686, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=26 /* 0.26 s */} ---
[pid  6688] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6737] write(3, "1000", 4 <unfinished ...>
[pid  6688] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6688] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5067] umount2("./30", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6737] <... write resumed>)        = 4
[pid  6688] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6737] close(3 <unfinished ...>
[pid  6688] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5067] <... openat resumed>)       = 3
[pid  6737] <... close resumed>)        = 0
[pid  6688] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  6737] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6688] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6737] <... symlink resumed>)      = 0
[pid  6688] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3,  <unfinished ...>
[pid  6688] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6737] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6688] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6737] <... memfd_create resumed>) = 3
[pid  6688] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5067] umount2("./30/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6737] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6688] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6737] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6688] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5067] newfstatat(AT_FDCWD, "./30/binderfs",  <unfinished ...>
[pid  6688] <... openat resumed>)       = 4
[pid  5067] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./30/binderfs")     = 0
[pid  5067] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6688] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  138.851544][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  138.877698][ T6688] syz-executor246 (6688): drop_caches: 2
[pid  6688] sendfile(5, 4, [100] <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  5062] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./30/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6688] <... sendfile resumed> => [671], 571) = 571
[pid  5062] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6688] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5062] <... openat resumed>)       = 4
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  6688] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6688] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6688] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] getdents64(4,  <unfinished ...>
[pid  6688] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  6688] ftruncate(-1, 33587199 <unfinished ...>
[pid  5062] getdents64(4,  <unfinished ...>
[pid  6688] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5062] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4 <unfinished ...>
[pid  6688] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  6688] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] rmdir("./30/file0" <unfinished ...>
[pid  6688] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5062] <... rmdir resumed>)        = 0
[  138.910305][ T6688] syz-executor246 (6688): drop_caches: 2
[pid  6688] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6688] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6688] read(-1,  <unfinished ...>
[pid  5062] close(3 <unfinished ...>
[pid  6688] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5062] <... close resumed>)        = 0
[pid  6688] exit_group(0)               = ?
[pid  5062] rmdir("./30" <unfinished ...>
[pid  6688] +++ exited with 0 +++
[pid  5062] <... rmdir resumed>)        = 0
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6688, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=35 /* 0.35 s */} ---
[pid  5062] mkdir("./31", 0777 <unfinished ...>
[pid  5065] umount2("./30", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] <... mkdir resumed>)        = 0
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] <... openat resumed>)       = 3
[pid  5065] umount2("./30/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./30/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] unlink("./30/binderfs")     = 0
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5065] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  5063] <... umount2 resumed>)      = 0
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5062] close(3 <unfinished ...>
[pid  5066] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5063] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./30/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  5066] newfstatat(AT_FDCWD, "./29/file0", ./strace-static-x86_64: Process 6738 attached
 <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6738] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 6738
[pid  6738] <... set_robust_list resumed>) = 0
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4)                    = 0
[pid  6738] chdir("./31" <unfinished ...>
[pid  5063] rmdir("./30/file0" <unfinished ...>
[pid  6738] <... chdir resumed>)        = 0
[pid  5066] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  6738] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6738] <... prctl resumed>)        = 0
[pid  5066] openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6738] setpgid(0, 0)               = 0
[pid  5066] <... openat resumed>)       = 4
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5066] newfstatat(4, "",  <unfinished ...>
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6738] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5063] close(3)                    = 0
[pid  5063] rmdir("./30" <unfinished ...>
[pid  6738] <... openat resumed>)       = 3
[pid  6738] write(3, "1000", 4 <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] <... rmdir resumed>)        = 0
[pid  5063] mkdir("./31", 0777 <unfinished ...>
[pid  6738] <... write resumed>)        = 4
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5063] <... mkdir resumed>)        = 0
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5063] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5063] close(3)                    = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6739 attached
 <unfinished ...>
[pid  6738] close(3 <unfinished ...>
[pid  5066] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  6739] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6738] <... close resumed>)        = 0
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 6739
[pid  6739] <... set_robust_list resumed>) = 0
[pid  6738] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5066] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  6739] chdir("./31")               = 0
[pid  6738] <... symlink resumed>)      = 0
[pid  5066] close(4 <unfinished ...>
[pid  6739] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  6739] <... prctl resumed>)        = 0
[pid  6739] setpgid(0, 0)               = 0
[pid  6739] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6738] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5066] rmdir("./29/file0" <unfinished ...>
[pid  6739] <... openat resumed>)       = 3
[pid  6738] <... memfd_create resumed>) = 3
[pid  6739] write(3, "1000", 4 <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  6738] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6737] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5066] getdents64(3,  <unfinished ...>
[pid  6739] <... write resumed>)        = 4
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3 <unfinished ...>
[pid  6739] close(3 <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  6739] <... close resumed>)        = 0
[pid  6739] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6739] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5066] rmdir("./29")               = 0
[pid  6739] <... memfd_create resumed>) = 3
[  139.040660][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6739] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5066] mkdir("./30", 0777)         = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] close(3)                    = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6740 attached
 <unfinished ...>
[pid  6740] set_robust_list(0x55555697c760, 24) = 0
[pid  6740] chdir("./30")               = 0
[pid  6740] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 6740
[pid  6740] <... prctl resumed>)        = 0
[pid  6740] setpgid(0, 0)               = 0
[pid  6740] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6740] write(3, "1000", 4)         = 4
[pid  6740] close(3)                    = 0
[pid  6740] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6740] memfd_create("syzkaller", 0) = 3
[pid  6740] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5067] <... umount2 resumed>)      = 0
[pid  5067] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./30/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./30/file0")         = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./30")               = 0
[pid  5067] mkdir("./31", 0777)         = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6741 attached
 <unfinished ...>
[pid  6741] set_robust_list(0x55555697c760, 24) = 0
[pid  6741] chdir("./31")               = 0
[pid  6741] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6741] setpgid(0, 0)               = 0
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 6741
[pid  6741] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6741] write(3, "1000", 4)         = 4
[pid  6741] close(3)                    = 0
[pid  6741] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6741] memfd_create("syzkaller", 0) = 3
[pid  6741] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5065] <... umount2 resumed>)      = 0
[pid  6738] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5065] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6739] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5065] newfstatat(AT_FDCWD, "./30/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./30/file0")         = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./30")               = 0
[pid  5065] mkdir("./31", 0777)         = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  6737] <... write resumed>)        = 16777216
[pid  5065] <... openat resumed>)       = 3
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6742 attached
 <unfinished ...>
[pid  6737] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6742] set_robust_list(0x55555697c760, 24) = 0
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 6742
[pid  6742] chdir("./31")               = 0
[pid  6742] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6737] <... munmap resumed>)       = 0
[pid  6742] setpgid(0, 0)               = 0
[pid  6740] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6737] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  6742] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6737] <... openat resumed>)       = 4
[pid  6742] <... openat resumed>)       = 3
[pid  6737] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6742] write(3, "1000", 4 <unfinished ...>
[pid  6737] <... ioctl resumed>)        = 0
[pid  6742] <... write resumed>)        = 4
[pid  6742] close(3)                    = 0
[pid  6742] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6737] close(3)                    = 0
[pid  6737] mkdir("./file0", 0777)      = 0
[pid  6737] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6742] memfd_create("syzkaller", 0) = 3
[  139.636041][ T6737] loop2: detected capacity change from 0 to 32768
[pid  6742] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  139.726438][ T6737] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[pid  6741] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[  139.776172][ T6737] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  139.902950][ T6737] XFS (loop2): Ending clean mount
[pid  6742] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6738] <... write resumed>)        = 16777216
[  139.957141][ T6737] XFS (loop2): Quotacheck needed: Please wait.
[pid  6738] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6737] <... mount resumed>)        = 0
[pid  6737] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6742] <... write resumed>)        = 16777216
[pid  6737] <... openat resumed>)       = 3
[pid  6742] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6737] chdir("./file0")            = 0
[pid  6737] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6737] close(4)                    = 0
[pid  6737] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[  140.022938][ T6737] XFS (loop2): Quotacheck: Done.
[pid  6737] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6742] <... munmap resumed>)       = 0
[pid  6739] <... write resumed>)        = 16777216
[pid  6737] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6737] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6737] ftruncate(-1, 33587195 <unfinished ...>
[pid  6742] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  6739] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6738] <... munmap resumed>)       = 0
[pid  6737] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6742] <... openat resumed>)       = 4
[pid  6737] read(-1,  <unfinished ...>
[pid  6742] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6737] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6737] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6737] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6738] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  6737] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6738] <... openat resumed>)       = 4
[pid  6737] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6737] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6738] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6737] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6737] write(-1, NULL, 0 <unfinished ...>
[pid  6742] <... ioctl resumed>)        = 0
[pid  6737] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6742] close(3 <unfinished ...>
[pid  6737] write(-1, NULL, 0 <unfinished ...>
[pid  6742] <... close resumed>)        = 0
[pid  6737] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6742] mkdir("./file0", 0777 <unfinished ...>
[pid  6737] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6742] <... mkdir resumed>)        = 0
[pid  6737] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6737] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6742] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6737] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6737] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6739] <... munmap resumed>)       = 0
[pid  6737] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6737] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6737] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6737] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6737] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6737] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6737] sendfile(5, 4, [100] <unfinished ...>
[pid  6738] <... ioctl resumed>)        = 0
[pid  6738] close(3)                    = 0
[pid  6738] mkdir("./file0", 0777 <unfinished ...>
[pid  6739] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6738] <... mkdir resumed>)        = 0
[  140.081883][ T6742] loop3: detected capacity change from 0 to 32768
[  140.097390][ T6738] loop0: detected capacity change from 0 to 32768
[pid  6739] <... openat resumed>)       = 4
[pid  6738] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6739] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6740] <... write resumed>)        = 16777216
[pid  6739] <... ioctl resumed>)        = 0
[pid  6740] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6739] close(3)                    = 0
[pid  6739] mkdir("./file0", 0777)      = 0
[  140.145414][ T6742] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  140.154570][ T6739] loop1: detected capacity change from 0 to 32768
[  140.172960][ T6737] syz-executor246 (6737): drop_caches: 2
[  140.180513][ T6742] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6739] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6740] <... munmap resumed>)       = 0
[pid  6740] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  6740] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6737] <... sendfile resumed> => [671], 571) = 571
[pid  6737] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6737] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6737] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6737] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6737] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6737] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[  140.216361][ T6737] syz-executor246 (6737): drop_caches: 2
[  140.225430][ T6738] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  140.243400][ T6738] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  140.245398][ T6740] loop4: detected capacity change from 0 to 32768
[pid  6737] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6737] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6741] <... write resumed>)        = 16777216
[pid  6740] <... ioctl resumed>)        = 0
[pid  6737] exit_group(0)               = ?
[pid  6741] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6740] close(3 <unfinished ...>
[pid  6737] +++ exited with 0 +++
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6737, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=34 /* 0.34 s */} ---
[pid  6740] <... close resumed>)        = 0
[pid  5064] umount2("./30", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6740] mkdir("./file0", 0777 <unfinished ...>
[pid  5064] <... openat resumed>)       = 3
[pid  5064] newfstatat(3, "",  <unfinished ...>
[pid  6740] <... mkdir resumed>)        = 0
[pid  6740] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./30/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./30/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[  140.272993][ T6739] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  140.289215][ T6739] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5064] unlink("./30/binderfs")     = 0
[pid  5064] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6741] <... munmap resumed>)       = 0
[pid  6741] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[  140.324344][ T6742] XFS (loop3): Ending clean mount
[  140.332115][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  140.337268][ T6742] XFS (loop3): Quotacheck needed: Please wait.
[  140.346435][ T6738] XFS (loop0): Ending clean mount
[  140.354792][ T6740] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  140.364549][ T6740] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6741] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6742] <... mount resumed>)        = 0
[pid  6742] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6742] chdir("./file0")            = 0
[pid  6742] ioctl(4, LOOP_CLR_FD)       = 0
[  140.369573][ T6738] XFS (loop0): Quotacheck needed: Please wait.
[  140.377758][ T6742] XFS (loop3): Quotacheck: Done.
[  140.391344][ T6741] loop5: detected capacity change from 0 to 32768
[  140.410868][ T6739] XFS (loop1): Ending clean mount
[pid  6742] close(4)                    = 0
[pid  6742] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6742] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6741] <... ioctl resumed>)        = 0
[pid  6742] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6741] close(3 <unfinished ...>
[pid  6742] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6741] <... close resumed>)        = 0
[pid  6741] mkdir("./file0", 0777 <unfinished ...>
[pid  6742] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6742] ftruncate(-1, 33587195 <unfinished ...>
[pid  6738] <... mount resumed>)        = 0
[pid  6741] <... mkdir resumed>)        = 0
[pid  6742] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6738] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6742] read(-1,  <unfinished ...>
[pid  6738] <... openat resumed>)       = 3
[pid  6742] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6741] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6738] chdir("./file0" <unfinished ...>
[pid  6742] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6738] <... chdir resumed>)        = 0
[pid  6742] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6738] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6742] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6738] <... ioctl resumed>)        = 0
[pid  6738] close(4 <unfinished ...>
[pid  6742] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6742] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6738] <... close resumed>)        = 0
[pid  6742] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6742] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6738] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6742] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6742] read(-1,  <unfinished ...>
[pid  6738] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6742] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6738] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6742] write(-1, NULL, 0 <unfinished ...>
[pid  6738] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6742] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6738] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6742] write(-1, NULL, 0 <unfinished ...>
[pid  6738] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6742] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6738] ftruncate(-1, 33587195 <unfinished ...>
[pid  6742] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6738] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6742] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6738] read(-1,  <unfinished ...>
[pid  6742] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6738] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6742] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[  140.420359][ T6738] XFS (loop0): Quotacheck: Done.
[  140.436956][ T6739] XFS (loop1): Quotacheck needed: Please wait.
[  140.464186][ T6740] XFS (loop4): Ending clean mount
[pid  6738] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6742] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6738] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6738] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6742] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6738] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6742] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6738] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6742] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6742] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6738] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6738] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6742] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6738] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6742] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6738] read(-1,  <unfinished ...>
[pid  6742] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6738] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6742] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6738] write(-1, NULL, 0 <unfinished ...>
[pid  6742] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6738] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6738] write(-1, NULL, 0 <unfinished ...>
[pid  6742] <... openat resumed>)       = 5
[pid  6738] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[  140.478949][ T6741] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  140.480670][ T6740] XFS (loop4): Quotacheck needed: Please wait.
[pid  6742] sendfile(5, 4, [100] <unfinished ...>
[pid  6738] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6738] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6738] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6739] <... mount resumed>)        = 0
[pid  6738] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6738] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6738] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6738] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6738] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6738] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  140.523988][ T6741] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  140.553004][ T6739] XFS (loop1): Quotacheck: Done.
[pid  6738] sendfile(5, 4, [100] <unfinished ...>
[pid  6742] <... sendfile resumed> => [671], 571) = 571
[pid  6739] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6742] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6742] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6742] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6742] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6742] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6742] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6739] <... openat resumed>)       = 3
[pid  6739] chdir("./file0" <unfinished ...>
[pid  6742] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6739] <... chdir resumed>)        = 0
[pid  6742] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6742] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6742] exit_group(0)               = ?
[pid  6742] +++ exited with 0 +++
[pid  6739] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6742, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=29 /* 0.29 s */} ---
[pid  6739] close(4)                    = 0
[pid  5065] umount2("./31", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6739] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[  140.605889][ T6742] syz-executor246 (6742): drop_caches: 2
[  140.613722][ T6742] syz-executor246 (6742): drop_caches: 2
[  140.615591][ T6740] XFS (loop4): Quotacheck: Done.
[  140.629049][ T6738] syz-executor246 (6738): drop_caches: 2
[  140.638501][ T6741] XFS (loop5): Ending clean mount
[pid  5065] openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6739] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5065] <... openat resumed>)       = 3
[pid  6739] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  6739] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6739] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] umount2("./31/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6739] ftruncate(-1, 33587195 <unfinished ...>
[pid  5065] newfstatat(AT_FDCWD, "./31/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] unlink("./31/binderfs")     = 0
[pid  6739] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6739] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5065] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  6740] <... mount resumed>)        = 0
[pid  6740] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6738] <... sendfile resumed> => [671], 571) = 571
[pid  5064] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6740] <... openat resumed>)       = 3
[pid  6739] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6738] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6740] chdir("./file0" <unfinished ...>
[pid  6739] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6738] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6740] <... chdir resumed>)        = 0
[pid  6738] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5064] newfstatat(AT_FDCWD, "./30/file0",  <unfinished ...>
[pid  6740] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6739] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6738] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6740] <... ioctl resumed>)        = 0
[pid  6739] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6738] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6740] close(4 <unfinished ...>
[pid  6738] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5064] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6740] <... close resumed>)        = 0
[pid  6739] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6738] ftruncate(-1, 33587199 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6740] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6738] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5064] openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6740] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6738] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5064] <... openat resumed>)       = 4
[pid  6740] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6738] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6740] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5064] newfstatat(4, "",  <unfinished ...>
[pid  6740] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6738] open(NULL, O_RDONLY <unfinished ...>
[pid  6740] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6738] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6740] ftruncate(-1, 33587195 <unfinished ...>
[pid  6738] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5064] getdents64(4,  <unfinished ...>
[pid  6740] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6738] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5064] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  6740] read(-1,  <unfinished ...>
[pid  6738] read(-1,  <unfinished ...>
[pid  6740] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6738] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5064] getdents64(4,  <unfinished ...>
[pid  6740] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6738] exit_group(0 <unfinished ...>
[pid  6740] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6738] <... exit_group resumed>)   = ?
[pid  5064] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  6740] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6739] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6738] +++ exited with 0 +++
[pid  5064] close(4 <unfinished ...>
[pid  6740] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6739] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5064] <... close resumed>)        = 0
[pid  6740] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5064] rmdir("./30/file0" <unfinished ...>
[pid  6740] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5064] <... rmdir resumed>)        = 0
[pid  6740] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6740] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6740] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5064] getdents64(3,  <unfinished ...>
[pid  6740] write(-1, NULL, 0 <unfinished ...>
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6740] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6740] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5064] close(3 <unfinished ...>
[pid  6740] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5064] <... close resumed>)        = 0
[pid  6740] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5064] rmdir("./30" <unfinished ...>
[pid  6740] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5064] <... rmdir resumed>)        = 0
[pid  6740] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6740] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6740] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5064] mkdir("./31", 0777 <unfinished ...>
[pid  6740] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6739] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6738, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=29 /* 0.29 s */} ---
[pid  6740] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6739] read(-1,  <unfinished ...>
[pid  5064] <... mkdir resumed>)        = 0
[pid  6740] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6739] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  6740] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6739] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6739] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5064] <... openat resumed>)       = 3
[pid  6739] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5064] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6739] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5064] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6739] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6740] <... openat resumed>)       = 5
[pid  6739] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5064] close(3 <unfinished ...>
[pid  6739] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5064] <... close resumed>)        = 0
[pid  6740] sendfile(5, 4, [100] <unfinished ...>
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6739] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] umount2("./31", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6739] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6739] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6739] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000./strace-static-x86_64: Process 6791 attached
 <unfinished ...>
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 6791
[pid  6791] set_robust_list(0x55555697c760, 24) = 0
[pid  6791] chdir("./31")               = 0
[pid  5062] <... openat resumed>)       = 3
[pid  6791] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  6791] <... prctl resumed>)        = 0
[pid  6791] setpgid(0, 0)               = 0
[pid  6791] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6739] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6739] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5062] getdents64(3,  <unfinished ...>
[pid  6791] <... openat resumed>)       = 3
[pid  6739] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6791] write(3, "1000", 4 <unfinished ...>
[pid  6739] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5062] umount2("./31/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6791] <... write resumed>)        = 4
[pid  6739] <... openat resumed>)       = 4
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[  140.658329][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  140.665197][ T6738] syz-executor246 (6738): drop_caches: 2
[  140.685945][ T6741] XFS (loop5): Quotacheck needed: Please wait.
[pid  6739] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./31/binderfs",  <unfinished ...>
[pid  6739] <... openat resumed>)       = 5
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6739] sendfile(5, 4, [100] <unfinished ...>
[pid  5062] unlink("./31/binderfs" <unfinished ...>
[pid  6791] close(3)                    = 0
[pid  5062] <... unlink resumed>)       = 0
[pid  5062] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6791] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6791] memfd_create("syzkaller", 0) = 3
[pid  6741] <... mount resumed>)        = 0
[pid  6791] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  140.733198][ T6741] XFS (loop5): Quotacheck: Done.
[  140.741601][ T6740] syz-executor246 (6740): drop_caches: 2
[  140.744456][ T6739] syz-executor246 (6739): drop_caches: 2
[  140.765353][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6741] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6741] chdir("./file0")            = 0
[pid  6741] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6741] close(4)                    = 0
[pid  6741] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6741] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6741] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6740] <... sendfile resumed> => [671], 571) = 571
[pid  6741] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6741] read(-1,  <unfinished ...>
[pid  6740] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6741] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6740] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6741] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6740] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6741] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6740] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6741] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6740] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6741] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6740] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6741] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6741] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6741] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6741] write(-1, NULL, 0 <unfinished ...>
[pid  6740] ftruncate(-1, 33587199 <unfinished ...>
[pid  6741] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6740] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6741] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6741] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6739] <... sendfile resumed> => [671], 571) = 571
[pid  6741] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6739] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6741] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6740] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6739] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6739] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6739] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6739] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6741] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6740] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6739] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6739] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6739] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6739] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[  140.781279][ T6739] syz-executor246 (6739): drop_caches: 2
[  140.792067][ T6740] syz-executor246 (6740): drop_caches: 2
[pid  6739] exit_group(0 <unfinished ...>
[pid  6741] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6740] open(NULL, O_RDONLY <unfinished ...>
[pid  6741] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6740] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6739] <... exit_group resumed>)   = ?
[pid  6740] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6741] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6740] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6741] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6740] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6741] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6741] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6740] exit_group(0 <unfinished ...>
[pid  6741] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6740] <... exit_group resumed>)   = ?
[pid  6741] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6739] +++ exited with 0 +++
[pid  6740] +++ exited with 0 +++
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6739, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=27 /* 0.27 s */} ---
[pid  6741] <... openat resumed>)       = 4
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6740, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=34 /* 0.34 s */} ---
[pid  5066] umount2("./30", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6741] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] umount2("./31", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6741] <... openat resumed>)       = 5
[pid  5066] openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6741] sendfile(5, 4, [100] <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  5063] <... openat resumed>)       = 3
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./31/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] umount2("./30/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./30/binderfs",  <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./31/binderfs",  <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] unlink("./30/binderfs" <unfinished ...>
[pid  5063] unlink("./31/binderfs" <unfinished ...>
[pid  5066] <... unlink resumed>)       = 0
[pid  5066] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... unlink resumed>)       = 0
[  140.910086][ T6741] syz-executor246 (6741): drop_caches: 2
[pid  5063] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6741] <... sendfile resumed> => [671], 571) = 571
[pid  6741] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6741] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6741] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6741] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6741] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6741] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[  140.961814][ T6741] syz-executor246 (6741): drop_caches: 2
[  140.968093][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  140.977571][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6741] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6741] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6741] exit_group(0)               = ?
[pid  6741] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6741, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=33 /* 0.33 s */} ---
[pid  5067] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5067] umount2("./31", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./31/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./31/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./31/binderfs")     = 0
[pid  5067] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[  141.123208][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6791] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  5062] <... umount2 resumed>)      = 0
[pid  5065] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./31/file0",  <unfinished ...>
[pid  5065] newfstatat(AT_FDCWD, "./31/file0",  <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] <... openat resumed>)       = 4
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  5065] newfstatat(4, "",  <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5065] rmdir("./31/file0" <unfinished ...>
[pid  5062] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] <... rmdir resumed>)        = 0
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./31/file0")         = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./31")               = 0
[pid  5065] mkdir("./32", 0777)         = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5062] getdents64(3,  <unfinished ...>
[pid  5065] <... openat resumed>)       = 3
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5062] close(3 <unfinished ...>
[pid  5065] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6792
[pid  5062] <... close resumed>)        = 0
[pid  5062] rmdir("./31"./strace-static-x86_64: Process 6792 attached
 <unfinished ...>
[pid  6792] set_robust_list(0x55555697c760, 24) = 0
[pid  6792] chdir("./32")               = 0
[pid  5062] <... rmdir resumed>)        = 0
[pid  5062] mkdir("./32", 0777 <unfinished ...>
[pid  6792] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6792] setpgid(0, 0)               = 0
[pid  6792] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5062] <... mkdir resumed>)        = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  6792] <... openat resumed>)       = 3
[pid  6792] write(3, "1000", 4)         = 4
[pid  6792] close(3 <unfinished ...>
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6792] <... close resumed>)        = 0
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6792] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6792] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5062] close(3 <unfinished ...>
[pid  6792] <... memfd_create resumed>) = 3
[pid  5062] <... close resumed>)        = 0
[pid  6792] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6793 attached
, child_tidptr=0x55555697c750) = 6793
[pid  6793] set_robust_list(0x55555697c760, 24) = 0
[pid  6793] chdir("./32")               = 0
[pid  6793] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6793] setpgid(0, 0)               = 0
[pid  6793] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6793] write(3, "1000", 4)         = 4
[pid  6793] close(3)                    = 0
[pid  6793] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6793] memfd_create("syzkaller", 0) = 3
[pid  6793] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5063] <... umount2 resumed>)      = 0
[pid  5063] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./31/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4)                    = 0
[pid  5063] rmdir("./31/file0")         = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3)                    = 0
[pid  5066] <... umount2 resumed>)      = 0
[pid  5063] rmdir("./31" <unfinished ...>
[pid  5066] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./30/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] mkdir("./32", 0777 <unfinished ...>
[pid  5066] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./30/file0" <unfinished ...>
[pid  5063] <... mkdir resumed>)        = 0
[pid  5066] <... rmdir resumed>)        = 0
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./30")               = 0
[pid  5063] <... openat resumed>)       = 3
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5066] mkdir("./31", 0777)         = 0
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5063] close(3)                    = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] close(3)                    = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 6794
./strace-static-x86_64: Process 6794 attached
[pid  6794] set_robust_list(0x55555697c760, 24) = 0
[pid  6794] chdir("./31"./strace-static-x86_64: Process 6795 attached
 <unfinished ...>
[pid  6795] set_robust_list(0x55555697c760, 24) = 0
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 6795
[pid  6794] <... chdir resumed>)        = 0
[pid  6794] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6795] chdir("./32")               = 0
[pid  6794] setpgid(0, 0 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  6795] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6795] setpgid(0, 0 <unfinished ...>
[pid  6794] <... setpgid resumed>)      = 0
[pid  6794] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6795] <... setpgid resumed>)      = 0
[pid  6794] <... openat resumed>)       = 3
[pid  6795] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6794] write(3, "1000", 4)         = 4
[pid  6794] close(3)                    = 0
[pid  6794] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6795] <... openat resumed>)       = 3
[pid  6794] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5067] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6795] write(3, "1000", 4 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./31/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6795] <... write resumed>)        = 4
[pid  5067] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6795] close(3 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6795] <... close resumed>)        = 0
[pid  6794] <... memfd_create resumed>) = 3
[pid  5067] openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6795] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6794] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5067] <... openat resumed>)       = 4
[pid  6794] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5067] newfstatat(4, "",  <unfinished ...>
[pid  6795] <... symlink resumed>)      = 0
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  6795] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./31/file0" <unfinished ...>
[pid  6795] <... memfd_create resumed>) = 3
[pid  5067] <... rmdir resumed>)        = 0
[pid  6795] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./31")               = 0
[pid  5067] mkdir("./32", 0777)         = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6796
[pid  6793] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216./strace-static-x86_64: Process 6796 attached
 <unfinished ...>
[pid  6796] set_robust_list(0x55555697c760, 24) = 0
[pid  6796] chdir("./32")               = 0
[pid  6791] <... write resumed>)        = 16777216
[pid  6796] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6796] setpgid(0, 0)               = 0
[pid  6796] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6791] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6796] write(3, "1000", 4)         = 4
[pid  6796] close(3)                    = 0
[pid  6796] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6796] memfd_create("syzkaller", 0) = 3
[pid  6796] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6792] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6791] <... munmap resumed>)       = 0
[pid  6791] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid  6791] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6791] close(3)                    = 0
[pid  6791] mkdir("./file0", 0777)      = 0
[  141.713688][ T6791] loop2: detected capacity change from 0 to 32768
[  141.777124][ T6791] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  141.805898][ T6791] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6791] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6795] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[  141.983365][ T6791] XFS (loop2): Ending clean mount
[pid  6794] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[  142.005659][ T6791] XFS (loop2): Quotacheck needed: Please wait.
[pid  6796] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6791] <... mount resumed>)        = 0
[pid  6791] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6791] chdir("./file0")            = 0
[pid  6791] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6791] close(4)                    = 0
[pid  6791] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6791] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6791] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6791] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6791] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6791] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6791] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6791] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6791] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[  142.073214][ T6791] XFS (loop2): Quotacheck: Done.
[pid  6791] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6793] <... write resumed>)        = 16777216
[pid  6791] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6793] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6791] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6791] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6791] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6791] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6791] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6791] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6791] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6791] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6791] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6791] sendfile(5, 4, [100] <unfinished ...>
[pid  6792] <... write resumed>)        = 16777216
[pid  6792] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6793] <... munmap resumed>)       = 0
[pid  6793] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  6792] <... munmap resumed>)       = 0
[pid  6793] <... openat resumed>)       = 4
[  142.181961][ T6791] syz-executor246 (6791): drop_caches: 2
[pid  6793] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6792] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid  6792] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6793] <... ioctl resumed>)        = 0
[pid  6792] <... ioctl resumed>)        = 0
[pid  6791] <... sendfile resumed> => [671], 571) = 571
[pid  6793] close(3 <unfinished ...>
[pid  6792] close(3 <unfinished ...>
[pid  6793] <... close resumed>)        = 0
[pid  6791] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6793] mkdir("./file0", 0777 <unfinished ...>
[pid  6792] <... close resumed>)        = 0
[pid  6791] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6792] mkdir("./file0", 0777)      = 0
[pid  6793] <... mkdir resumed>)        = 0
[pid  6792] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6791] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6793] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6791] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6791] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6791] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6791] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6791] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[  142.226744][ T6793] loop0: detected capacity change from 0 to 32768
[  142.241049][ T6791] syz-executor246 (6791): drop_caches: 2
[  142.247332][ T6792] loop3: detected capacity change from 0 to 32768
[pid  6791] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6791] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6791] exit_group(0)               = ?
[pid  6791] +++ exited with 0 +++
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6791, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=32 /* 0.32 s */} ---
[pid  5064] umount2("./31", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./31/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./31/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./31/binderfs")     = 0
[  142.300563][ T6792] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  142.313087][ T6792] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  142.327048][ T6793] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  142.327520][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  142.344922][ T6793] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  142.475249][ T6792] XFS (loop3): Ending clean mount
[pid  5064] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6794] <... write resumed>)        = 16777216
[  142.499678][ T6793] XFS (loop0): Ending clean mount
[  142.511629][ T6792] XFS (loop3): Quotacheck needed: Please wait.
[  142.544691][ T6793] XFS (loop0): Quotacheck needed: Please wait.
[pid  6794] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  6795] <... write resumed>)        = 16777216
[pid  6794] <... munmap resumed>)       = 0
[pid  6795] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6794] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5064] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6794] <... openat resumed>)       = 4
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6794] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6793] <... mount resumed>)        = 0
[pid  5064] newfstatat(AT_FDCWD, "./31/file0",  <unfinished ...>
[pid  6794] <... ioctl resumed>)        = 0
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6793] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6793] chdir("./file0")            = 0
[pid  6792] <... mount resumed>)        = 0
[pid  5064] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6793] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6793] close(4)                    = 0
[pid  5064] openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6793] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5064] <... openat resumed>)       = 4
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4,  <unfinished ...>
[pid  6796] <... write resumed>)        = 16777216
[pid  6795] <... munmap resumed>)       = 0
[pid  6794] close(3 <unfinished ...>
[pid  6793] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6792] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5064] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  6796] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6795] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6794] <... close resumed>)        = 0
[pid  6793] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6792] <... openat resumed>)       = 3
[pid  5064] close(4 <unfinished ...>
[pid  6795] <... openat resumed>)       = 4
[pid  6794] mkdir("./file0", 0777 <unfinished ...>
[pid  6793] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6792] chdir("./file0" <unfinished ...>
[pid  5064] <... close resumed>)        = 0
[pid  5064] rmdir("./31/file0" <unfinished ...>
[pid  6795] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6794] <... mkdir resumed>)        = 0
[pid  6793] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6792] <... chdir resumed>)        = 0
[pid  5064] <... rmdir resumed>)        = 0
[  142.588719][ T6793] XFS (loop0): Quotacheck: Done.
[  142.605088][ T6794] loop4: detected capacity change from 0 to 32768
[  142.624086][ T6792] XFS (loop3): Quotacheck: Done.
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./31")               = 0
[pid  5064] mkdir("./32", 0777)         = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6794] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6793] ftruncate(-1, 33587195 <unfinished ...>
[pid  6792] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6793] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6792] <... ioctl resumed>)        = 0
[pid  6793] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
./strace-static-x86_64: Process 6821 attached
[pid  6821] set_robust_list(0x55555697c760, 24) = 0
[pid  6793] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 6821
[pid  6821] chdir("./32" <unfinished ...>
[pid  6792] close(4 <unfinished ...>
[pid  6821] <... chdir resumed>)        = 0
[pid  6793] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6792] <... close resumed>)        = 0
[pid  6821] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6792] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6821] <... prctl resumed>)        = 0
[pid  6793] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6792] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6821] setpgid(0, 0 <unfinished ...>
[pid  6793] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6821] <... setpgid resumed>)      = 0
[pid  6793] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6792] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6821] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6793] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6792] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6793] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6792] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6821] <... openat resumed>)       = 3
[pid  6793] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6792] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6793] read(-1,  <unfinished ...>
[pid  6821] write(3, "1000", 4 <unfinished ...>
[pid  6793] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6821] <... write resumed>)        = 4
[pid  6821] close(3 <unfinished ...>
[pid  6792] ftruncate(-1, 33587195 <unfinished ...>
[pid  6793] write(-1, NULL, 0 <unfinished ...>
[pid  6792] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6821] <... close resumed>)        = 0
[pid  6793] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6792] read(-1,  <unfinished ...>
[pid  6821] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6795] <... ioctl resumed>)        = 0
[pid  6793] write(-1, NULL, 0 <unfinished ...>
[pid  6821] <... symlink resumed>)      = 0
[pid  6795] close(3 <unfinished ...>
[pid  6793] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6792] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6793] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6821] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6792] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6821] <... memfd_create resumed>) = 3
[pid  6795] <... close resumed>)        = 0
[pid  6792] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6821] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6792] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6821] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6792] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6792] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6792] read(-1,  <unfinished ...>
[pid  6793] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6795] mkdir("./file0", 0777)      = 0
[pid  6793] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6792] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6793] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6792] write(-1, NULL, 0 <unfinished ...>
[pid  6795] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6793] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6792] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6793] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6792] write(-1, NULL, 0 <unfinished ...>
[pid  6793] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6792] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6793] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6792] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6793] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6793] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6792] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6793] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6792] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6793] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6792] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6793] <... openat resumed>)       = 4
[pid  6792] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6793] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6792] <... openat resumed>)       = -1 EFAULT (Bad address)
[  142.647917][ T6795] loop1: detected capacity change from 0 to 32768
[pid  6792] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6793] sendfile(5, 4, [100] <unfinished ...>
[pid  6792] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6792] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6792] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6792] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6792] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6792] sendfile(5, 4, [100] => [671], 571) = 571
[pid  6792] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6792] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[  142.705937][ T6794] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  142.714682][ T6792] syz-executor246 (6792): drop_caches: 2
[  142.725906][ T6793] syz-executor246 (6793): drop_caches: 2
[  142.726588][ T6792] syz-executor246 (6792): drop_caches: 2
[  142.732254][ T6793] syz-executor246 (6793): drop_caches: 2
[pid  6792] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6796] <... munmap resumed>)       = 0
[pid  6796] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  6792] ftruncate(-1, 33587199 <unfinished ...>
[pid  6796] <... openat resumed>)       = 4
[pid  6796] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6792] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6792] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6792] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6792] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6792] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6792] exit_group(0)               = ?
[pid  6793] <... sendfile resumed> => [671], 571) = 571
[pid  6793] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6792] +++ exited with 0 +++
[pid  6793] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[  142.769826][ T6795] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  142.779722][ T6794] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  142.805604][ T6796] loop5: detected capacity change from 0 to 32768
[pid  6796] <... ioctl resumed>)        = 0
[pid  6793] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6792, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=26 /* 0.26 s */} ---
[pid  5065] umount2("./32", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6821] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6796] close(3 <unfinished ...>
[pid  6793] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6796] <... close resumed>)        = 0
[pid  6793] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5065] <... openat resumed>)       = 3
[  142.813011][ T6795] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6796] mkdir("./file0", 0777 <unfinished ...>
[pid  6793] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  6793] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6793] open(NULL, O_RDONLY <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6793] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] getdents64(3,  <unfinished ...>
[pid  6796] <... mkdir resumed>)        = 0
[pid  6793] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6793] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5065] umount2("./32/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6796] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6793] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6793] exit_group(0 <unfinished ...>
[pid  5065] newfstatat(AT_FDCWD, "./32/binderfs",  <unfinished ...>
[pid  6793] <... exit_group resumed>)   = ?
[pid  6793] +++ exited with 0 +++
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[  142.859925][ T6794] XFS (loop4): Ending clean mount
[pid  5065] unlink("./32/binderfs" <unfinished ...>
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6793, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=35 /* 0.35 s */} ---
[pid  5065] <... unlink resumed>)       = 0
[pid  5065] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] umount2("./32", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./32/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./32/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./32/binderfs")     = 0
[  142.882487][ T6796] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  142.885928][ T6795] XFS (loop1): Ending clean mount
[  142.899842][ T6794] XFS (loop4): Quotacheck needed: Please wait.
[  142.905327][ T6795] XFS (loop1): Quotacheck needed: Please wait.
[  142.906973][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  142.938037][ T6796] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  142.948902][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5062] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6795] <... mount resumed>)        = 0
[pid  6795] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6795] chdir("./file0" <unfinished ...>
[pid  6794] <... mount resumed>)        = 0
[pid  6794] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6795] <... chdir resumed>)        = 0
[pid  6794] <... openat resumed>)       = 3
[pid  6795] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6794] chdir("./file0" <unfinished ...>
[pid  6795] <... ioctl resumed>)        = 0
[pid  6794] <... chdir resumed>)        = 0
[pid  6794] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6794] close(4)                    = 0
[pid  6794] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6794] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6795] close(4 <unfinished ...>
[pid  6794] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6795] <... close resumed>)        = 0
[pid  6794] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6795] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6794] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6795] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6794] ftruncate(-1, 33587195 <unfinished ...>
[pid  6795] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6794] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6795] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6794] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6794] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6795] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6794] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6795] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6794] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6795] ftruncate(-1, 33587195 <unfinished ...>
[pid  6794] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6795] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6794] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6795] read(-1,  <unfinished ...>
[pid  6794] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6795] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6794] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6795] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6794] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6795] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6794] read(-1,  <unfinished ...>
[pid  6795] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6794] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6795] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6794] write(-1, NULL, 0 <unfinished ...>
[pid  6795] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6794] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6795] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6794] write(-1, NULL, 0 <unfinished ...>
[pid  6795] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6794] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6795] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6794] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6795] read(-1,  <unfinished ...>
[pid  6794] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6795] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6794] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6795] write(-1, NULL, 0 <unfinished ...>
[pid  6794] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6795] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6794] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6795] write(-1, NULL, 0 <unfinished ...>
[pid  6794] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6795] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6794] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6795] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6794] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6795] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6795] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6794] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6795] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6794] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6795] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6794] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6795] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6794] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6795] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6794] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[  142.979744][ T6795] XFS (loop1): Quotacheck: Done.
[  142.996233][ T6794] XFS (loop4): Quotacheck: Done.
[pid  6795] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6794] <... openat resumed>)       = 4
[pid  6795] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6795] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6794] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6795] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6794] <... openat resumed>)       = 5
[pid  6795] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6794] sendfile(5, 4, [100] <unfinished ...>
[pid  6795] <... openat resumed>)       = 4
[pid  6795] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  143.042697][ T6796] XFS (loop5): Ending clean mount
[  143.052594][ T6796] XFS (loop5): Quotacheck needed: Please wait.
[  143.054871][ T6794] syz-executor246 (6794): drop_caches: 2
[pid  6795] sendfile(5, 4, [100] <unfinished ...>
[pid  6796] <... mount resumed>)        = 0
[pid  6796] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6794] <... sendfile resumed> => [671], 571) = 571
[pid  6796] <... openat resumed>)       = 3
[pid  6794] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6796] chdir("./file0" <unfinished ...>
[pid  6794] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6796] <... chdir resumed>)        = 0
[pid  6794] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6796] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6794] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6794] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6796] <... ioctl resumed>)        = 0
[pid  6794] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6796] close(4 <unfinished ...>
[pid  6794] ftruncate(-1, 33587199 <unfinished ...>
[pid  6796] <... close resumed>)        = 0
[pid  6794] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6796] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[  143.104583][ T6796] XFS (loop5): Quotacheck: Done.
[  143.117398][ T6795] syz-executor246 (6795): drop_caches: 2
[  143.124110][ T6794] syz-executor246 (6794): drop_caches: 2
[pid  6794] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6796] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6794] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6794] open(NULL, O_RDONLY <unfinished ...>
[pid  6796] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6794] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6796] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6794] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6796] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6794] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6796] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6794] read(-1,  <unfinished ...>
[pid  6796] ftruncate(-1, 33587195 <unfinished ...>
[pid  6794] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6796] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6794] exit_group(0 <unfinished ...>
[pid  6796] read(-1,  <unfinished ...>
[pid  6794] <... exit_group resumed>)   = ?
[pid  6796] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6794] +++ exited with 0 +++
[pid  6796] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6794, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=33 /* 0.33 s */} ---
[pid  6796] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5066] umount2("./31", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6796] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6796] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5066] openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6796] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6795] <... sendfile resumed> => [671], 571) = 571
[pid  5066] <... openat resumed>)       = 3
[pid  6796] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6795] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6796] read(-1,  <unfinished ...>
[pid  6795] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  6796] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6795] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6796] write(-1, NULL, 0 <unfinished ...>
[pid  6795] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3,  <unfinished ...>
[pid  6796] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6795] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6796] write(-1, NULL, 0 <unfinished ...>
[pid  6795] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6796] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6795] ftruncate(-1, 33587199 <unfinished ...>
[pid  6796] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6795] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6796] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6795] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6796] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6795] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6796] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6795] open(NULL, O_RDONLY <unfinished ...>
[pid  6796] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6795] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6796] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6796] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6795] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6796] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5066] umount2("./31/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6796] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6795] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./31/binderfs",  <unfinished ...>
[pid  6796] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6795] read(-1,  <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6796] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6795] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5066] unlink("./31/binderfs" <unfinished ...>
[pid  6796] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6795] exit_group(0 <unfinished ...>
[pid  5066] <... unlink resumed>)       = 0
[pid  6796] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6795] <... exit_group resumed>)   = ?
[pid  5066] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6796] <... openat resumed>)       = 4
[pid  6795] +++ exited with 0 +++
[pid  6796] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6795, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=34 /* 0.34 s */} ---
[pid  5063] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  6796] <... openat resumed>)       = 5
[pid  5063] <... restart_syscall resumed>) = 0
[  143.174323][ T6795] syz-executor246 (6795): drop_caches: 2
[pid  6796] sendfile(5, 4, [100] <unfinished ...>
[pid  5063] umount2("./32", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6821] <... write resumed>)        = 16777216
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6821] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[  143.239349][ T6796] syz-executor246 (6796): drop_caches: 2
[  143.267524][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5063] umount2("./32/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./32/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] unlink("./32/binderfs")     = 0
[pid  5063] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6821] <... munmap resumed>)       = 0
[pid  6821] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  6796] <... sendfile resumed> => [671], 571) = 571
[pid  6821] <... openat resumed>)       = 4
[  143.288392][ T6796] syz-executor246 (6796): drop_caches: 2
[pid  6821] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6796] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6796] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6796] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6796] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6796] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6796] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6796] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6796] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6796] exit_group(0)               = ?
[pid  6796] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6796, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=33 /* 0.33 s */} ---
[pid  6821] <... ioctl resumed>)        = 0
[pid  6821] close(3)                    = 0
[pid  6821] mkdir("./file0", 0777)      = 0
[pid  6821] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5067] umount2("./32", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./32/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./32/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[  143.319689][ T6821] loop2: detected capacity change from 0 to 32768
[  143.338849][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5067] unlink("./32/binderfs")     = 0
[  143.386811][ T6821] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  143.422514][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5067] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  5065] <... umount2 resumed>)      = 0
[pid  5062] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./32/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] newfstatat(AT_FDCWD, "./32/file0",  <unfinished ...>
[pid  5062] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] <... openat resumed>)       = 4
[pid  5065] openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  5065] <... openat resumed>)       = 4
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] newfstatat(4, "",  <unfinished ...>
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5062] getdents64(4,  <unfinished ...>
[pid  5065] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5062] close(4 <unfinished ...>
[pid  5065] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] <... close resumed>)        = 0
[pid  5065] close(4 <unfinished ...>
[pid  5062] rmdir("./32/file0" <unfinished ...>
[pid  5065] <... close resumed>)        = 0
[pid  5065] rmdir("./32/file0" <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[  143.435319][ T6821] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5065] <... rmdir resumed>)        = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./32")               = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./32")               = 0
[pid  5062] mkdir("./33", 0777 <unfinished ...>
[pid  5065] mkdir("./33", 0777 <unfinished ...>
[pid  5062] <... mkdir resumed>)        = 0
[pid  5065] <... mkdir resumed>)        = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3 <unfinished ...>
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  5065] <... openat resumed>)       = 3
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6854 attached
 <unfinished ...>
[pid  6854] set_robust_list(0x55555697c760, 24) = 0
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 6854
[pid  6854] chdir("./33")               = 0
[pid  6854] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
./strace-static-x86_64: Process 6855 attached
[pid  6854] setpgid(0, 0 <unfinished ...>
[pid  6855] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 6855
[pid  6855] <... set_robust_list resumed>) = 0
[pid  6855] chdir("./33" <unfinished ...>
[pid  6854] <... setpgid resumed>)      = 0
[pid  6855] <... chdir resumed>)        = 0
[pid  6855] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6854] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6855] setpgid(0, 0 <unfinished ...>
[pid  6854] <... openat resumed>)       = 3
[pid  6855] <... setpgid resumed>)      = 0
[pid  6854] write(3, "1000", 4 <unfinished ...>
[pid  6855] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6854] <... write resumed>)        = 4
[pid  6855] <... openat resumed>)       = 3
[pid  6854] close(3 <unfinished ...>
[pid  6855] write(3, "1000", 4 <unfinished ...>
[pid  6854] <... close resumed>)        = 0
[pid  6855] <... write resumed>)        = 4
[pid  6854] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6855] close(3 <unfinished ...>
[pid  6854] <... symlink resumed>)      = 0
[pid  6855] <... close resumed>)        = 0
[pid  6855] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6854] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  6855] <... symlink resumed>)      = 0
[pid  6854] <... memfd_create resumed>) = 3
[pid  5066] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6855] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6854] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6855] <... memfd_create resumed>) = 3
[pid  5066] newfstatat(AT_FDCWD, "./31/file0",  <unfinished ...>
[pid  6855] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6854] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./31/file0")         = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./31")               = 0
[  143.625071][ T6821] XFS (loop2): Ending clean mount
[pid  5066] mkdir("./32", 0777)         = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5066] close(3)                    = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6856 attached
, child_tidptr=0x55555697c750) = 6856
[pid  6856] set_robust_list(0x55555697c760, 24) = 0
[pid  6856] chdir("./32")               = 0
[pid  6856] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6856] setpgid(0, 0)               = 0
[  143.672312][ T6821] XFS (loop2): Quotacheck needed: Please wait.
[pid  6856] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6856] write(3, "1000", 4)         = 4
[pid  6856] close(3)                    = 0
[pid  6856] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6856] memfd_create("syzkaller", 0) = 3
[pid  6856] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6821] <... mount resumed>)        = 0
[pid  6855] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6821] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[  143.774916][ T6821] XFS (loop2): Quotacheck: Done.
[pid  6821] chdir("./file0")            = 0
[pid  6821] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6821] close(4)                    = 0
[pid  6821] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6821] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6821] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6821] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6821] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6821] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  6821] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./32/file0",  <unfinished ...>
[pid  6821] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6821] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6821] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5067] <... openat resumed>)       = 4
[pid  5063] <... umount2 resumed>)      = 0
[pid  5067] newfstatat(4, "",  <unfinished ...>
[pid  6821] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4,  <unfinished ...>
[pid  6821] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  6821] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./32/file0" <unfinished ...>
[pid  6821] read(-1,  <unfinished ...>
[pid  5067] <... rmdir resumed>)        = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6821] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./32")               = 0
[pid  5067] mkdir("./33", 0777 <unfinished ...>
[pid  6821] write(-1, NULL, 0 <unfinished ...>
[pid  5067] <... mkdir resumed>)        = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  6821] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6821] write(-1, NULL, 0 <unfinished ...>
[pid  5067] <... openat resumed>)       = 3
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6821] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5063] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6821] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6821] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5063] newfstatat(AT_FDCWD, "./32/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5063] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4)                    = 0
[pid  5063] rmdir("./32/file0")         = 0
[pid  5067] close(3 <unfinished ...>
[pid  6821] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3 <unfinished ...>
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  6821] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5063] rmdir("./32" <unfinished ...>
[pid  6821] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  6821] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5063] mkdir("./33", 0777 <unfinished ...>
[pid  6821] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5063] <... mkdir resumed>)        = 0
[pid  6821] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 6857
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
./strace-static-x86_64: Process 6857 attached
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6821] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6821] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6821] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5063] close(3 <unfinished ...>
[pid  6821] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5063] <... close resumed>)        = 0
[pid  6821] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6821] <... openat resumed>)       = 4
[pid  6857] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6821] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6857] <... set_robust_list resumed>) = 0
[pid  6821] <... openat resumed>)       = 5
[pid  6857] chdir("./33" <unfinished ...>
[pid  6821] sendfile(5, 4, [100]./strace-static-x86_64: Process 6858 attached
 <unfinished ...>
[pid  6857] <... chdir resumed>)        = 0
[pid  6857] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6857] setpgid(0, 0)               = 0
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 6858
[pid  6857] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6857] write(3, "1000", 4)         = 4
[pid  6858] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6857] close(3)                    = 0
[pid  6857] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6857] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6858] <... set_robust_list resumed>) = 0
[pid  6858] chdir("./33" <unfinished ...>
[pid  6857] <... memfd_create resumed>) = 3
[pid  6858] <... chdir resumed>)        = 0
[pid  6857] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6858] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6857] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6858] <... prctl resumed>)        = 0
[pid  6858] setpgid(0, 0)               = 0
[pid  6858] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6858] write(3, "1000", 4)         = 4
[pid  6858] close(3)                    = 0
[pid  6858] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6858] memfd_create("syzkaller", 0) = 3
[pid  6858] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  143.972466][ T6821] syz-executor246 (6821): drop_caches: 2
[pid  6854] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6821] <... sendfile resumed> => [671], 571) = 571
[pid  6821] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[  144.057658][ T6821] syz-executor246 (6821): drop_caches: 2
[pid  6821] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6821] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6821] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6821] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6821] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6821] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6821] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6821] exit_group(0 <unfinished ...>
[pid  6856] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6821] <... exit_group resumed>)   = ?
[pid  6821] +++ exited with 0 +++
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6821, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=33 /* 0.33 s */} ---
[pid  5064] umount2("./32", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./32/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./32/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./32/binderfs")     = 0
[  144.206530][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5064] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6857] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6855] <... write resumed>)        = 16777216
[pid  6855] munmap(0x7f6d986f1000, 138412032) = 0
[pid  6855] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid  6855] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6855] close(3)                    = 0
[pid  6855] mkdir("./file0", 0777)      = 0
[pid  6858] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  6855] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5064] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./32/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./32/file0")         = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[  144.444643][ T6855] loop3: detected capacity change from 0 to 32768
[pid  5064] rmdir("./32")               = 0
[pid  5064] mkdir("./33", 0777)         = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6864 attached
 <unfinished ...>
[pid  6864] set_robust_list(0x55555697c760, 24) = 0
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 6864
[pid  6864] chdir("./33")               = 0
[pid  6864] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6864] setpgid(0, 0)               = 0
[pid  6864] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6864] write(3, "1000", 4)         = 4
[pid  6864] close(3)                    = 0
[pid  6864] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6864] memfd_create("syzkaller", 0) = 3
[pid  6864] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  144.523859][ T6855] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  144.553061][ T6855] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6854] <... write resumed>)        = 16777216
[pid  6854] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6856] <... write resumed>)        = 16777216
[pid  6856] munmap(0x7f6d986f1000, 138412032) = 0
[pid  6856] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  6856] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6854] <... munmap resumed>)       = 0
[pid  6856] <... ioctl resumed>)        = 0
[pid  6856] close(3)                    = 0
[pid  6856] mkdir("./file0", 0777)      = 0
[pid  6856] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6854] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[  144.711560][ T6855] XFS (loop3): Ending clean mount
[  144.724093][ T6856] loop4: detected capacity change from 0 to 32768
[  144.732333][ T6855] XFS (loop3): Quotacheck needed: Please wait.
[pid  6854] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6864] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6854] <... ioctl resumed>)        = 0
[pid  6854] close(3)                    = 0
[pid  6854] mkdir("./file0", 0777)      = 0
[  144.774442][ T6854] loop0: detected capacity change from 0 to 32768
[  144.798357][ T6856] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  144.817909][ T6855] XFS (loop3): Quotacheck: Done.
[pid  6854] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6855] <... mount resumed>)        = 0
[pid  6855] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6855] chdir("./file0")            = 0
[pid  6855] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6855] close(4)                    = 0
[pid  6855] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6855] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6855] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6855] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6855] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6855] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6855] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6855] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6855] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6855] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6855] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6855] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6855] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6855] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6855] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6855] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6855] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6855] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6855] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6855] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  144.835338][ T6856] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  144.849308][ T6854] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  144.873921][ T6854] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  144.881665][ T6855] syz-executor246 (6855): drop_caches: 2
[  144.921459][ T6855] syz-executor246 (6855): drop_caches: 2
[  144.930729][ T6856] XFS (loop4): Ending clean mount
[pid  6855] sendfile(5, 4, [100] => [671], 571) = 571
[pid  6857] <... write resumed>)        = 16777216
[pid  6857] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6855] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6855] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6855] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6855] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6855] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6855] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[  144.980590][ T6856] XFS (loop4): Quotacheck needed: Please wait.
[pid  6855] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6855] read(-1,  <unfinished ...>
[pid  6858] <... write resumed>)        = 16777216
[pid  6855] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6855] exit_group(0 <unfinished ...>
[pid  6858] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6855] <... exit_group resumed>)   = ?
[pid  6855] +++ exited with 0 +++
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6855, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=30 /* 0.30 s */} ---
[  145.034544][ T6854] XFS (loop0): Ending clean mount
[pid  6857] <... munmap resumed>)       = 0
[pid  6858] <... munmap resumed>)       = 0
[pid  5065] umount2("./33", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] umount2("./33/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6858] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6857] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  6856] <... mount resumed>)        = 0
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6858] <... openat resumed>)       = 4
[pid  6857] <... openat resumed>)       = 4
[pid  6856] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5065] newfstatat(AT_FDCWD, "./33/binderfs",  <unfinished ...>
[pid  6858] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6857] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6856] <... openat resumed>)       = 3
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6856] chdir("./file0" <unfinished ...>
[pid  5065] unlink("./33/binderfs" <unfinished ...>
[pid  6857] <... ioctl resumed>)        = 0
[pid  6857] close(3 <unfinished ...>
[pid  6856] <... chdir resumed>)        = 0
[pid  6856] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6856] close(4)                    = 0
[pid  6856] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6856] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6856] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6856] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6856] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6856] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6856] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6856] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6856] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6856] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6856] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6856] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6856] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  5065] <... unlink resumed>)       = 0
[pid  6856] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6856] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6857] <... close resumed>)        = 0
[pid  6856] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6856] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6856] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6856] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6857] mkdir("./file0", 0777 <unfinished ...>
[pid  6856] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5065] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6856] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6856] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  145.064256][ T6856] XFS (loop4): Quotacheck: Done.
[  145.072299][ T6857] loop5: detected capacity change from 0 to 32768
[  145.072324][ T6858] loop1: detected capacity change from 0 to 32768
[  145.088789][ T6854] XFS (loop0): Quotacheck needed: Please wait.
[  145.104037][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6856] sendfile(5, 4, [100] <unfinished ...>
[pid  6857] <... mkdir resumed>)        = 0
[pid  6857] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6858] <... ioctl resumed>)        = 0
[  145.107564][ T6856] syz-executor246 (6856): drop_caches: 2
[pid  6858] close(3)                    = 0
[pid  6858] mkdir("./file0", 0777)      = 0
[pid  6858] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6856] <... sendfile resumed> => [671], 571) = 571
[pid  6854] <... mount resumed>)        = 0
[pid  6854] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6854] chdir("./file0")            = 0
[pid  6854] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6856] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6854] close(4)                    = 0
[pid  6854] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6856] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6854] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6856] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6856] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6856] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6856] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6856] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6856] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6856] read(-1,  <unfinished ...>
[pid  6854] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6854] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6856] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6854] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6856] exit_group(0 <unfinished ...>
[pid  6854] ftruncate(-1, 33587195 <unfinished ...>
[pid  6856] <... exit_group resumed>)   = ?
[pid  6854] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6856] +++ exited with 0 +++
[pid  6854] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6854] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6856, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=26 /* 0.26 s */} ---
[pid  6854] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6854] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6854] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6854] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[  145.144840][ T6854] XFS (loop0): Quotacheck: Done.
[  145.150116][ T6856] syz-executor246 (6856): drop_caches: 2
[  145.165229][ T6857] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  145.186410][ T6858] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[pid  6854] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6864] <... write resumed>)        = 16777216
[pid  6854] write(-1, NULL, 0 <unfinished ...>
[pid  5066] umount2("./32", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6864] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6854] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6854] write(-1, NULL, 0 <unfinished ...>
[pid  5066] openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6854] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5066] <... openat resumed>)       = 3
[pid  6854] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  6864] <... munmap resumed>)       = 0
[pid  6854] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3,  <unfinished ...>
[pid  6864] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6854] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[  145.215926][ T6858] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  145.244410][ T6857] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5066] umount2("./32/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6864] <... openat resumed>)       = 4
[pid  6854] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6864] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6854] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5066] newfstatat(AT_FDCWD, "./32/binderfs",  <unfinished ...>
[pid  6854] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6854] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5066] unlink("./32/binderfs" <unfinished ...>
[pid  6854] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5066] <... unlink resumed>)       = 0
[pid  6854] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5066] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6854] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6854] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6854] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6854] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6864] <... ioctl resumed>)        = 0
[pid  6864] close(3)                    = 0
[pid  6864] mkdir("./file0", 0777 <unfinished ...>
[pid  6854] sendfile(5, 4, [100] <unfinished ...>
[pid  6864] <... mkdir resumed>)        = 0
[  145.260649][ T6864] loop2: detected capacity change from 0 to 32768
[  145.267432][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  145.297553][ T6854] syz-executor246 (6854): drop_caches: 2
[  145.341560][ T6864] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  145.362673][ T6858] XFS (loop1): Ending clean mount
[  145.365652][ T6864] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  145.377256][ T6854] syz-executor246 (6854): drop_caches: 2
[  145.378249][ T6857] XFS (loop5): Ending clean mount
[pid  6864] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6854] <... sendfile resumed> => [671], 571) = 571
[pid  6854] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6854] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6854] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6854] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6854] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6854] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6854] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6854] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6854] exit_group(0 <unfinished ...>
[pid  6857] <... mount resumed>)        = 0
[pid  6854] <... exit_group resumed>)   = ?
[pid  6857] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6854] +++ exited with 0 +++
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6854, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=31 /* 0.31 s */} ---
[pid  6857] <... openat resumed>)       = 3
[pid  6857] chdir("./file0")            = 0
[pid  6857] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5062] umount2("./33", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6857] close(4 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[  145.394243][ T6857] XFS (loop5): Quotacheck needed: Please wait.
[  145.416475][ T6858] XFS (loop1): Quotacheck needed: Please wait.
[  145.434933][ T6857] XFS (loop5): Quotacheck: Done.
[pid  5062] openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6857] <... close resumed>)        = 0
[pid  5062] <... openat resumed>)       = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6857] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5062] umount2("./33/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  6857] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] newfstatat(AT_FDCWD, "./33/binderfs",  <unfinished ...>
[pid  6857] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./33/binderfs" <unfinished ...>
[pid  6857] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6857] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  5062] <... unlink resumed>)       = 0
[pid  6857] read(-1,  <unfinished ...>
[pid  5062] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6857] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6857] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6858] <... mount resumed>)        = 0
[pid  6857] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6858] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6857] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6858] <... openat resumed>)       = 3
[pid  6857] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6858] chdir("./file0" <unfinished ...>
[pid  6857] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[  145.489182][ T6858] XFS (loop1): Quotacheck: Done.
[pid  6858] <... chdir resumed>)        = 0
[pid  6857] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6858] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6857] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6858] <... ioctl resumed>)        = 0
[pid  6857] read(-1,  <unfinished ...>
[pid  6858] close(4 <unfinished ...>
[pid  6857] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6858] <... close resumed>)        = 0
[pid  6857] write(-1, NULL, 0 <unfinished ...>
[pid  6858] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6857] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6858] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6857] write(-1, NULL, 0 <unfinished ...>
[pid  6858] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6857] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6858] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6857] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6858] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6857] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6858] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6857] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6858] ftruncate(-1, 33587195 <unfinished ...>
[pid  6857] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6858] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6857] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6858] read(-1,  <unfinished ...>
[pid  6857] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6858] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6857] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6858] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6857] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6858] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6857] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[  145.524557][ T6864] XFS (loop2): Ending clean mount
[pid  6858] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6857] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6858] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6857] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  6858] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6857] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5066] <... umount2 resumed>)      = 0
[pid  5065] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6858] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5066] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6858] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6858] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5065] newfstatat(AT_FDCWD, "./33/file0",  <unfinished ...>
[pid  6858] read(-1,  <unfinished ...>
[pid  5066] newfstatat(AT_FDCWD, "./32/file0",  <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6858] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6858] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  5066] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6858] write(-1, NULL, 0 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6858] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5066] openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] <... openat resumed>)       = 4
[pid  6858] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5066] <... openat resumed>)       = 4
[pid  5065] newfstatat(4, "",  <unfinished ...>
[pid  6858] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6858] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6857] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5066] newfstatat(4, "",  <unfinished ...>
[pid  5065] getdents64(4,  <unfinished ...>
[pid  6858] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  6858] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5066] getdents64(4,  <unfinished ...>
[pid  6858] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5066] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4,  <unfinished ...>
[pid  6857] <... openat resumed>)       = 4
[pid  6858] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5065] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  6858] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5066] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4 <unfinished ...>
[pid  6858] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] close(4 <unfinished ...>
[pid  5065] <... close resumed>)        = 0
[pid  6858] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  6858] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5065] rmdir("./33/file0" <unfinished ...>
[pid  6858] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5066] rmdir("./32/file0" <unfinished ...>
[pid  6858] <... openat resumed>)       = 4
[pid  6857] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  5065] <... rmdir resumed>)        = 0
[pid  6858] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  5066] getdents64(3,  <unfinished ...>
[pid  6858] sendfile(5, 4, [100] <unfinished ...>
[pid  5065] getdents64(3,  <unfinished ...>
[pid  6857] <... openat resumed>)       = 5
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6857] sendfile(5, 4, [100] <unfinished ...>
[pid  5066] close(3 <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] <... close resumed>)        = 0
[pid  5066] rmdir("./32")               = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./33" <unfinished ...>
[pid  5066] mkdir("./33", 0777 <unfinished ...>
[pid  5065] <... rmdir resumed>)        = 0
[pid  5066] <... mkdir resumed>)        = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5065] mkdir("./34", 0777 <unfinished ...>
[pid  5066] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5065] <... mkdir resumed>)        = 0
[pid  5066] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5066] close(3)                    = 0
[  145.548586][ T6864] XFS (loop2): Quotacheck needed: Please wait.
[  145.561304][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5065] <... openat resumed>)       = 3
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
./strace-static-x86_64: Process 6908 attached
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6909 attached
 <unfinished ...>
[pid  6908] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 6908
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 6909
[pid  6909] set_robust_list(0x55555697c760, 24) = 0
[pid  6909] chdir("./34" <unfinished ...>
[pid  6908] <... set_robust_list resumed>) = 0
[pid  6909] <... chdir resumed>)        = 0
[pid  6908] chdir("./33")               = 0
[pid  6909] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6908] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6909] <... prctl resumed>)        = 0
[pid  6908] <... prctl resumed>)        = 0
[pid  6909] setpgid(0, 0 <unfinished ...>
[pid  6908] setpgid(0, 0 <unfinished ...>
[pid  6909] <... setpgid resumed>)      = 0
[pid  6908] <... setpgid resumed>)      = 0
[pid  6909] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6908] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6909] <... openat resumed>)       = 3
[pid  6908] <... openat resumed>)       = 3
[pid  6909] write(3, "1000", 4 <unfinished ...>
[pid  6908] write(3, "1000", 4 <unfinished ...>
[pid  6909] <... write resumed>)        = 4
[pid  6908] <... write resumed>)        = 4
[pid  6909] close(3 <unfinished ...>
[pid  6908] close(3 <unfinished ...>
[pid  6864] <... mount resumed>)        = 0
[pid  6909] <... close resumed>)        = 0
[pid  6908] <... close resumed>)        = 0
[pid  6864] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6909] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6908] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6864] <... openat resumed>)       = 3
[pid  6909] <... symlink resumed>)      = 0
[pid  6908] <... symlink resumed>)      = 0
[pid  6864] chdir("./file0" <unfinished ...>
[pid  6908] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6864] <... chdir resumed>)        = 0
[pid  6909] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6908] <... memfd_create resumed>) = 3
[pid  6864] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6908] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6864] <... ioctl resumed>)        = 0
[  145.612495][ T6857] syz-executor246 (6857): drop_caches: 2
[  145.616315][ T6858] syz-executor246 (6858): drop_caches: 2
[  145.625529][ T6864] XFS (loop2): Quotacheck: Done.
[pid  6909] <... memfd_create resumed>) = 3
[pid  6908] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6864] close(4)                    = 0
[pid  6909] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  6858] <... sendfile resumed> => [671], 571) = 571
[pid  6909] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6864] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6864] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6864] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6857] <... sendfile resumed> => [671], 571) = 571
[pid  6857] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6864] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6857] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6857] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6857] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6864] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6857] ftruncate(-1, 33587199 <unfinished ...>
[pid  6864] read(-1,  <unfinished ...>
[pid  6857] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6864] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6864] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6858] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6864] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6858] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6864] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6858] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6857] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6864] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6858] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6857] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6864] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6858] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6857] open(NULL, O_RDONLY <unfinished ...>
[pid  6864] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6858] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6857] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6864] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6858] ftruncate(-1, 33587199 <unfinished ...>
[pid  6857] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6864] read(-1,  <unfinished ...>
[pid  6858] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6857] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6864] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6858] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6857] read(-1,  <unfinished ...>
[pid  6864] write(-1, NULL, 0 <unfinished ...>
[pid  6858] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6857] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6864] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6858] open(NULL, O_RDONLY <unfinished ...>
[pid  6857] exit_group(0 <unfinished ...>
[pid  6864] write(-1, NULL, 0 <unfinished ...>
[pid  6858] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6857] <... exit_group resumed>)   = ?
[pid  6864] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6858] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6864] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6858] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6864] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6858] read(-1,  <unfinished ...>
[pid  6864] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6858] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6857] +++ exited with 0 +++
[pid  6864] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[  145.658274][ T6857] syz-executor246 (6857): drop_caches: 2
[  145.666061][ T6858] syz-executor246 (6858): drop_caches: 2
[pid  6858] exit_group(0 <unfinished ...>
[pid  6864] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6858] <... exit_group resumed>)   = ?
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6857, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=37 /* 0.37 s */} ---
[pid  6864] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6858] +++ exited with 0 +++
[pid  5067] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  6864] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5067] <... restart_syscall resumed>) = 0
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6858, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=37 /* 0.37 s */} ---
[pid  6864] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6864] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5067] umount2("./33", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6864] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6864] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5067] openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6864] <... openat resumed>)       = 5
[pid  5067] <... openat resumed>)       = 3
[pid  6864] sendfile(5, 4, [100] <unfinished ...>
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./33/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] umount2("./33", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./33/binderfs",  <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] <... openat resumed>)       = 3
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  5067] unlink("./33/binderfs" <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] <... unlink resumed>)       = 0
[pid  5067] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./33/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./33/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] unlink("./33/binderfs")     = 0
[  145.769692][ T6864] syz-executor246 (6864): drop_caches: 2
[  145.804127][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  145.807442][ T6864] syz-executor246 (6864): drop_caches: 2
[pid  5063] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6864] <... sendfile resumed> => [671], 571) = 571
[pid  6864] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6864] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6864] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[  145.837229][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6864] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6864] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6864] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6864] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6864] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6864] exit_group(0)               = ?
[pid  6864] +++ exited with 0 +++
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6864, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=32 /* 0.32 s */} ---
[pid  5064] umount2("./33", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./33/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./33/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./33/binderfs")     = 0
[  145.973843][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5064] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  5062] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./33/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./33/file0")         = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./33")               = 0
[pid  5062] mkdir("./34", 0777)         = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3)                    = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6910 attached
 <unfinished ...>
[pid  6910] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 6910
[pid  6910] <... set_robust_list resumed>) = 0
[pid  6910] chdir("./34")               = 0
[pid  6910] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6910] setpgid(0, 0)               = 0
[pid  6910] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6908] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6910] write(3, "1000", 4)         = 4
[pid  6910] close(3)                    = 0
[pid  6910] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6909] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6910] memfd_create("syzkaller", 0) = 3
[pid  6910] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5067] <... umount2 resumed>)      = 0
[pid  5067] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./33/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] <... umount2 resumed>)      = 0
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./33/file0" <unfinished ...>
[pid  5063] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... rmdir resumed>)        = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./33" <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./33/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5067] <... rmdir resumed>)        = 0
[pid  5067] mkdir("./34", 0777 <unfinished ...>
[pid  5063] <... openat resumed>)       = 4
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5067] <... mkdir resumed>)        = 0
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4)                    = 0
[pid  5063] rmdir("./33/file0")         = 0
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3)                    = 0
[pid  5063] rmdir("./33" <unfinished ...>
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5063] mkdir("./34", 0777)         = 0
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5063] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5063] close(3)                    = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6911 attached
 <unfinished ...>
[pid  6911] set_robust_list(0x55555697c760, 24) = 0
[pid  6911] chdir("./34" <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 6911
[pid  6911] <... chdir resumed>)        = 0
[pid  6911] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6911] setpgid(0, 0)               = 0
[pid  6911] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 6912
[pid  6911] write(3, "1000", 4)         = 4
[pid  6911] close(3)                    = 0
[pid  6911] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6911] memfd_create("syzkaller", 0) = 3
[pid  6911] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
./strace-static-x86_64: Process 6912 attached
[pid  6912] set_robust_list(0x55555697c760, 24) = 0
[pid  6912] chdir("./34")               = 0
[pid  6912] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6912] setpgid(0, 0)               = 0
[pid  5064] <... umount2 resumed>)      = 0
[pid  6912] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5064] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6912] write(3, "1000", 4 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6912] <... write resumed>)        = 4
[pid  6912] close(3 <unfinished ...>
[pid  5064] newfstatat(AT_FDCWD, "./33/file0",  <unfinished ...>
[pid  6912] <... close resumed>)        = 0
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6912] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5064] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6912] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6912] <... memfd_create resumed>) = 3
[pid  5064] openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6912] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5064] <... openat resumed>)       = 4
[pid  6912] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./33/file0")         = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./33")               = 0
[pid  5064] mkdir("./34", 0777)         = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6913 attached
, child_tidptr=0x55555697c750) = 6913
[pid  6913] set_robust_list(0x55555697c760, 24) = 0
[pid  6913] chdir("./34")               = 0
[pid  6913] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6913] setpgid(0, 0)               = 0
[pid  6913] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6913] write(3, "1000", 4)         = 4
[pid  6913] close(3)                    = 0
[pid  6913] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6913] memfd_create("syzkaller", 0) = 3
[pid  6913] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6910] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6908] <... write resumed>)        = 16777216
[pid  6908] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6909] <... write resumed>)        = 16777216
[pid  6909] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6911] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6912] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6908] <... munmap resumed>)       = 0
[pid  6909] <... munmap resumed>)       = 0
[pid  6909] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid  6909] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6908] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  6909] <... ioctl resumed>)        = 0
[pid  6909] close(3 <unfinished ...>
[pid  6908] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6909] <... close resumed>)        = 0
[pid  6909] mkdir("./file0", 0777)      = 0
[pid  6909] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6908] <... ioctl resumed>)        = 0
[pid  6908] close(3)                    = 0
[pid  6908] mkdir("./file0", 0777)      = 0
[pid  6908] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[  146.817144][ T6909] loop3: detected capacity change from 0 to 32768
[  146.835002][ T6908] loop4: detected capacity change from 0 to 32768
[  146.884380][ T6909] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  146.933687][ T6909] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  146.954458][ T6908] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  146.963604][ T6908] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6913] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6910] <... write resumed>)        = 16777216
[pid  6911] <... write resumed>)        = 16777216
[pid  6911] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[  147.106943][ T6909] XFS (loop3): Ending clean mount
[  147.108618][ T6908] XFS (loop4): Ending clean mount
[  147.124995][ T6908] XFS (loop4): Quotacheck needed: Please wait.
[pid  6910] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6911] <... munmap resumed>)       = 0
[pid  6910] <... munmap resumed>)       = 0
[pid  6911] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid  6911] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6911] close(3 <unfinished ...>
[pid  6910] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  6911] <... close resumed>)        = 0
[pid  6910] <... openat resumed>)       = 4
[pid  6911] mkdir("./file0", 0777 <unfinished ...>
[pid  6910] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6911] <... mkdir resumed>)        = 0
[pid  6911] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6910] <... ioctl resumed>)        = 0
[pid  6910] close(3)                    = 0
[pid  6910] mkdir("./file0", 0777)      = 0
[  147.154000][ T6909] XFS (loop3): Quotacheck needed: Please wait.
[  147.163408][ T6911] loop1: detected capacity change from 0 to 32768
[  147.187882][ T6910] loop0: detected capacity change from 0 to 32768
[  147.189623][ T6908] XFS (loop4): Quotacheck: Done.
[pid  6910] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6908] <... mount resumed>)        = 0
[pid  6912] <... write resumed>)        = 16777216
[pid  6908] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6912] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6909] <... mount resumed>)        = 0
[pid  6909] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6908] <... openat resumed>)       = 3
[pid  6909] chdir("./file0" <unfinished ...>
[pid  6908] chdir("./file0" <unfinished ...>
[pid  6909] <... chdir resumed>)        = 0
[pid  6908] <... chdir resumed>)        = 0
[pid  6909] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6908] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6909] close(4)                    = 0
[pid  6908] <... ioctl resumed>)        = 0
[pid  6908] close(4)                    = 0
[pid  6908] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6908] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6908] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6909] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6908] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6909] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6908] ftruncate(-1, 33587195 <unfinished ...>
[pid  6909] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6908] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6908] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6909] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6909] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6908] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6909] ftruncate(-1, 33587195 <unfinished ...>
[pid  6908] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6909] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[  147.232986][ T6911] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  147.236781][ T6909] XFS (loop3): Quotacheck: Done.
[  147.247340][ T6910] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  147.248417][ T6911] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  147.256465][ T6910] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6909] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6908] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6913] <... write resumed>)        = 16777216
[pid  6908] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6908] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6913] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6909] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6908] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6909] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6908] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6909] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6908] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6909] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6908] read(-1,  <unfinished ...>
[pid  6909] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6908] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6909] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6908] write(-1, NULL, 0 <unfinished ...>
[pid  6909] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6912] <... munmap resumed>)       = 0
[pid  6909] read(-1,  <unfinished ...>
[pid  6912] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  6909] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6912] <... openat resumed>)       = 4
[pid  6909] write(-1, NULL, 0 <unfinished ...>
[pid  6908] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6912] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6909] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6908] write(-1, NULL, 0 <unfinished ...>
[pid  6913] <... munmap resumed>)       = 0
[pid  6909] write(-1, NULL, 0 <unfinished ...>
[pid  6908] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6909] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6908] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6909] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6908] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6909] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6908] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6909] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6909] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6909] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6909] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6912] <... ioctl resumed>)        = 0
[pid  6909] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6908] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6909] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6909] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6909] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6912] close(3 <unfinished ...>
[pid  6909] <... openat resumed>)       = 5
[pid  6908] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6912] <... close resumed>)        = 0
[pid  6909] sendfile(5, 4, [100] <unfinished ...>
[pid  6912] mkdir("./file0", 0777)      = 0
[pid  6908] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6912] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6908] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[  147.333788][ T6912] loop5: detected capacity change from 0 to 32768
[  147.353914][ T6910] XFS (loop0): Ending clean mount
[  147.363087][ T6910] XFS (loop0): Quotacheck needed: Please wait.
[pid  6908] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6913] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  6908] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6908] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6913] <... openat resumed>)       = 4
[pid  6908] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6908] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  6908] sendfile(5, 4, [100] <unfinished ...>
[pid  6910] <... mount resumed>)        = 0
[pid  6910] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6910] chdir("./file0")            = 0
[pid  6910] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6913] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6910] close(4)                    = 0
[pid  6910] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6910] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6910] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6910] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[  147.392615][ T6910] XFS (loop0): Quotacheck: Done.
[  147.393973][ T6911] XFS (loop1): Ending clean mount
[  147.418152][ T6911] XFS (loop1): Quotacheck needed: Please wait.
[  147.429188][ T6913] loop2: detected capacity change from 0 to 32768
[  147.432674][ T6908] syz-executor246 (6908): drop_caches: 2
[pid  6910] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6910] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6908] <... sendfile resumed> => [671], 571) = 571
[pid  6908] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6908] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6908] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6908] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6908] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6908] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6908] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6910] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6908] read(-1,  <unfinished ...>
[pid  6913] <... ioctl resumed>)        = 0
[pid  6911] <... mount resumed>)        = 0
[pid  6910] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6913] close(3 <unfinished ...>
[pid  6911] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6913] <... close resumed>)        = 0
[pid  6911] <... openat resumed>)       = 3
[pid  6913] mkdir("./file0", 0777)      = 0
[pid  6911] chdir("./file0")            = 0
[pid  6908] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6910] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6911] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6910] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6911] close(4 <unfinished ...>
[pid  6913] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6911] <... close resumed>)        = 0
[pid  6911] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6911] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6911] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6911] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[  147.442843][ T6908] syz-executor246 (6908): drop_caches: 2
[  147.461391][ T6912] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  147.469125][ T6909] syz-executor246 (6909): drop_caches: 2
[  147.470790][ T6909] syz-executor246 (6909): drop_caches: 2
[  147.477285][ T6911] XFS (loop1): Quotacheck: Done.
[pid  6911] read(-1,  <unfinished ...>
[pid  6910] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6909] <... sendfile resumed> => [671], 571) = 571
[pid  6908] exit_group(0 <unfinished ...>
[pid  6911] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6910] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6910] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6910] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6910] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6910] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6911] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6909] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6908] <... exit_group resumed>)   = ?
[pid  6911] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6910] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6909] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6908] +++ exited with 0 +++
[pid  6911] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6910] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6909] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6911] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6909] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6911] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6910] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6909] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6911] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6909] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6908, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=31 /* 0.31 s */} ---
[pid  6911] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6910] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6909] ftruncate(-1, 33587199 <unfinished ...>
[pid  6910] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6911] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6909] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6910] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6911] read(-1,  <unfinished ...>
[pid  6910] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6909] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6911] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6909] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6911] write(-1, NULL, 0 <unfinished ...>
[pid  6910] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6909] open(NULL, O_RDONLY <unfinished ...>
[pid  6911] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5066] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  6911] write(-1, NULL, 0 <unfinished ...>
[pid  6910] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6909] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6911] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6910] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6909] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5066] <... restart_syscall resumed>) = 0
[pid  6911] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6910] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6909] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6910] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6911] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[  147.502194][ T6912] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  147.535502][ T6913] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[pid  6910] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6909] read(-1,  <unfinished ...>
[pid  5066] umount2("./33", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6910] <... openat resumed>)       = 5
[pid  6911] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3,  <unfinished ...>
[pid  6911] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6910] sendfile(5, 4, [100] <unfinished ...>
[pid  6909] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./33/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./33/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] unlink("./33/binderfs")     = 0
[pid  6911] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6909] exit_group(0 <unfinished ...>
[pid  6911] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5066] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6911] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6909] <... exit_group resumed>)   = ?
[pid  6911] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6911] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6909] +++ exited with 0 +++
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6909, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=34 /* 0.34 s */} ---
[pid  6911] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] umount2("./34", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  6911] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6911] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6910] <... sendfile resumed> => [671], 571) = 571
[pid  5065] getdents64(3,  <unfinished ...>
[pid  6911] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6910] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6911] <... openat resumed>)       = 4
[pid  5065] umount2("./34/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6911] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6910] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[  147.548918][ T6913] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  147.568824][ T6910] syz-executor246 (6910): drop_caches: 2
[  147.576569][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  147.580463][ T6910] syz-executor246 (6910): drop_caches: 2
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6911] <... openat resumed>)       = 5
[pid  6910] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6911] sendfile(5, 4, [100] <unfinished ...>
[pid  6910] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] newfstatat(AT_FDCWD, "./34/binderfs",  <unfinished ...>
[pid  6910] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6910] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5065] unlink("./34/binderfs" <unfinished ...>
[pid  6910] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6910] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  5065] <... unlink resumed>)       = 0
[pid  6910] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5065] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6910] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6910] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6910] exit_group(0)               = ?
[  147.602472][ T6912] XFS (loop5): Ending clean mount
[  147.609657][ T6911] syz-executor246 (6911): drop_caches: 2
[  147.619527][ T6911] syz-executor246 (6911): drop_caches: 2
[  147.638879][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6911] <... sendfile resumed> => [671], 571) = 571
[pid  6910] +++ exited with 0 +++
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6910, si_uid=0, si_status=0, si_utime=0, si_stime=38 /* 0.38 s */} ---
[pid  5062] umount2("./34", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./34/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6911] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./34/binderfs",  <unfinished ...>
[pid  6911] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./34/binderfs" <unfinished ...>
[pid  6911] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5062] <... unlink resumed>)       = 0
[pid  5062] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6911] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6911] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6911] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6911] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6911] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  6911] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6911] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6911] exit_group(0)               = ?
[pid  6911] +++ exited with 0 +++
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6911, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=30 /* 0.30 s */} ---
[pid  5063] umount2("./34", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./34/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./34/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] unlink("./34/binderfs")     = 0
[  147.639292][ T6912] XFS (loop5): Quotacheck needed: Please wait.
[  147.663731][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  147.685721][ T6913] XFS (loop2): Ending clean mount
[pid  5063] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6912] <... mount resumed>)        = 0
[pid  6912] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6912] chdir("./file0")            = 0
[pid  6912] ioctl(4, LOOP_CLR_FD)       = 0
[pid  6912] close(4)                    = 0
[pid  6912] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6912] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6912] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[  147.717914][ T6912] XFS (loop5): Quotacheck: Done.
[  147.722160][ T6913] XFS (loop2): Quotacheck needed: Please wait.
[  147.753925][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6912] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6912] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6912] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6912] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6912] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6912] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6912] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6912] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6912] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6912] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6912] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6913] <... mount resumed>)        = 0
[pid  6912] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[  147.794280][ T6913] XFS (loop2): Quotacheck: Done.
[pid  6913] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  6912] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6912] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6912] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6912] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6912] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6913] chdir("./file0" <unfinished ...>
[pid  6912] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6913] <... chdir resumed>)        = 0
[pid  6912] <... openat resumed>)       = 5
[pid  6913] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6912] sendfile(5, 4, [100] <unfinished ...>
[pid  6913] <... ioctl resumed>)        = 0
[pid  6913] close(4)                    = 0
[pid  6913] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6913] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6913] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6913] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6913] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6913] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6913] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6913] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6913] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6913] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6913] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6913] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6913] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[  147.845398][ T6912] syz-executor246 (6912): drop_caches: 2
[pid  6913] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6913] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6913] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6913] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6913] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6913] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6913] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  147.891821][ T6912] syz-executor246 (6912): drop_caches: 2
[  147.899167][ T6913] syz-executor246 (6913): drop_caches: 2
[pid  6913] sendfile(5, 4, [100] <unfinished ...>
[pid  6912] <... sendfile resumed> => [671], 571) = 571
[pid  6912] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6913] <... sendfile resumed> => [671], 571) = 571
[pid  6912] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6913] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6912] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6913] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6913] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6913] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6913] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6913] open(NULL, O_RDONLY <unfinished ...>
[pid  6912] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6913] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6912] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6913] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6912] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6913] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6912] ftruncate(-1, 33587199 <unfinished ...>
[pid  6913] read(-1,  <unfinished ...>
[pid  6912] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6913] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6912] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6913] exit_group(0 <unfinished ...>
[pid  6912] open(NULL, O_RDONLY <unfinished ...>
[pid  6913] <... exit_group resumed>)   = ?
[pid  6912] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6913] +++ exited with 0 +++
[pid  6912] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6913, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=31 /* 0.31 s */} ---
[pid  6912] read(-1,  <unfinished ...>
[pid  5064] umount2("./34", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6912] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5064] <... openat resumed>)       = 3
[pid  6912] exit_group(0 <unfinished ...>
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./34/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./34/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./34/binderfs")     = 0
[pid  5064] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6912] <... exit_group resumed>)   = ?
[pid  6912] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6912, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=37 /* 0.37 s */} ---
[pid  5067] umount2("./34", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./34/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./34/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./34/binderfs")     = 0
[  147.945868][ T6913] syz-executor246 (6913): drop_caches: 2
[pid  5067] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./33/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[  148.002965][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  148.028467][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./33/file0")         = 0
[pid  5065] <... umount2 resumed>)      = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./33")               = 0
[pid  5066] mkdir("./34", 0777)         = 0
[pid  5063] <... umount2 resumed>)      = 0
[pid  5065] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./34/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5065] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5065] openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5066] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5065] <... openat resumed>)       = 4
[pid  5066] close(3 <unfinished ...>
[pid  5065] newfstatat(4, "",  <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5065] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./34/file0" <unfinished ...>
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 6962
[pid  5065] <... rmdir resumed>)        = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./34"./strace-static-x86_64: Process 6962 attached
)               = 0
[pid  5063] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./34/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] close(4 <unfinished ...>
[pid  6962] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5065] mkdir("./35", 0777 <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5065] <... mkdir resumed>)        = 0
[pid  5063] rmdir("./34/file0" <unfinished ...>
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  5065] <... openat resumed>)       = 3
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5065] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5063] close(3 <unfinished ...>
[pid  5065] close(3 <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5065] <... close resumed>)        = 0
[pid  5063] rmdir("./34" <unfinished ...>
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
./strace-static-x86_64: Process 6963 attached
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 6963
[pid  6963] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  6962] <... set_robust_list resumed>) = 0
[pid  6963] <... set_robust_list resumed>) = 0
[pid  6963] chdir("./35")               = 0
[pid  5063] mkdir("./35", 0777 <unfinished ...>
[pid  6963] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5063] <... mkdir resumed>)        = 0
[pid  6963] <... prctl resumed>)        = 0
[pid  6963] setpgid(0, 0)               = 0
[pid  6963] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6962] chdir("./34" <unfinished ...>
[pid  6963] <... openat resumed>)       = 3
[pid  6963] write(3, "1000", 4 <unfinished ...>
[pid  6962] <... chdir resumed>)        = 0
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6963] <... write resumed>)        = 4
[pid  6963] close(3 <unfinished ...>
[pid  6962] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5063] <... openat resumed>)       = 3
[pid  6962] <... prctl resumed>)        = 0
[pid  6963] <... close resumed>)        = 0
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6963] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6962] setpgid(0, 0 <unfinished ...>
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  6962] <... setpgid resumed>)      = 0
[pid  6963] <... symlink resumed>)      = 0
[pid  6962] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5063] close(3 <unfinished ...>
[pid  6963] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6964
[pid  6963] <... memfd_create resumed>) = 3
[pid  6963] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6962] <... openat resumed>)       = 3
./strace-static-x86_64: Process 6964 attached
[pid  5062] <... umount2 resumed>)      = 0
[pid  6964] set_robust_list(0x55555697c760, 24) = 0
[pid  6964] chdir("./35")               = 0
[pid  5062] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./34/file0",  <unfinished ...>
[pid  6964] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6964] <... prctl resumed>)        = 0
[pid  6964] setpgid(0, 0)               = 0
[pid  5062] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6964] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6962] write(3, "1000", 4 <unfinished ...>
[pid  6964] <... openat resumed>)       = 3
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6964] write(3, "1000", 4)         = 4
[pid  5062] openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6964] close(3 <unfinished ...>
[pid  5062] <... openat resumed>)       = 4
[pid  6964] <... close resumed>)        = 0
[pid  6964] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  6964] <... symlink resumed>)      = 0
[pid  6964] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6964] <... memfd_create resumed>) = 3
[pid  6964] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5062] getdents64(4,  <unfinished ...>
[pid  6964] <... mmap resumed>)         = 0x7f6d986f1000
[pid  6962] <... write resumed>)        = 4
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4 <unfinished ...>
[pid  6962] close(3)                    = 0
[pid  5062] <... close resumed>)        = 0
[pid  5062] rmdir("./34/file0" <unfinished ...>
[pid  6962] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5062] <... rmdir resumed>)        = 0
[pid  6962] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5062] getdents64(3,  <unfinished ...>
[pid  6962] <... memfd_create resumed>) = 3
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./34" <unfinished ...>
[pid  6962] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  6962] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5062] mkdir("./35", 0777)         = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3)                    = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 6965
./strace-static-x86_64: Process 6965 attached
[pid  6965] set_robust_list(0x55555697c760, 24) = 0
[pid  6965] chdir("./35")               = 0
[pid  6965] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6965] setpgid(0, 0)               = 0
[pid  6965] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  6965] write(3, "1000", 4)         = 4
[pid  6965] close(3)                    = 0
[pid  6965] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6965] memfd_create("syzkaller", 0) = 3
[pid  6965] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5067] <... umount2 resumed>)      = 0
[pid  5064] <... umount2 resumed>)      = 0
[pid  5064] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./34/file0",  <unfinished ...>
[pid  5064] newfstatat(AT_FDCWD, "./34/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5064] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... openat resumed>)       = 4
[pid  5067] newfstatat(4, "",  <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] <... openat resumed>)       = 4
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5064] newfstatat(4, "",  <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] close(4)                    = 0
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./34/file0")         = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./34")               = 0
[pid  5064] mkdir("./35", 0777)         = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] rmdir("./34/file0" <unfinished ...>
[pid  5064] close(3)                    = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5067] <... rmdir resumed>)        = 0
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 6966
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
./strace-static-x86_64: Process 6966 attached
[pid  5067] close(3 <unfinished ...>
[pid  6966] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  6966] <... set_robust_list resumed>) = 0
[pid  5067] rmdir("./34" <unfinished ...>
[pid  6966] chdir("./35" <unfinished ...>
[pid  5067] <... rmdir resumed>)        = 0
[pid  6966] <... chdir resumed>)        = 0
[pid  5067] mkdir("./35", 0777 <unfinished ...>
[pid  6966] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5067] <... mkdir resumed>)        = 0
[pid  6966] setpgid(0, 0 <unfinished ...>
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  6966] <... setpgid resumed>)      = 0
[pid  5067] <... openat resumed>)       = 3
[pid  6966] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  6966] <... openat resumed>)       = 3
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5067] close(3 <unfinished ...>
[pid  6966] write(3, "1000", 4 <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  6966] <... write resumed>)        = 4
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  6963] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 6967
[pid  6966] close(3./strace-static-x86_64: Process 6967 attached
 <unfinished ...>
[pid  6967] set_robust_list(0x55555697c760, 24) = 0
[pid  6966] <... close resumed>)        = 0
[pid  6966] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  6962] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6967] chdir("./35" <unfinished ...>
[pid  6966] <... symlink resumed>)      = 0
[pid  6967] <... chdir resumed>)        = 0
[pid  6967] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  6966] memfd_create("syzkaller", 0 <unfinished ...>
[pid  6967] <... prctl resumed>)        = 0
[pid  6967] setpgid(0, 0)               = 0
[pid  6967] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  6966] <... memfd_create resumed>) = 3
[pid  6966] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6967] <... openat resumed>)       = 3
[pid  6967] write(3, "1000", 4)         = 4
[pid  6967] close(3)                    = 0
[pid  6964] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6967] symlink("/dev/binderfs", "./binderfs") = 0
[pid  6967] memfd_create("syzkaller", 0) = 3
[pid  6967] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  6965] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6966] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6965] <... write resumed>)        = 16777216
[pid  6965] munmap(0x7f6d986f1000, 138412032) = 0
[pid  6967] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  6965] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  6965] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6965] close(3)                    = 0
[pid  6965] mkdir("./file0", 0777)      = 0
[  149.143187][ T6965] loop0: detected capacity change from 0 to 32768
[pid  6965] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6962] <... write resumed>)        = 16777216
[pid  6963] <... write resumed>)        = 16777216
[pid  6963] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[  149.239353][ T6965] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  149.253053][ T6965] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6962] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6963] <... munmap resumed>)       = 0
[pid  6962] <... munmap resumed>)       = 0
[pid  6962] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  6962] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  6963] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid  6963] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6962] close(3)                    = 0
[pid  6962] mkdir("./file0", 0777 <unfinished ...>
[pid  6964] <... write resumed>)        = 16777216
[pid  6963] <... ioctl resumed>)        = 0
[pid  6962] <... mkdir resumed>)        = 0
[pid  6963] close(3 <unfinished ...>
[pid  6962] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6963] <... close resumed>)        = 0
[  149.316011][ T6962] loop4: detected capacity change from 0 to 32768
[  149.326417][ T6963] loop3: detected capacity change from 0 to 32768
[pid  6963] mkdir("./file0", 0777)      = 0
[pid  6964] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6963] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6966] <... write resumed>)        = 16777216
[  149.395227][ T6962] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  149.404040][ T6965] XFS (loop0): Ending clean mount
[  149.414525][ T6962] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  149.436305][ T6965] XFS (loop0): Quotacheck needed: Please wait.
[pid  6966] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6964] <... munmap resumed>)       = 0
[pid  6964] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  6966] <... munmap resumed>)       = 0
[pid  6964] <... openat resumed>)       = 4
[pid  6964] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6966] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid  6966] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6964] <... ioctl resumed>)        = 0
[pid  6964] close(3)                    = 0
[pid  6964] mkdir("./file0", 0777)      = 0
[pid  6964] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6965] <... mount resumed>)        = 0
[pid  6966] <... ioctl resumed>)        = 0
[pid  6965] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6966] close(3 <unfinished ...>
[pid  6965] <... openat resumed>)       = 3
[pid  6966] <... close resumed>)        = 0
[pid  6965] chdir("./file0" <unfinished ...>
[pid  6966] mkdir("./file0", 0777 <unfinished ...>
[pid  6965] <... chdir resumed>)        = 0
[pid  6966] <... mkdir resumed>)        = 0
[pid  6965] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6966] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  6965] <... ioctl resumed>)        = 0
[  149.437417][ T6963] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  149.454613][ T6964] loop1: detected capacity change from 0 to 32768
[  149.476121][ T6966] loop2: detected capacity change from 0 to 32768
[  149.486884][ T6965] XFS (loop0): Quotacheck: Done.
[pid  6967] <... write resumed>)        = 16777216
[pid  6965] close(4)                    = 0
[pid  6965] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6965] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6965] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6965] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6965] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6965] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6965] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6965] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6965] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6965] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6965] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6965] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6965] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6965] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6967] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  6965] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6965] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6965] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6965] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6965] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6965] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6965] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  149.506193][ T6963] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  149.524157][ T6964] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  149.534092][ T6962] XFS (loop4): Ending clean mount
[pid  6965] sendfile(5, 4, [100] <unfinished ...>
[pid  6967] <... munmap resumed>)       = 0
[pid  6967] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[pid  6967] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  6965] <... sendfile resumed> => [671], 571) = 571
[pid  6965] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6965] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  6965] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6965] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[  149.574439][ T6964] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  149.576820][ T6965] syz-executor246 (6965): drop_caches: 2
[  149.590644][ T6966] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  149.590940][ T6965] syz-executor246 (6965): drop_caches: 2
[  149.605593][ T6967] loop5: detected capacity change from 0 to 32768
[pid  6965] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6967] <... ioctl resumed>)        = 0
[pid  6965] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6965] open(NULL, O_RDONLY <unfinished ...>
[pid  6967] close(3 <unfinished ...>
[pid  6965] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6965] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  6965] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6965] exit_group(0)               = ?
[pid  6967] <... close resumed>)        = 0
[pid  6967] mkdir("./file0", 0777)      = 0
[pid  6965] +++ exited with 0 +++
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6965, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=26 /* 0.26 s */} ---
[pid  5062] umount2("./35", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[  149.621574][ T6964] XFS (loop1): Ending clean mount
[  149.629652][ T6964] XFS (loop1): Quotacheck needed: Please wait.
[  149.629656][ T6962] XFS (loop4): Quotacheck needed: Please wait.
[  149.647171][ T6966] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  149.658621][ T6963] XFS (loop3): Ending clean mount
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  6967] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6962] <... mount resumed>)        = 0
[pid  5062] getdents64(3,  <unfinished ...>
[pid  6962] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6962] <... openat resumed>)       = 3
[pid  5062] umount2("./35/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6962] chdir("./file0" <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6962] <... chdir resumed>)        = 0
[pid  5062] newfstatat(AT_FDCWD, "./35/binderfs",  <unfinished ...>
[pid  6962] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6962] <... ioctl resumed>)        = 0
[pid  5062] unlink("./35/binderfs")     = 0
[pid  6962] close(4 <unfinished ...>
[pid  5062] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6964] <... mount resumed>)        = 0
[pid  6962] <... close resumed>)        = 0
[pid  6962] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6962] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6962] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6964] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6962] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6964] <... openat resumed>)       = 3
[pid  6962] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6962] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6962] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  6962] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  6962] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  6962] read(-1,  <unfinished ...>
[pid  6964] chdir("./file0" <unfinished ...>
[pid  6962] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[  149.671233][ T6963] XFS (loop3): Quotacheck needed: Please wait.
[  149.679496][ T6962] XFS (loop4): Quotacheck: Done.
[  149.687233][ T6964] XFS (loop1): Quotacheck: Done.
[  149.702640][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  149.710323][ T6967] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[pid  6962] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6962] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6962] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6964] <... chdir resumed>)        = 0
[pid  6962] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  6962] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6962] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6962] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6964] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6962] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6962] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6962] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6964] <... ioctl resumed>)        = 0
[pid  6964] close(4)                    = 0
[pid  6963] <... mount resumed>)        = 0
[pid  6962] <... openat resumed>)       = 4
[pid  6964] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6963] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6964] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6964] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6963] <... openat resumed>)       = 3
[pid  6964] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6963] chdir("./file0" <unfinished ...>
[pid  6964] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6963] <... chdir resumed>)        = 0
[pid  6964] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6963] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6964] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6963] <... ioctl resumed>)        = 0
[pid  6962] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6964] read(-1,  <unfinished ...>
[pid  6963] close(4 <unfinished ...>
[pid  6964] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6963] <... close resumed>)        = 0
[pid  6964] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6962] <... openat resumed>)       = 5
[pid  6963] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6962] sendfile(5, 4, [100] <unfinished ...>
[pid  6964] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6963] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6964] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6963] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  6964] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6963] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6964] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6963] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6964] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6963] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6964] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6963] ftruncate(-1, 33587195 <unfinished ...>
[pid  6964] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6963] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6964] read(-1,  <unfinished ...>
[pid  6963] read(-1,  <unfinished ...>
[pid  6964] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6963] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[  149.727767][ T6963] XFS (loop3): Quotacheck: Done.
[  149.735492][ T6966] XFS (loop2): Ending clean mount
[  149.741960][ T6967] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  149.765445][ T6966] XFS (loop2): Quotacheck needed: Please wait.
[pid  6964] write(-1, NULL, 0 <unfinished ...>
[pid  6963] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6964] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6964] write(-1, NULL, 0 <unfinished ...>
[pid  6963] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6964] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6963] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6964] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6963] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6963] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6964] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6963] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6964] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6963] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6964] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6963] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6964] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6963] read(-1,  <unfinished ...>
[pid  6964] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6963] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6964] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6963] write(-1, NULL, 0 <unfinished ...>
[pid  6964] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6963] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6964] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6963] write(-1, NULL, 0 <unfinished ...>
[pid  6964] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6963] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6963] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  6964] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6963] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6966] <... mount resumed>)        = 0
[pid  6964] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6963] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6964] <... openat resumed>)       = 4
[pid  6963] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6966] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6964] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6963] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  6964] <... openat resumed>)       = 5
[pid  6963] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6966] <... openat resumed>)       = 3
[pid  6966] chdir("./file0" <unfinished ...>
[pid  6964] sendfile(5, 4, [100] <unfinished ...>
[  149.816561][ T6966] XFS (loop2): Quotacheck: Done.
[  149.823676][ T6962] syz-executor246 (6962): drop_caches: 2
[  149.832269][ T6962] syz-executor246 (6962): drop_caches: 2
[pid  6963] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  6966] <... chdir resumed>)        = 0
[pid  6963] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6966] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6963] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6966] <... ioctl resumed>)        = 0
[pid  6963] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6963] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  6966] close(4 <unfinished ...>
[pid  6963] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6966] <... close resumed>)        = 0
[pid  6963] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  6966] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  6966] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6963] <... openat resumed>)       = 4
[pid  6962] <... sendfile resumed> => [671], 571) = 571
[pid  6966] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  6963] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6966] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6966] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  6966] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6966] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6963] <... openat resumed>)       = 5
[pid  6962] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6966] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  6963] sendfile(5, 4, [100] <unfinished ...>
[pid  6966] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6962] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6966] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  6962] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6966] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6966] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  6962] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6966] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6962] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6966] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6962] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6966] write(-1, NULL, 0 <unfinished ...>
[pid  6962] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  6966] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6962] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6966] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  6966] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  6962] <... openat resumed>)       = -1 EFAULT (Bad address)
[  149.865101][ T6964] syz-executor246 (6964): drop_caches: 2
[  149.904975][ T6964] syz-executor246 (6964): drop_caches: 2
[pid  6962] open(NULL, O_RDONLY <unfinished ...>
[pid  6966] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  6962] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6962] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6966] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6962] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6962] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  6962] exit_group(0)               = ?
[pid  6962] +++ exited with 0 +++
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6962, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=32 /* 0.32 s */} ---
[pid  6966] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  6964] <... sendfile resumed> => [671], 571) = 571
[pid  6964] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  6966] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5066] umount2("./34", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6966] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6966] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5066] openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6966] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6966] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  6966] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6964] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  6966] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6966] <... openat resumed>)       = 4
[pid  6964] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6966] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  6964] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5066] getdents64(3,  <unfinished ...>
[pid  6966] <... openat resumed>)       = 5
[pid  6966] sendfile(5, 4, [100] <unfinished ...>
[pid  6964] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[  149.905466][ T6967] XFS (loop5): Ending clean mount
[  149.930655][ T6963] syz-executor246 (6963): drop_caches: 2
[  149.955168][ T6967] XFS (loop5): Quotacheck needed: Please wait.
[pid  6964] ftruncate(-1, 33587199 <unfinished ...>
[pid  5066] umount2("./34/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6964] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6964] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6964] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5066] newfstatat(AT_FDCWD, "./34/binderfs",  <unfinished ...>
[pid  6964] open(NULL, O_RDONLY <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6964] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] unlink("./34/binderfs" <unfinished ...>
[pid  6964] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5066] <... unlink resumed>)       = 0
[pid  6966] <... sendfile resumed> => [671], 571) = 571
[pid  6964] read(-1,  <unfinished ...>
[pid  6963] <... sendfile resumed> => [671], 571) = 571
[pid  5066] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6966] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6964] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6963] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  6964] exit_group(0 <unfinished ...>
[pid  6966] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6964] <... exit_group resumed>)   = ?
[pid  6963] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  6964] +++ exited with 0 +++
[pid  6963] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6964, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=35 /* 0.35 s */} ---
[pid  5063] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5063] umount2("./35", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] umount2("./35/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  149.968200][ T6966] syz-executor246 (6966): drop_caches: 2
[  149.973624][ T6963] syz-executor246 (6963): drop_caches: 2
[  149.988372][ T6966] syz-executor246 (6966): drop_caches: 2
[  150.002103][ T6967] XFS (loop5): Quotacheck: Done.
[  150.010214][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5063] newfstatat(AT_FDCWD, "./35/binderfs",  <unfinished ...>
[pid  6966] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  6963] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  6967] <... mount resumed>)        = 0
[pid  6966] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6963] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5063] unlink("./35/binderfs" <unfinished ...>
[pid  6967] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  6966] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  6963] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] <... unlink resumed>)       = 0
[pid  6967] <... openat resumed>)       = 3
[pid  6966] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6963] ftruncate(-1, 33587199 <unfinished ...>
[pid  6967] chdir("./file0" <unfinished ...>
[pid  6966] ftruncate(-1, 33587199 <unfinished ...>
[pid  6963] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6966] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6963] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6967] <... chdir resumed>)        = 0
[pid  6966] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6967] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  6963] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6966] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6963] open(NULL, O_RDONLY <unfinished ...>
[pid  6966] open(NULL, O_RDONLY <unfinished ...>
[pid  6963] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6966] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6963] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6966] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  6963] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6966] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6963] read(-1,  <unfinished ...>
[pid  6966] read(-1,  <unfinished ...>
[pid  6963] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6967] <... ioctl resumed>)        = 0
[pid  6966] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  6963] exit_group(0 <unfinished ...>
[pid  5063] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6967] close(4 <unfinished ...>
[pid  6966] exit_group(0 <unfinished ...>
[pid  6963] <... exit_group resumed>)   = ?
[pid  6967] <... close resumed>)        = 0
[pid  6966] <... exit_group resumed>)   = ?
[pid  6967] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  6966] +++ exited with 0 +++
[pid  6963] +++ exited with 0 +++
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6963, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=44 /* 0.44 s */} ---
[pid  6967] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6966, si_uid=0, si_status=0, si_utime=0, si_stime=33 /* 0.33 s */} ---
[pid  5065] umount2("./35", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(3,  <unfinished ...>
[pid  6967] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5065] umount2("./35/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6967] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] <... restart_syscall resumed>) = 0
[pid  5065] newfstatat(AT_FDCWD, "./35/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] unlink("./35/binderfs")     = 0
[pid  5065] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6967] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  6967] ftruncate(-1, 33587195 <unfinished ...>
[pid  5064] umount2("./35", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6967] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6967] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5064] openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  6967] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5064] <... openat resumed>)       = 3
[pid  6967] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  5064] newfstatat(3, "",  <unfinished ...>
[pid  6967] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  6967] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  6967] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  6967] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  5064] getdents64(3,  <unfinished ...>
[pid  6967] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  6967] write(-1, NULL, 0 <unfinished ...>
[pid  5064] umount2("./35/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6967] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[  150.046320][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  6967] write(-1, NULL, 0 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  6967] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  6967] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5064] newfstatat(AT_FDCWD, "./35/binderfs",  <unfinished ...>
[pid  6967] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5064] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./35/binderfs" <unfinished ...>
[pid  6967] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5064] <... unlink resumed>)       = 0
[pid  6967] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  6967] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5064] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  6967] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  6967] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  6967] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  6967] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  6967] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  6967] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  150.089757][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  150.136840][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  150.164692][ T6967] syz-executor246 (6967): drop_caches: 2
[pid  6967] sendfile(5, 4, [100] <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  6967] <... sendfile resumed> => [671], 571) = 571
[pid  5062] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./35/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  6967] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5062] close(4 <unfinished ...>
[pid  6967] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5062] <... close resumed>)        = 0
[pid  5062] rmdir("./35/file0")         = 0
[pid  6967] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5062] getdents64(3,  <unfinished ...>
[pid  6967] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6967] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  6967] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6967] ftruncate(-1, 33587199 <unfinished ...>
[pid  5062] close(3 <unfinished ...>
[pid  6967] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  6967] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  6967] <... openat resumed>)       = -1 EFAULT (Bad address)
[  150.207704][ T6967] syz-executor246 (6967): drop_caches: 2
[pid  6967] open(NULL, O_RDONLY <unfinished ...>
[pid  5062] rmdir("./35" <unfinished ...>
[pid  6967] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  6967] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  6967] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] mkdir("./36", 0777)         = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3 <unfinished ...>
[pid  6967] read(-1,  <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  6967] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 7016
[pid  6967] exit_group(0./strace-static-x86_64: Process 7016 attached
 <unfinished ...>
[pid  7016] set_robust_list(0x55555697c760, 24) = 0
[pid  6967] <... exit_group resumed>)   = ?
[pid  7016] chdir("./36")               = 0
[pid  7016] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  6967] +++ exited with 0 +++
[pid  7016] setpgid(0, 0 <unfinished ...>
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6967, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=32 /* 0.32 s */} ---
[pid  7016] <... setpgid resumed>)      = 0
[pid  7016] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5067] umount2("./35", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7016] write(3, "1000", 4 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7016] <... write resumed>)        = 4
[pid  5067] openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  7016] close(3)                    = 0
[pid  5067] <... openat resumed>)       = 3
[pid  7016] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  7016] <... symlink resumed>)      = 0
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  7016] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5067] getdents64(3,  <unfinished ...>
[pid  7016] <... memfd_create resumed>) = 3
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./35/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7016] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7016] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5067] newfstatat(AT_FDCWD, "./35/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./35/binderfs")     = 0
[  150.373695][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5067] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... umount2 resumed>)      = 0
[pid  5063] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./34/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./35/file0",  <unfinished ...>
[pid  5066] <... openat resumed>)       = 4
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] newfstatat(4, "",  <unfinished ...>
[pid  5063] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] <... openat resumed>)       = 4
[pid  5066] close(4 <unfinished ...>
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  5066] rmdir("./34/file0" <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] <... rmdir resumed>)        = 0
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3 <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] <... close resumed>)        = 0
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5066] rmdir("./34" <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] <... rmdir resumed>)        = 0
[pid  5063] close(4 <unfinished ...>
[pid  5066] mkdir("./35", 0777 <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5066] <... mkdir resumed>)        = 0
[pid  5063] rmdir("./35/file0")         = 0
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3 <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  5063] <... close resumed>)        = 0
[pid  5066] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5063] rmdir("./35" <unfinished ...>
[pid  5066] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5066] close(3 <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  5066] <... close resumed>)        = 0
[pid  5063] mkdir("./36", 0777 <unfinished ...>
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5063] <... mkdir resumed>)        = 0
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR./strace-static-x86_64: Process 7017 attached
) = 3
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  7017] set_robust_list(0x55555697c760, 24) = 0
[pid  7017] chdir("./35" <unfinished ...>
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 7017
[pid  7017] <... chdir resumed>)        = 0
[pid  7017] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7017] setpgid(0, 0)               = 0
[pid  5064] <... umount2 resumed>)      = 0
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  7017] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7017] write(3, "1000", 4 <unfinished ...>
[pid  5063] close(3 <unfinished ...>
[pid  7017] <... write resumed>)        = 4
[pid  5063] <... close resumed>)        = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  7017] close(3)                    = 0
[pid  7017] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7017] memfd_create("syzkaller", 0) = 3
[pid  7017] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5065] <... umount2 resumed>)      = 0
./strace-static-x86_64: Process 7018 attached
[pid  5064] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 7018
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7018] set_robust_list(0x55555697c760, 24) = 0
[pid  5064] newfstatat(AT_FDCWD, "./35/file0",  <unfinished ...>
[pid  7018] chdir("./36" <unfinished ...>
[pid  5065] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  7018] <... chdir resumed>)        = 0
[pid  5064] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7018] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7018] <... prctl resumed>)        = 0
[pid  7018] setpgid(0, 0 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  7018] <... setpgid resumed>)      = 0
[pid  5064] <... openat resumed>)       = 4
[pid  7018] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5064] newfstatat(4, "",  <unfinished ...>
[pid  5065] newfstatat(AT_FDCWD, "./35/file0",  <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  7018] <... openat resumed>)       = 3
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] getdents64(4,  <unfinished ...>
[pid  7018] write(3, "1000", 4)         = 4
[pid  5065] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  7018] close(3 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] getdents64(4,  <unfinished ...>
[pid  7018] <... close resumed>)        = 0
[pid  5065] openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5064] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  7018] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5065] <... openat resumed>)       = 4
[pid  5064] close(4 <unfinished ...>
[pid  7018] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5065] newfstatat(4, "",  <unfinished ...>
[pid  5064] <... close resumed>)        = 0
[pid  7018] <... memfd_create resumed>) = 3
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] rmdir("./35/file0" <unfinished ...>
[pid  7018] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5064] <... rmdir resumed>)        = 0
[pid  7018] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5065] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(3,  <unfinished ...>
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4 <unfinished ...>
[pid  5064] close(3 <unfinished ...>
[pid  5065] <... close resumed>)        = 0
[pid  5064] <... close resumed>)        = 0
[pid  5065] rmdir("./35/file0" <unfinished ...>
[pid  5064] rmdir("./35")               = 0
[pid  5065] <... rmdir resumed>)        = 0
[pid  5064] mkdir("./36", 0777 <unfinished ...>
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] <... mkdir resumed>)        = 0
[pid  5065] close(3 <unfinished ...>
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5065] <... close resumed>)        = 0
[pid  5064] <... openat resumed>)       = 3
[pid  5065] rmdir("./35" <unfinished ...>
[pid  5064] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5065] <... rmdir resumed>)        = 0
[pid  5064] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5065] mkdir("./36", 0777 <unfinished ...>
[pid  5064] close(3 <unfinished ...>
[pid  5065] <... mkdir resumed>)        = 0
[pid  5064] <... close resumed>)        = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 7019
[pid  5065] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 7019 attached
)       = -1 ENXIO (No such device or address)
[pid  7019] set_robust_list(0x55555697c760, 24) = 0
[pid  7019] chdir("./36" <unfinished ...>
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  7019] <... chdir resumed>)        = 0
./strace-static-x86_64: Process 7020 attached
[pid  7019] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  7020] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  7019] <... prctl resumed>)        = 0
[pid  7020] <... set_robust_list resumed>) = 0
[pid  7019] setpgid(0, 0 <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 7020
[pid  7019] <... setpgid resumed>)      = 0
[pid  7019] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  7020] chdir("./36")               = 0
[pid  7019] <... openat resumed>)       = 3
[pid  7016] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7020] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  7019] write(3, "1000", 4 <unfinished ...>
[pid  7020] <... prctl resumed>)        = 0
[pid  7019] <... write resumed>)        = 4
[pid  7020] setpgid(0, 0 <unfinished ...>
[pid  7019] close(3)                    = 0
[pid  7019] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  7020] <... setpgid resumed>)      = 0
[pid  7020] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  7019] <... symlink resumed>)      = 0
[pid  7020] <... openat resumed>)       = 3
[pid  7019] memfd_create("syzkaller", 0 <unfinished ...>
[pid  7020] write(3, "1000", 4)         = 4
[pid  7020] close(3 <unfinished ...>
[pid  7019] <... memfd_create resumed>) = 3
[pid  7020] <... close resumed>)        = 0
[pid  7019] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  7020] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  7019] <... mmap resumed>)         = 0x7f6d986f1000
[pid  7020] <... symlink resumed>)      = 0
[pid  7020] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  7020] <... memfd_create resumed>) = 3
[pid  7020] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5067] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] newfstatat(AT_FDCWD, "./35/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  7020] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5067] openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5067] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] close(4)                    = 0
[pid  5067] rmdir("./35/file0")         = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3)                    = 0
[pid  5067] rmdir("./35")               = 0
[pid  5067] mkdir("./36", 0777)         = 0
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  5067] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] close(3)                    = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 7021
./strace-static-x86_64: Process 7021 attached
[pid  7021] set_robust_list(0x55555697c760, 24) = 0
[pid  7021] chdir("./36")               = 0
[pid  7021] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7021] setpgid(0, 0)               = 0
[pid  7021] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7021] write(3, "1000", 4)         = 4
[pid  7021] close(3)                    = 0
[pid  7021] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7021] memfd_create("syzkaller", 0) = 3
[pid  7021] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  7017] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7018] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7019] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7020] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7021] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7016] <... write resumed>)        = 16777216
[pid  7016] munmap(0x7f6d986f1000, 138412032) = 0
[pid  7016] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7016] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7016] close(3)                    = 0
[pid  7016] mkdir("./file0", 0777)      = 0
[  151.433434][ T7016] loop0: detected capacity change from 0 to 32768
[pid  7016] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7017] <... write resumed>)        = 16777216
[pid  7017] munmap(0x7f6d986f1000, 138412032) = 0
[pid  7017] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  7017] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7017] close(3 <unfinished ...>
[pid  7018] <... write resumed>)        = 16777216
[pid  7017] <... close resumed>)        = 0
[pid  7017] mkdir("./file0", 0777 <unfinished ...>
[pid  7018] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  7017] <... mkdir resumed>)        = 0
[  151.534440][ T7016] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  151.544003][ T7017] loop4: detected capacity change from 0 to 32768
[  151.574449][ T7016] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  7017] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7018] <... munmap resumed>)       = 0
[pid  7018] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid  7018] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  7020] <... write resumed>)        = 16777216
[  151.647430][ T7017] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  151.665330][ T7017] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  151.684038][ T7018] loop1: detected capacity change from 0 to 32768
[pid  7021] <... write resumed>)        = 16777216
[pid  7021] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  7020] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  7019] <... write resumed>)        = 16777216
[pid  7018] <... ioctl resumed>)        = 0
[  151.709136][ T7016] XFS (loop0): Ending clean mount
[pid  7021] <... munmap resumed>)       = 0
[pid  7019] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  7018] close(3 <unfinished ...>
[pid  7021] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  7020] <... munmap resumed>)       = 0
[pid  7018] <... close resumed>)        = 0
[pid  7018] mkdir("./file0", 0777)      = 0
[pid  7018] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7021] <... openat resumed>)       = 4
[pid  7020] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  7021] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  7020] <... openat resumed>)       = 4
[pid  7016] <... mount resumed>)        = 0
[pid  7019] <... munmap resumed>)       = 0
[pid  7021] <... ioctl resumed>)        = 0
[pid  7020] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[  151.733047][ T7016] XFS (loop0): Quotacheck needed: Please wait.
[  151.763908][ T7016] XFS (loop0): Quotacheck: Done.
[  151.772061][ T7021] loop5: detected capacity change from 0 to 32768
[  151.777889][ T7017] XFS (loop4): Ending clean mount
[pid  7016] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  7021] close(3 <unfinished ...>
[pid  7019] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  7021] <... close resumed>)        = 0
[pid  7019] <... openat resumed>)       = 4
[pid  7021] mkdir("./file0", 0777)      = 0
[pid  7019] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  7016] <... openat resumed>)       = 3
[pid  7021] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7020] <... ioctl resumed>)        = 0
[pid  7016] chdir("./file0" <unfinished ...>
[pid  7020] close(3 <unfinished ...>
[pid  7016] <... chdir resumed>)        = 0
[pid  7020] <... close resumed>)        = 0
[pid  7016] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  7020] mkdir("./file0", 0777 <unfinished ...>
[pid  7016] <... ioctl resumed>)        = 0
[pid  7016] close(4 <unfinished ...>
[pid  7020] <... mkdir resumed>)        = 0
[pid  7016] <... close resumed>)        = 0
[pid  7020] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7016] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  7019] <... ioctl resumed>)        = 0
[pid  7016] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7016] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  7019] close(3 <unfinished ...>
[pid  7016] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7016] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  7016] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  7019] <... close resumed>)        = 0
[pid  7016] read(-1,  <unfinished ...>
[pid  7019] mkdir("./file0", 0777 <unfinished ...>
[pid  7016] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7016] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  7016] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  7016] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  7016] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  7019] <... mkdir resumed>)        = 0
[pid  7016] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7019] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7016] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7016] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7016] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7016] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  7016] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  7016] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[  151.784616][ T7020] loop3: detected capacity change from 0 to 32768
[  151.787538][ T7019] loop2: detected capacity change from 0 to 32768
[  151.806549][ T7018] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  151.819988][ T7017] XFS (loop4): Quotacheck needed: Please wait.
[pid  7016] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  7016] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  7016] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  7016] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  7016] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  7016] sendfile(5, 4, [100] <unfinished ...>
[pid  7017] <... mount resumed>)        = 0
[pid  7017] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7017] chdir("./file0")            = 0
[  151.830029][ T7020] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  151.836562][ T7018] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  151.852155][ T7020] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  151.855923][ T7017] XFS (loop4): Quotacheck: Done.
[  151.873177][ T7021] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[pid  7017] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7017] close(4)                    = 0
[pid  7017] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  7017] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  7017] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  7017] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  7017] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7017] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  7017] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  7017] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  7017] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  7017] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7017] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[  151.886548][ T7021] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  151.902786][ T7019] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[pid  7017] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7017] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  7017] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  7016] <... sendfile resumed> => [671], 571) = 571
[pid  7017] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7016] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  7016] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  7016] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7017] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7016] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7017] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  7016] ftruncate(-1, 33587199 <unfinished ...>
[pid  7017] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7016] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[  151.933874][ T7019] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  151.943363][ T7016] syz-executor246 (7016): drop_caches: 2
[  151.949897][ T7016] syz-executor246 (7016): drop_caches: 2
[  151.968613][ T7018] XFS (loop1): Ending clean mount
[  151.974700][ T7021] XFS (loop5): Ending clean mount
[pid  7017] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7016] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7017] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7016] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7016] open(NULL, O_RDONLY <unfinished ...>
[pid  7017] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  7016] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7016] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7017] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7016] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7017] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  7016] read(-1,  <unfinished ...>
[pid  7017] <... openat resumed>)       = 4
[pid  7016] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7016] exit_group(0)               = ?
[pid  7016] +++ exited with 0 +++
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7016, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=35 /* 0.35 s */} ---
[pid  5062] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  7017] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5062] <... restart_syscall resumed>) = 0
[pid  7017] <... openat resumed>)       = 5
[pid  7017] sendfile(5, 4, [100] <unfinished ...>
[pid  5062] umount2("./36", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[  151.984720][ T7021] XFS (loop5): Quotacheck needed: Please wait.
[  151.988200][ T7018] XFS (loop1): Quotacheck needed: Please wait.
[  151.991575][ T7020] XFS (loop3): Ending clean mount
[  152.018829][ T7020] XFS (loop3): Quotacheck needed: Please wait.
[  152.024481][ T7019] XFS (loop2): Ending clean mount
[pid  5062] openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5062] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./36/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./36/binderfs",  <unfinished ...>
[pid  7021] <... mount resumed>)        = 0
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  7021] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5062] unlink("./36/binderfs")     = 0
[pid  7021] <... openat resumed>)       = 3
[pid  5062] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[  152.038472][ T7019] XFS (loop2): Quotacheck needed: Please wait.
[  152.054042][ T7021] XFS (loop5): Quotacheck: Done.
[  152.071465][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  152.083795][ T7019] XFS (loop2): Quotacheck: Done.
[pid  7021] chdir("./file0")            = 0
[pid  7019] <... mount resumed>)        = 0
[pid  7021] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7019] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  7021] close(4 <unfinished ...>
[pid  7020] <... mount resumed>)        = 0
[pid  7018] <... mount resumed>)        = 0
[pid  7020] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7020] chdir("./file0" <unfinished ...>
[pid  7019] <... openat resumed>)       = 3
[pid  7021] <... close resumed>)        = 0
[pid  7018] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  7021] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  7019] chdir("./file0" <unfinished ...>
[pid  7018] <... openat resumed>)       = 3
[pid  7020] <... chdir resumed>)        = 0
[pid  7020] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7020] close(4 <unfinished ...>
[pid  7018] chdir("./file0" <unfinished ...>
[pid  7021] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7019] <... chdir resumed>)        = 0
[pid  7021] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  7018] <... chdir resumed>)        = 0
[pid  7019] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  7020] <... close resumed>)        = 0
[pid  7020] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  7019] <... ioctl resumed>)        = 0
[pid  7018] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  7021] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7021] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  7020] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  7019] close(4 <unfinished ...>
[pid  7018] <... ioctl resumed>)        = 0
[pid  7021] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7019] <... close resumed>)        = 0
[pid  7018] close(4 <unfinished ...>
[pid  7021] ftruncate(-1, 33587195 <unfinished ...>
[pid  7019] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  7018] <... close resumed>)        = 0
[pid  7021] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7019] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7021] read(-1,  <unfinished ...>
[pid  7019] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  7018] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  7021] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7020] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7019] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7018] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7021] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7020] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  7019] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  7018] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  7021] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7020] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7019] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7018] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7021] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  7020] ftruncate(-1, 33587195 <unfinished ...>
[pid  7019] ftruncate(-1, 33587195 <unfinished ...>
[pid  7018] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  7021] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7020] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7019] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7018] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7021] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  7020] read(-1,  <unfinished ...>
[pid  7019] read(-1,  <unfinished ...>
[pid  7018] ftruncate(-1, 33587195 <unfinished ...>
[pid  7021] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7020] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7019] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7018] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7021] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  7020] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  7021] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7018] read(-1,  <unfinished ...>
[pid  7021] read(-1,  <unfinished ...>
[pid  7020] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  7019] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7018] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7021] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7020] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7019] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7018] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7021] write(-1, NULL, 0 <unfinished ...>
[pid  7020] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  7020] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  7020] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7020] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7020] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7020] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  7021] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7020] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7018] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7020] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  7020] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  7020] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  7020] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7018] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  7020] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7018] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7021] write(-1, NULL, 0 <unfinished ...>
[pid  7020] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  7018] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  7021] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7020] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7018] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7021] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  7020] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  7018] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  7021] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7020] <... openat resumed>)       = 4
[pid  7018] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7018] read(-1,  <unfinished ...>
[pid  7020] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  7018] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7018] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7018] write(-1, NULL, 0 <unfinished ...>
[pid  7019] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  7018] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7021] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  7019] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7018] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[  152.096344][ T7020] XFS (loop3): Quotacheck: Done.
[  152.101880][ T7018] XFS (loop1): Quotacheck: Done.
[  152.106789][ T7017] syz-executor246 (7017): drop_caches: 2
[pid  7020] sendfile(5, 4, [100] <unfinished ...>
[pid  7021] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7019] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  7018] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7018] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  7019] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7018] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7021] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7019] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  7018] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7019] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7021] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7018] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7021] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  7019] read(-1,  <unfinished ...>
[pid  7018] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  7020] <... sendfile resumed> => [671], 571) = 571
[pid  7021] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7019] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7018] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7017] <... sendfile resumed> => [671], 571) = 571
[pid  7021] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7019] write(-1, NULL, 0 <unfinished ...>
[pid  7018] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7017] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  7021] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7019] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7018] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7017] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  7021] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  7019] write(-1, NULL, 0 <unfinished ...>
[pid  7018] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  7017] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  7021] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7019] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7018] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7021] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  7019] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  7018] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  7017] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7021] <... openat resumed>)       = 4
[pid  7020] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  7019] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7018] <... openat resumed>)       = 4
[pid  7017] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7021] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  7020] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  7019] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  7018] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  7017] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7020] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  7019] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7017] ftruncate(-1, 33587199 <unfinished ...>
[pid  7020] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7018] <... openat resumed>)       = 5
[pid  7017] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7021] <... openat resumed>)       = 5
[pid  7020] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7019] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7018] sendfile(5, 4, [100] <unfinished ...>
[pid  7017] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7021] sendfile(5, 4, [100] <unfinished ...>
[pid  7020] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7019] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7017] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7020] ftruncate(-1, 33587199 <unfinished ...>
[pid  7019] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  7020] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7019] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7017] open(NULL, O_RDONLY <unfinished ...>
[pid  7020] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7019] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7017] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7020] <... openat resumed>)       = -1 EFAULT (Bad address)
[  152.160260][ T7020] syz-executor246 (7020): drop_caches: 2
[  152.163951][ T7017] syz-executor246 (7017): drop_caches: 2
[  152.174409][ T7020] syz-executor246 (7020): drop_caches: 2
[pid  7020] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  7020] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  7020] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7020] exit_group(0 <unfinished ...>
[pid  7019] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7017] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7020] <... exit_group resumed>)   = ?
[pid  7020] +++ exited with 0 +++
[pid  7021] <... sendfile resumed> => [671], 571) = 571
[pid  7019] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  7017] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7021] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  7019] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7017] read(-1,  <unfinished ...>
[pid  7021] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  7019] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  7017] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7020, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=31 /* 0.31 s */} ---
[pid  7017] exit_group(0 <unfinished ...>
[pid  7019] <... openat resumed>)       = 4
[pid  7017] <... exit_group resumed>)   = ?
[pid  7019] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  7017] +++ exited with 0 +++
[pid  7019] <... openat resumed>)       = 5
[pid  7021] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  7018] <... sendfile resumed> => [671], 571) = 571
[pid  5065] umount2("./36", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7021] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7019] sendfile(5, 4, [100] <unfinished ...>
[pid  7018] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7017, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=33 /* 0.33 s */} ---
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7021] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5066] restart_syscall(<... resuming interrupted clone ...>) = 0
[  152.214733][ T7021] syz-executor246 (7021): drop_caches: 2
[  152.226347][ T7021] syz-executor246 (7021): drop_caches: 2
[  152.245728][ T7018] syz-executor246 (7018): drop_caches: 2
[  152.255194][ T7018] syz-executor246 (7018): drop_caches: 2
[pid  5066] umount2("./35", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7021] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7018] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  7021] ftruncate(-1, 33587199 <unfinished ...>
[pid  7018] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5066] openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] <... openat resumed>)       = 3
[pid  7021] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7018] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] <... openat resumed>)       = 3
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  7021] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7018] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  7021] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7018] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(3,  <unfinished ...>
[pid  7021] open(NULL, O_RDONLY <unfinished ...>
[pid  7018] ftruncate(-1, 33587199 <unfinished ...>
[pid  7021] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7018] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  7021] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7018] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] umount2("./36/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7021] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7018] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5066] umount2("./35/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7021] read(-1,  <unfinished ...>
[pid  7018] open(NULL, O_RDONLY <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./36/binderfs",  <unfinished ...>
[pid  7021] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7018] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] newfstatat(AT_FDCWD, "./35/binderfs",  <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  7021] exit_group(0 <unfinished ...>
[pid  7018] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  7018] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5066] unlink("./35/binderfs" <unfinished ...>
[pid  5065] unlink("./36/binderfs" <unfinished ...>
[pid  5066] <... unlink resumed>)       = 0
[pid  7018] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5065] <... unlink resumed>)       = 0
[pid  7021] <... exit_group resumed>)   = ?
[pid  7018] exit_group(0 <unfinished ...>
[pid  5065] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7018] <... exit_group resumed>)   = ?
[pid  5066] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7018] +++ exited with 0 +++
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7018, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=39 /* 0.39 s */} ---
[  152.290173][ T7019] syz-executor246 (7019): drop_caches: 2
[  152.320006][ T7019] syz-executor246 (7019): drop_caches: 2
[pid  5063] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  7021] +++ exited with 0 +++
[pid  5063] <... restart_syscall resumed>) = 0
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7021, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=30 /* 0.30 s */} ---
[pid  5063] umount2("./36", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5063] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] umount2("./36", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5067] openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] <... openat resumed>)       = 3
[pid  5063] umount2("./36/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] newfstatat(AT_FDCWD, "./36/binderfs",  <unfinished ...>
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5063] unlink("./36/binderfs" <unfinished ...>
[pid  5067] umount2("./36/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... unlink resumed>)       = 0
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] newfstatat(AT_FDCWD, "./36/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] unlink("./36/binderfs" <unfinished ...>
[pid  7019] <... sendfile resumed> => [671], 571) = 571
[pid  5067] <... unlink resumed>)       = 0
[pid  7019] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  7019] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  7019] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  7019] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  7019] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  7019] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  7019] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  7019] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7019] exit_group(0)               = ?
[pid  5067] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7019] +++ exited with 0 +++
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7019, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=29 /* 0.29 s */} ---
[pid  5064] umount2("./36", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5064] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] umount2("./36/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./36/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./36/binderfs")     = 0
[  152.347361][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  152.356838][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  152.367478][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5064] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  5062] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./36/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[  152.418658][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  152.436808][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./36/file0")         = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./36")               = 0
[pid  5062] mkdir("./37", 0777)         = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5062] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5062] close(3)                    = 0
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 7070
./strace-static-x86_64: Process 7070 attached
[pid  7070] set_robust_list(0x55555697c760, 24) = 0
[pid  7070] chdir("./37")               = 0
[pid  7070] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7070] setpgid(0, 0)               = 0
[pid  7070] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7070] write(3, "1000", 4)         = 4
[pid  7070] close(3)                    = 0
[pid  7070] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7070] memfd_create("syzkaller", 0) = 3
[pid  7070] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5063] <... umount2 resumed>)      = 0
[pid  5066] <... umount2 resumed>)      = 0
[pid  5066] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./35/file0",  <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./36/file0",  <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5066] openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] <... openat resumed>)       = 4
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  5066] newfstatat(4, "",  <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4,  <unfinished ...>
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5066] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4 <unfinished ...>
[pid  5063] close(4)                    = 0
[pid  5066] <... close resumed>)        = 0
[pid  5063] rmdir("./36/file0" <unfinished ...>
[pid  5066] rmdir("./35/file0" <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5066] <... rmdir resumed>)        = 0
[pid  5063] <... rmdir resumed>)        = 0
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] close(3 <unfinished ...>
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... close resumed>)        = 0
[pid  5063] close(3 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] rmdir("./35" <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5066] <... rmdir resumed>)        = 0
[pid  5063] rmdir("./36")               = 0
[pid  5067] newfstatat(AT_FDCWD, "./36/file0",  <unfinished ...>
[pid  5066] mkdir("./36", 0777)         = 0
[pid  5063] mkdir("./37", 0777 <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] <... mkdir resumed>)        = 0
[pid  5067] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid  5066] <... openat resumed>)       = 3
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5067] <... openat resumed>)       = 4
[pid  5066] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5063] close(3 <unfinished ...>
[pid  5067] newfstatat(4, "",  <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
./strace-static-x86_64: Process 7071 attached
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 7071
[pid  7071] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] newfstatat(AT_FDCWD, "./36/file0",  <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7071] <... set_robust_list resumed>) = 0
[pid  5067] close(4 <unfinished ...>
[pid  5066] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5067] <... close resumed>)        = 0
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] newfstatat(AT_FDCWD, "./36/file0",  <unfinished ...>
[pid  7071] chdir("./37" <unfinished ...>
[pid  5065] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  7071] <... chdir resumed>)        = 0
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7071] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5065] openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  7071] <... prctl resumed>)        = 0
[pid  7071] setpgid(0, 0 <unfinished ...>
[pid  5067] rmdir("./36/file0" <unfinished ...>
[pid  5066] close(3 <unfinished ...>
[pid  5065] <... openat resumed>)       = 4
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7071] <... setpgid resumed>)      = 0
[pid  5067] <... rmdir resumed>)        = 0
[pid  5066] <... close resumed>)        = 0
[pid  5065] newfstatat(4, "",  <unfinished ...>
[pid  5064] openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  7071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5067] getdents64(3,  <unfinished ...>
[pid  7071] <... openat resumed>)       = 3
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7072 attached
 <unfinished ...>
[pid  7071] write(3, "1000", 4 <unfinished ...>
[pid  5067] close(3 <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] <... openat resumed>)       = 4
[pid  7071] <... write resumed>)        = 4
[pid  5067] <... close resumed>)        = 0
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5064] newfstatat(4, "",  <unfinished ...>
[pid  7072] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  7071] close(3)                    = 0
[pid  5067] rmdir("./36" <unfinished ...>
[pid  7072] <... set_robust_list resumed>) = 0
[pid  7071] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5065] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  7072] chdir("./36" <unfinished ...>
[pid  7071] <... symlink resumed>)      = 0
[pid  5067] <... rmdir resumed>)        = 0
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5064] getdents64(4,  <unfinished ...>
[pid  5067] mkdir("./37", 0777 <unfinished ...>
[pid  7072] <... chdir resumed>)        = 0
[pid  7071] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5067] <... mkdir resumed>)        = 0
[pid  5065] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  7072] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  7071] <... memfd_create resumed>) = 3
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5065] close(4 <unfinished ...>
[pid  5064] getdents64(4,  <unfinished ...>
[pid  7072] <... prctl resumed>)        = 0
[pid  7071] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5067] <... openat resumed>)       = 3
[pid  5065] <... close resumed>)        = 0
[pid  5064] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  7072] setpgid(0, 0 <unfinished ...>
[pid  7071] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 7072
[pid  7072] <... setpgid resumed>)      = 0
[pid  7070] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5065] rmdir("./36/file0" <unfinished ...>
[pid  5064] close(4 <unfinished ...>
[pid  7072] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5067] close(3 <unfinished ...>
[pid  5064] <... close resumed>)        = 0
[pid  5067] <... close resumed>)        = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5064] rmdir("./36/file0" <unfinished ...>
[pid  7072] <... openat resumed>)       = 3
[pid  5065] <... rmdir resumed>)        = 0
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 7073
[pid  5064] <... rmdir resumed>)        = 0
[pid  7072] write(3, "1000", 4 <unfinished ...>
[pid  5065] getdents64(3, ./strace-static-x86_64: Process 7073 attached
 <unfinished ...>
[pid  7073] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  7072] <... write resumed>)        = 4
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] getdents64(3,  <unfinished ...>
[pid  7073] <... set_robust_list resumed>) = 0
[pid  7072] close(3 <unfinished ...>
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  7073] chdir("./37" <unfinished ...>
[pid  5065] close(3 <unfinished ...>
[pid  7073] <... chdir resumed>)        = 0
[pid  7073] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7073] setpgid(0, 0)               = 0
[pid  7072] <... close resumed>)        = 0
[pid  5065] <... close resumed>)        = 0
[pid  5064] close(3 <unfinished ...>
[pid  7073] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  7072] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5065] rmdir("./36" <unfinished ...>
[pid  5064] <... close resumed>)        = 0
[pid  5065] <... rmdir resumed>)        = 0
[pid  7073] <... openat resumed>)       = 3
[pid  7072] <... symlink resumed>)      = 0
[pid  7073] write(3, "1000", 4)         = 4
[pid  7073] close(3)                    = 0
[pid  7073] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7072] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5065] mkdir("./37", 0777 <unfinished ...>
[pid  5064] rmdir("./36" <unfinished ...>
[pid  7073] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5065] <... mkdir resumed>)        = 0
[pid  5064] <... rmdir resumed>)        = 0
[pid  5064] mkdir("./37", 0777 <unfinished ...>
[pid  7073] <... memfd_create resumed>) = 3
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5064] <... mkdir resumed>)        = 0
[pid  7072] <... memfd_create resumed>) = 3
[pid  7073] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  7072] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  7073] <... mmap resumed>)         = 0x7f6d986f1000
[pid  7072] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5065] <... openat resumed>)       = 3
[pid  5064] <... openat resumed>)       = 3
[pid  5064] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5064] close(3 <unfinished ...>
[pid  5065] close(3 <unfinished ...>
[pid  5064] <... close resumed>)        = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5065] <... close resumed>)        = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7075 attached
 <unfinished ...>
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 7074
./strace-static-x86_64: Process 7074 attached
[pid  7075] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 7075
[pid  7074] set_robust_list(0x55555697c760, 24) = 0
[pid  7074] chdir("./37")               = 0
[pid  7074] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7074] setpgid(0, 0)               = 0
[pid  7074] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7074] write(3, "1000", 4)         = 4
[pid  7074] close(3)                    = 0
[pid  7074] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7074] memfd_create("syzkaller", 0) = 3
[pid  7074] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  7075] <... set_robust_list resumed>) = 0
[pid  7075] chdir("./37")               = 0
[pid  7075] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7075] setpgid(0, 0)               = 0
[pid  7075] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7075] write(3, "1000", 4)         = 4
[pid  7075] close(3)                    = 0
[pid  7075] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7075] memfd_create("syzkaller", 0) = 3
[pid  7075] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  7073] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7072] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7071] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7074] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7070] <... write resumed>)        = 16777216
[pid  7070] munmap(0x7f6d986f1000, 138412032) = 0
[pid  7075] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7070] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7070] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7070] close(3)                    = 0
[pid  7070] mkdir("./file0", 0777)      = 0
[  153.554793][ T7070] loop0: detected capacity change from 0 to 32768
[pid  7070] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7071] <... write resumed>)        = 16777216
[  153.673767][ T7070] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[pid  7071] munmap(0x7f6d986f1000, 138412032) = 0
[pid  7071] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid  7071] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7071] close(3)                    = 0
[pid  7071] mkdir("./file0", 0777)      = 0
[  153.723334][ T7070] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  153.744780][ T7071] loop1: detected capacity change from 0 to 32768
[pid  7071] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7074] <... write resumed>)        = 16777216
[pid  7074] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  7072] <... write resumed>)        = 16777216
[  153.812156][ T7071] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  153.823905][ T7070] XFS (loop0): Ending clean mount
[  153.830578][ T7071] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  153.855406][ T7070] XFS (loop0): Quotacheck needed: Please wait.
[pid  7072] munmap(0x7f6d986f1000, 138412032) = 0
[pid  7072] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  7072] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  7073] <... write resumed>)        = 16777216
[pid  7073] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  7074] <... munmap resumed>)       = 0
[pid  7070] <... mount resumed>)        = 0
[pid  7074] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  7072] <... ioctl resumed>)        = 0
[pid  7074] <... openat resumed>)       = 4
[pid  7073] <... munmap resumed>)       = 0
[pid  7070] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  7074] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  7072] close(3)                    = 0
[pid  7072] mkdir("./file0", 0777)      = 0
[pid  7072] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7070] <... openat resumed>)       = 3
[pid  7070] chdir("./file0")            = 0
[pid  7070] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7070] close(4 <unfinished ...>
[pid  7074] <... ioctl resumed>)        = 0
[pid  7073] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  7070] <... close resumed>)        = 0
[pid  7074] close(3 <unfinished ...>
[pid  7073] <... openat resumed>)       = 4
[pid  7074] <... close resumed>)        = 0
[pid  7073] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  7074] mkdir("./file0", 0777 <unfinished ...>
[pid  7070] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  7070] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  7070] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  7074] <... mkdir resumed>)        = 0
[pid  7074] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7070] <... open resumed>)         = -1 EFAULT (Bad address)
[  153.920794][ T7072] loop4: detected capacity change from 0 to 32768
[  153.933912][ T7070] XFS (loop0): Quotacheck: Done.
[  153.953418][ T7074] loop2: detected capacity change from 0 to 32768
[pid  7070] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  7070] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7070] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  7070] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  7070] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  7070] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  7070] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7070] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7070] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7070] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  7073] <... ioctl resumed>)        = 0
[pid  7070] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  7073] close(3 <unfinished ...>
[pid  7070] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7073] <... close resumed>)        = 0
[pid  7073] mkdir("./file0", 0777)      = 0
[pid  7070] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  7070] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  7070] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  7070] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  7070] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  7073] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7070] <... openat resumed>)       = 4
[  153.979106][ T7072] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  153.995604][ T7073] loop5: detected capacity change from 0 to 32768
[  154.006865][ T7071] XFS (loop1): Ending clean mount
[  154.012497][ T7072] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  154.021199][ T7074] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[pid  7070] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  7070] sendfile(5, 4, [100] <unfinished ...>
[pid  7075] <... write resumed>)        = 16777216
[  154.030398][ T7074] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  154.051830][ T7071] XFS (loop1): Quotacheck needed: Please wait.
[  154.072975][ T7073] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[pid  7075] munmap(0x7f6d986f1000, 138412032) = 0
[pid  7071] <... mount resumed>)        = 0
[pid  7071] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  7075] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  7071] <... openat resumed>)       = 3
[pid  7071] chdir("./file0" <unfinished ...>
[pid  7075] <... openat resumed>)       = 4
[pid  7071] <... chdir resumed>)        = 0
[pid  7070] <... sendfile resumed> => [671], 571) = 571
[pid  7075] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  7071] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  7070] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  7071] <... ioctl resumed>)        = 0
[pid  7070] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[  154.101324][ T7073] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  154.121161][ T7071] XFS (loop1): Quotacheck: Done.
[  154.126958][ T7070] syz-executor246 (7070): drop_caches: 2
[  154.139279][ T7070] syz-executor246 (7070): drop_caches: 2
[pid  7071] close(4 <unfinished ...>
[pid  7070] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  7071] <... close resumed>)        = 0
[pid  7070] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7071] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  7070] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7075] <... ioctl resumed>)        = 0
[pid  7071] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7070] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7075] close(3 <unfinished ...>
[pid  7071] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  7070] ftruncate(-1, 33587199 <unfinished ...>
[pid  7075] <... close resumed>)        = 0
[pid  7071] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7070] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7075] mkdir("./file0", 0777 <unfinished ...>
[pid  7071] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  7070] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  7071] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7070] open(NULL, O_RDONLY <unfinished ...>
[pid  7075] <... mkdir resumed>)        = 0
[pid  7071] ftruncate(-1, 33587195 <unfinished ...>
[pid  7070] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7071] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[  154.148275][ T7075] loop3: detected capacity change from 0 to 32768
[  154.167386][ T7074] XFS (loop2): Ending clean mount
[  154.170492][ T7073] XFS (loop5): Ending clean mount
[  154.174622][ T7072] XFS (loop4): Ending clean mount
[  154.180547][ T7073] XFS (loop5): Quotacheck needed: Please wait.
[pid  7075] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7070] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7071] read(-1,  <unfinished ...>
[pid  7070] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7071] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7071] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7070] read(-1,  <unfinished ...>
[pid  7071] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7070] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7071] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  7070] exit_group(0 <unfinished ...>
[pid  7071] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  7070] <... exit_group resumed>)   = ?
[pid  7071] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7071] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  7070] +++ exited with 0 +++
[pid  7071] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7070, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=33 /* 0.33 s */} ---
[pid  7071] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7071] write(-1, NULL, 0 <unfinished ...>
[pid  7073] <... mount resumed>)        = 0
[pid  7071] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7073] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  7071] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7071] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  7073] <... openat resumed>)       = 3
[pid  7071] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5062] umount2("./37", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7073] chdir("./file0" <unfinished ...>
[pid  7071] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7071] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5062] openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  7073] <... chdir resumed>)        = 0
[  154.196673][ T7072] XFS (loop4): Quotacheck needed: Please wait.
[  154.212228][ T7074] XFS (loop2): Quotacheck needed: Please wait.
[  154.216001][ T7073] XFS (loop5): Quotacheck: Done.
[  154.236681][ T7075] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[pid  7071] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  7073] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7071] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  7073] close(4 <unfinished ...>
[pid  7071] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  7073] <... close resumed>)        = 0
[pid  7071] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  7073] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  7071] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7073] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7071] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] getdents64(3,  <unfinished ...>
[pid  7073] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  7071] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  7073] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7071] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5062] umount2("./37/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7073] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  7071] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7073] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7071] <... openat resumed>)       = 4
[pid  7073] ftruncate(-1, 33587195 <unfinished ...>
[pid  7071] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./37/binderfs",  <unfinished ...>
[pid  7071] <... openat resumed>)       = 5
[pid  7071] sendfile(5, 4, [100] <unfinished ...>
[pid  7074] <... mount resumed>)        = 0
[pid  7073] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  7073] read(-1,  <unfinished ...>
[pid  5062] unlink("./37/binderfs" <unfinished ...>
[pid  7073] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7073] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7072] <... mount resumed>)        = 0
[pid  5062] <... unlink resumed>)       = 0
[pid  7073] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7073] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  7073] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  7073] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  7073] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7073] write(-1, NULL, 0 <unfinished ...>
[pid  7072] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  7073] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5062] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[  154.251338][ T7072] XFS (loop4): Quotacheck: Done.
[  154.265498][ T7071] syz-executor246 (7071): drop_caches: 2
[  154.275118][ T7074] XFS (loop2): Quotacheck: Done.
[  154.282810][ T7075] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  7073] write(-1, NULL, 0 <unfinished ...>
[pid  7072] <... openat resumed>)       = 3
[pid  7074] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  7073] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7074] <... openat resumed>)       = 3
[pid  7073] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  7074] chdir("./file0" <unfinished ...>
[pid  7073] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7074] <... chdir resumed>)        = 0
[pid  7073] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  7074] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  7073] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7074] <... ioctl resumed>)        = 0
[pid  7073] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7074] close(4 <unfinished ...>
[pid  7073] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7074] <... close resumed>)        = 0
[pid  7073] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  7074] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  7073] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7074] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7073] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7074] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  7073] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7074] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7074] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  7073] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  7074] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7073] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7074] ftruncate(-1, 33587195 <unfinished ...>
[pid  7073] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  7072] chdir("./file0" <unfinished ...>
[pid  7074] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7073] <... openat resumed>)       = 4
[pid  7072] <... chdir resumed>)        = 0
[pid  7074] read(-1,  <unfinished ...>
[pid  7073] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  7074] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7073] <... openat resumed>)       = 5
[pid  7072] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  7074] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7073] sendfile(5, 4, [100] <unfinished ...>
[pid  7072] <... ioctl resumed>)        = 0
[pid  7071] <... sendfile resumed> => [671], 571) = 571
[pid  7074] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7071] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  7074] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  7071] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  7071] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  7074] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7071] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7074] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  7071] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7074] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7071] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7074] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  7072] close(4 <unfinished ...>
[pid  7071] ftruncate(-1, 33587199 <unfinished ...>
[pid  7074] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7072] <... close resumed>)        = 0
[pid  7071] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7074] read(-1,  <unfinished ...>
[pid  7072] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  7071] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7074] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7072] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7071] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7074] write(-1, NULL, 0 <unfinished ...>
[pid  7072] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  7071] open(NULL, O_RDONLY <unfinished ...>
[pid  7074] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7072] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7074] write(-1, NULL, 0 <unfinished ...>
[pid  7072] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  7071] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7074] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7072] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7071] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7074] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  7072] ftruncate(-1, 33587195 <unfinished ...>
[pid  7071] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7074] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7072] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7074] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  7072] read(-1,  <unfinished ...>
[  154.300855][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  154.324521][ T7071] syz-executor246 (7071): drop_caches: 2
[  154.332661][ T7073] syz-executor246 (7073): drop_caches: 2
[pid  7071] read(-1,  <unfinished ...>
[pid  7074] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7072] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7071] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7074] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7072] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7074] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7072] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7071] exit_group(0 <unfinished ...>
[pid  7074] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  7072] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  7074] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7072] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7071] <... exit_group resumed>)   = ?
[pid  7074] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7072] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  7074] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7072] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7074] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  7072] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  7074] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7072] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7074] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  7072] read(-1,  <unfinished ...>
[pid  7071] +++ exited with 0 +++
[pid  7074] <... openat resumed>)       = 4
[pid  7072] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7072] write(-1, NULL, 0 <unfinished ...>
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7071, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=31 /* 0.31 s */} ---
[pid  7074] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  7072] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5063] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  7074] <... openat resumed>)       = 5
[pid  7072] write(-1, NULL, 0 <unfinished ...>
[pid  7074] sendfile(5, 4, [100] <unfinished ...>
[pid  7072] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5063] <... restart_syscall resumed>) = 0
[pid  7072] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  7072] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5063] umount2("./37", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7072] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7072] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  5063] openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  7072] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5063] <... openat resumed>)       = 3
[pid  7072] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  7072] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  7073] <... sendfile resumed> => [671], 571) = 571
[pid  7072] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5063] getdents64(3,  <unfinished ...>
[pid  7073] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  7072] <... openat resumed>)       = 4
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  7072] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  5063] umount2("./37/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7073] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  7072] <... openat resumed>)       = 5
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[  154.362498][ T7073] syz-executor246 (7073): drop_caches: 2
[  154.391434][ T7075] XFS (loop3): Ending clean mount
[pid  7073] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  7072] sendfile(5, 4, [100] <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./37/binderfs",  <unfinished ...>
[pid  7073] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7073] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  7073] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  7073] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  7073] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  7073] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  7073] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7073] exit_group(0)               = ?
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] unlink("./37/binderfs")     = 0
[pid  5063] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7073] +++ exited with 0 +++
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7073, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=28 /* 0.28 s */} ---
[pid  5067] umount2("./37", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[  154.412763][ T7074] syz-executor246 (7074): drop_caches: 2
[  154.427925][ T7075] XFS (loop3): Quotacheck needed: Please wait.
[  154.438975][ T7072] syz-executor246 (7072): drop_caches: 2
[  154.453839][ T7074] syz-executor246 (7074): drop_caches: 2
[pid  5067] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5067] umount2("./37/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7074] <... sendfile resumed> => [671], 571) = 571
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7074] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  7074] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  7074] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  7074] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[  154.455724][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  7074] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5067] newfstatat(AT_FDCWD, "./37/binderfs",  <unfinished ...>
[pid  7074] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7074] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  7074] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  7074] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7074] exit_group(0)               = ?
[pid  7074] +++ exited with 0 +++
[pid  5067] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7074, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=30 /* 0.30 s */} ---
[pid  5067] unlink("./37/binderfs" <unfinished ...>
[pid  5064] umount2("./37", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... unlink resumed>)       = 0
[pid  7075] <... mount resumed>)        = 0
[pid  7072] <... sendfile resumed> => [671], 571) = 571
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5067] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] newfstatat(3, "",  <unfinished ...>
[pid  7072] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  7072] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  7072] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  7072] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  7072] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  7072] open(NULL, O_RDONLY <unfinished ...>
[pid  5064] getdents64(3,  <unfinished ...>
[pid  7072] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7072] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  7072] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7072] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7072] exit_group(0)               = ?
[pid  5064] umount2("./37/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./37/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] unlink("./37/binderfs" <unfinished ...>
[pid  7072] +++ exited with 0 +++
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7072, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=32 /* 0.32 s */} ---
[pid  5066] umount2("./36", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... unlink resumed>)       = 0
[pid  5064] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[  154.488460][ T7072] syz-executor246 (7072): drop_caches: 2
[  154.503798][ T7075] XFS (loop3): Quotacheck: Done.
[  154.526011][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5066] openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  7075] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  7075] <... openat resumed>)       = 3
[pid  7075] chdir("./file0")            = 0
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  7075] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7075] close(4)                    = 0
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  7075] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  5066] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  7075] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  5066] umount2("./36/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7075] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7075] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7075] ftruncate(-1, 33587195 <unfinished ...>
[pid  5066] newfstatat(AT_FDCWD, "./36/binderfs",  <unfinished ...>
[pid  7075] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  7075] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7075] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5066] unlink("./36/binderfs" <unfinished ...>
[pid  7075] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7075] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5066] <... unlink resumed>)       = 0
[pid  7075] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  7075] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  7075] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7075] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7075] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7075] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  7075] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  7075] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5066] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7075] <... openat resumed>)       = -1 EFAULT (Bad address)
[  154.538637][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  7075] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  7075] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  7075] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  7075] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  7075] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  7075] sendfile(5, 4, [100] <unfinished ...>
[pid  5062] <... umount2 resumed>)      = 0
[pid  5062] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./37/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5062] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[  154.591367][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  154.626146][ T7075] syz-executor246 (7075): drop_caches: 2
[pid  5062] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5062] close(4)                    = 0
[pid  5062] rmdir("./37/file0")         = 0
[pid  5062] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3)                    = 0
[pid  5062] rmdir("./37")               = 0
[pid  7075] <... sendfile resumed> => [671], 571) = 571
[pid  5062] mkdir("./38", 0777 <unfinished ...>
[  154.682118][ T7075] syz-executor246 (7075): drop_caches: 2
[pid  7075] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  5062] <... mkdir resumed>)        = 0
[pid  7075] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  7075] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7075] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  7075] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  7075] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  7075] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5062] close(3 <unfinished ...>
[pid  7075] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] <... close resumed>)        = 0
[pid  7075] open(NULL, O_RDONLY <unfinished ...>
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  7075] <... open resumed>)         = -1 EFAULT (Bad address)
./strace-static-x86_64: Process 7124 attached
[pid  7075] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  7124] set_robust_list(0x55555697c760, 24) = 0
[pid  7124] chdir("./38" <unfinished ...>
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 7124
[pid  7075] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7075] exit_group(0)               = ?
[pid  7075] +++ exited with 0 +++
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7075, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=36 /* 0.36 s */} ---
[pid  7124] <... chdir resumed>)        = 0
[pid  5065] umount2("./37", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5065] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  7124] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5065] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  7124] <... prctl resumed>)        = 0
[pid  7124] setpgid(0, 0 <unfinished ...>
[pid  5065] umount2("./37/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7124] <... setpgid resumed>)      = 0
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7124] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5065] newfstatat(AT_FDCWD, "./37/binderfs",  <unfinished ...>
[pid  7124] <... openat resumed>)       = 3
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  7124] write(3, "1000", 4 <unfinished ...>
[pid  5065] unlink("./37/binderfs" <unfinished ...>
[pid  7124] <... write resumed>)        = 4
[pid  7124] close(3 <unfinished ...>
[pid  5065] <... unlink resumed>)       = 0
[pid  7124] <... close resumed>)        = 0
[pid  5065] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7124] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7124] memfd_create("syzkaller", 0) = 3
[pid  7124] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  154.820580][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5064] <... umount2 resumed>)      = 0
[pid  5064] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] newfstatat(AT_FDCWD, "./37/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5064] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5064] openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5064] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5064] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5064] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4)                    = 0
[pid  5064] rmdir("./37/file0")         = 0
[pid  5064] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] close(3)                    = 0
[pid  5064] rmdir("./37")               = 0
[pid  5064] mkdir("./38", 0777)         = 0
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3
[pid  5064] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] close(3 <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5064] <... close resumed>)        = 0
[pid  5063] <... umount2 resumed>)      = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5067] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] <... umount2 resumed>)      = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
./strace-static-x86_64: Process 7125 attached
[pid  5067] newfstatat(AT_FDCWD, "./37/file0",  <unfinished ...>
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 7125
[pid  5063] newfstatat(AT_FDCWD, "./37/file0",  <unfinished ...>
[pid  7125] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  7125] <... set_robust_list resumed>) = 0
[pid  5067] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7125] chdir("./38" <unfinished ...>
[pid  5067] openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5066] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... openat resumed>)       = 4
[pid  7125] <... chdir resumed>)        = 0
[pid  5067] <... openat resumed>)       = 4
[pid  5066] newfstatat(AT_FDCWD, "./36/file0",  <unfinished ...>
[pid  5063] newfstatat(4, "",  <unfinished ...>
[pid  7125] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5067] newfstatat(4, "",  <unfinished ...>
[pid  7125] <... prctl resumed>)        = 0
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  7125] setpgid(0, 0 <unfinished ...>
[pid  5063] getdents64(4,  <unfinished ...>
[pid  7125] <... setpgid resumed>)      = 0
[pid  5067] getdents64(4,  <unfinished ...>
[pid  7125] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7125] <... openat resumed>)       = 3
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7125] write(3, "1000", 4 <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  7125] <... write resumed>)        = 4
[pid  5067] close(4 <unfinished ...>
[pid  7125] close(3 <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  7125] <... close resumed>)        = 0
[pid  5067] rmdir("./37/file0" <unfinished ...>
[pid  7125] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  7125] <... symlink resumed>)      = 0
[pid  5067] <... rmdir resumed>)        = 0
[pid  5066] openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5066] <... openat resumed>)       = 4
[pid  7125] memfd_create("syzkaller", 0 <unfinished ...>
[pid  7124] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5066] newfstatat(4, "",  <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./36/file0" <unfinished ...>
[pid  5067] close(3 <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  5063] close(4 <unfinished ...>
[pid  7125] <... memfd_create resumed>) = 3
[pid  5067] <... close resumed>)        = 0
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  7125] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5067] rmdir("./37" <unfinished ...>
[pid  5063] rmdir("./37/file0" <unfinished ...>
[pid  5066] close(3)                    = 0
[pid  5067] <... rmdir resumed>)        = 0
[pid  5066] rmdir("./36" <unfinished ...>
[pid  7125] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5067] mkdir("./38", 0777 <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  5063] <... rmdir resumed>)        = 0
[pid  5066] mkdir("./37", 0777 <unfinished ...>
[pid  5067] <... mkdir resumed>)        = 0
[pid  5066] <... mkdir resumed>)        = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5063] close(3)                    = 0
[pid  5063] rmdir("./37" <unfinished ...>
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5067] <... openat resumed>)       = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5066] close(3 <unfinished ...>
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5066] <... close resumed>)        = 0
[pid  5063] <... rmdir resumed>)        = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555697c750) = 7126
[pid  5067] close(3 <unfinished ...>
[pid  5063] mkdir("./38", 0777./strace-static-x86_64: Process 7126 attached
 <unfinished ...>
[pid  7126] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  5063] <... mkdir resumed>)        = 0
[pid  7126] <... set_robust_list resumed>) = 0
[pid  7126] chdir("./37")               = 0
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  7126] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7126] setpgid(0, 0)               = 0
[pid  7126] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5063] <... openat resumed>)       = 3
./strace-static-x86_64: Process 7127 attached
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 7127
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  7127] set_robust_list(0x55555697c760, 24) = 0
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  7127] chdir("./38" <unfinished ...>
[pid  5063] close(3 <unfinished ...>
[pid  7127] <... chdir resumed>)        = 0
[pid  7126] <... openat resumed>)       = 3
[pid  5063] <... close resumed>)        = 0
[pid  7127] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  7127] <... prctl resumed>)        = 0
[pid  7127] setpgid(0, 0 <unfinished ...>
[pid  7126] write(3, "1000", 4)         = 4
[pid  7127] <... setpgid resumed>)      = 0
[pid  7126] close(3)                    = 0
[pid  7127] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  7126] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  7127] <... openat resumed>)       = 3
[pid  7127] write(3, "1000", 4 <unfinished ...>
[pid  7126] <... symlink resumed>)      = 0
[pid  7127] <... write resumed>)        = 4
[pid  7127] close(3)                    = 0
[pid  7127] symlink("/dev/binderfs", "./binderfs"./strace-static-x86_64: Process 7128 attached
 <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 7128
[pid  7127] <... symlink resumed>)      = 0
[pid  7126] memfd_create("syzkaller", 0) = 3
[pid  7126] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  7128] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  7127] memfd_create("syzkaller", 0 <unfinished ...>
[pid  7128] <... set_robust_list resumed>) = 0
[pid  7127] <... memfd_create resumed>) = 3
[pid  7128] chdir("./38" <unfinished ...>
[pid  7127] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  7128] <... chdir resumed>)        = 0
[pid  7127] <... mmap resumed>)         = 0x7f6d986f1000
[pid  7128] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7128] setpgid(0, 0 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  7128] <... setpgid resumed>)      = 0
[pid  7128] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5065] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  7128] write(3, "1000", 4 <unfinished ...>
[pid  5065] newfstatat(AT_FDCWD, "./37/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  7128] <... write resumed>)        = 4
[pid  5065] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7128] close(3 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7128] <... close resumed>)        = 0
[pid  5065] openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  7128] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5065] <... openat resumed>)       = 4
[pid  7128] <... symlink resumed>)      = 0
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] getdents64(4,  <unfinished ...>
[pid  7128] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5065] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4,  <unfinished ...>
[pid  7128] <... memfd_create resumed>) = 3
[pid  5065] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  7128] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5065] close(4)                    = 0
[pid  5065] rmdir("./37/file0" <unfinished ...>
[pid  7128] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5065] <... rmdir resumed>)        = 0
[pid  5065] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./37")               = 0
[pid  5065] mkdir("./38", 0777)         = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid  5065] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5065] close(3)                    = 0
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7129 attached
 <unfinished ...>
[pid  7129] set_robust_list(0x55555697c760, 24) = 0
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 7129
[pid  7129] chdir("./38")               = 0
[pid  7129] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7129] setpgid(0, 0)               = 0
[pid  7129] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7129] write(3, "1000", 4)         = 4
[pid  7129] close(3)                    = 0
[pid  7129] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7129] memfd_create("syzkaller", 0) = 3
[pid  7129] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  7125] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7126] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7124] <... write resumed>)        = 16777216
[pid  7124] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  7127] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7128] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7124] <... munmap resumed>)       = 0
[pid  7124] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7124] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  7129] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7124] <... ioctl resumed>)        = 0
[pid  7124] close(3)                    = 0
[pid  7124] mkdir("./file0", 0777)      = 0
[  155.686344][ T7124] loop0: detected capacity change from 0 to 32768
[  155.824301][ T7124] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  155.874151][ T7124] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  7124] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7127] <... write resumed>)        = 16777216
[pid  7127] munmap(0x7f6d986f1000, 138412032) = 0
[pid  7127] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[  156.025078][ T7124] XFS (loop0): Ending clean mount
[pid  7127] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  7125] <... write resumed>)        = 16777216
[pid  7129] <... write resumed>)        = 16777216
[pid  7129] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  7127] <... ioctl resumed>)        = 0
[pid  7125] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  7127] close(3)                    = 0
[pid  7127] mkdir("./file0", 0777)      = 0
[pid  7127] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7129] <... munmap resumed>)       = 0
[pid  7128] <... write resumed>)        = 16777216
[pid  7129] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  7128] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  7125] <... munmap resumed>)       = 0
[pid  7129] <... openat resumed>)       = 4
[pid  7129] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[  156.053280][ T7124] XFS (loop0): Quotacheck needed: Please wait.
[  156.083818][ T7127] loop5: detected capacity change from 0 to 32768
[pid  7125] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid  7129] <... ioctl resumed>)        = 0
[pid  7125] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  7129] close(3)                    = 0
[pid  7129] mkdir("./file0", 0777)      = 0
[pid  7129] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7125] <... ioctl resumed>)        = 0
[pid  7128] <... munmap resumed>)       = 0
[pid  7124] <... mount resumed>)        = 0
[pid  7124] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  7128] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  7125] close(3 <unfinished ...>
[pid  7124] <... openat resumed>)       = 3
[pid  7128] <... openat resumed>)       = 4
[pid  7125] <... close resumed>)        = 0
[pid  7128] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  7125] mkdir("./file0", 0777 <unfinished ...>
[pid  7124] chdir("./file0")            = 0
[pid  7124] ioctl(4, LOOP_CLR_FD)       = 0
[  156.133415][ T7129] loop3: detected capacity change from 0 to 32768
[  156.144036][ T7125] loop2: detected capacity change from 0 to 32768
[  156.152248][ T7124] XFS (loop0): Quotacheck: Done.
[  156.158057][ T7127] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  156.170123][ T7127] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  7124] close(4)                    = 0
[pid  7124] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  7124] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  7124] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  7125] <... mkdir resumed>)        = 0
[pid  7124] ftruncate(-1, 33587195 <unfinished ...>
[pid  7125] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7124] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7124] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7124] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  7124] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  7124] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  7124] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  7124] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7124] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7124] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7124] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  7124] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  7124] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  7124] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  7124] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  7124] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  7124] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  7124] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[pid  7124] sendfile(5, 4, [100] <unfinished ...>
[pid  7128] <... ioctl resumed>)        = 0
[  156.171339][ T7128] loop1: detected capacity change from 0 to 32768
[  156.199424][ T7129] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  156.219517][ T7129] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  7128] close(3)                    = 0
[pid  7128] mkdir("./file0", 0777)      = 0
[pid  7128] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7126] <... write resumed>)        = 16777216
[  156.231653][ T7125] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  156.249398][ T7125] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  156.273013][ T7128] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[pid  7126] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  7124] <... sendfile resumed> => [671], 571) = 571
[pid  7124] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  7124] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[  156.283560][ T7128] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  156.290290][ T7124] syz-executor246 (7124): drop_caches: 2
[  156.314340][ T7124] syz-executor246 (7124): drop_caches: 2
[  156.315772][ T7127] XFS (loop5): Ending clean mount
[  156.325394][ T7129] XFS (loop3): Ending clean mount
[pid  7126] <... munmap resumed>)       = 0
[pid  7124] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  7124] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  7124] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  7126] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  7124] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  7124] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  7124] read(-1,  <unfinished ...>
[pid  7126] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  7124] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7124] exit_group(0)               = ?
[pid  7124] +++ exited with 0 +++
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7124, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=33 /* 0.33 s */} ---
[pid  5062] restart_syscall(<... resuming interrupted clone ...>) = 0
[  156.341544][ T7127] XFS (loop5): Quotacheck needed: Please wait.
[  156.345654][ T7129] XFS (loop3): Quotacheck needed: Please wait.
[  156.357539][ T7126] loop4: detected capacity change from 0 to 32768
[  156.379209][ T7125] XFS (loop2): Ending clean mount
[pid  5062] umount2("./38", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  7126] <... ioctl resumed>)        = 0
[pid  5062] <... openat resumed>)       = 3
[pid  7126] close(3)                    = 0
[pid  7126] mkdir("./file0", 0777 <unfinished ...>
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  7126] <... mkdir resumed>)        = 0
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  7126] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5062] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] umount2("./38/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./38/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./38/binderfs")     = 0
[  156.387479][ T7128] XFS (loop1): Ending clean mount
[  156.396631][ T7125] XFS (loop2): Quotacheck needed: Please wait.
[  156.417218][ T7127] XFS (loop5): Quotacheck: Done.
[  156.425890][ T7129] XFS (loop3): Quotacheck: Done.
[  156.426407][ T7128] XFS (loop1): Quotacheck needed: Please wait.
[pid  5062] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7129] <... mount resumed>)        = 0
[pid  7127] <... mount resumed>)        = 0
[pid  7129] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  7127] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  7129] <... openat resumed>)       = 3
[pid  7127] <... openat resumed>)       = 3
[pid  7127] chdir("./file0")            = 0
[pid  7127] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7127] close(4)                    = 0
[pid  7127] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  7129] chdir("./file0" <unfinished ...>
[pid  7127] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  7129] <... chdir resumed>)        = 0
[pid  7127] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7129] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  7127] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  7129] <... ioctl resumed>)        = 0
[pid  7127] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7127] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  7127] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7127] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  7127] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  7127] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  7129] close(4 <unfinished ...>
[pid  7127] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  7129] <... close resumed>)        = 0
[pid  7127] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[  156.437567][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  7129] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  7127] read(-1,  <unfinished ...>
[pid  7129] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7127] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7129] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  7127] write(-1, NULL, 0 <unfinished ...>
[pid  7129] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7127] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7129] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  7127] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7127] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  7129] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7127] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  7129] ftruncate(-1, 33587195 <unfinished ...>
[pid  7128] <... mount resumed>)        = 0
[pid  7127] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7127] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  7129] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7127] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  7129] read(-1,  <unfinished ...>
[pid  7127] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7129] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7127] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7129] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7128] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  7127] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7129] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7128] <... openat resumed>)       = 3
[pid  7127] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  7125] <... mount resumed>)        = 0
[pid  7129] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  7127] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7129] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7127] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  7129] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  7128] chdir("./file0" <unfinished ...>
[pid  7127] <... openat resumed>)       = 4
[pid  7125] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  7129] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7128] <... chdir resumed>)        = 0
[pid  7127] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  7125] <... openat resumed>)       = 3
[pid  7129] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  7128] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  7127] <... openat resumed>)       = 5
[pid  7129] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7128] <... ioctl resumed>)        = 0
[pid  7127] sendfile(5, 4, [100] <unfinished ...>
[pid  7125] chdir("./file0" <unfinished ...>
[pid  7129] read(-1,  <unfinished ...>
[pid  7128] close(4 <unfinished ...>
[pid  7125] <... chdir resumed>)        = 0
[pid  7129] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7128] <... close resumed>)        = 0
[pid  7125] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  7129] write(-1, NULL, 0 <unfinished ...>
[pid  7128] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  7125] <... ioctl resumed>)        = 0
[  156.465501][ T7126] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  156.474007][ T7128] XFS (loop1): Quotacheck: Done.
[  156.478522][ T7125] XFS (loop2): Quotacheck: Done.
[  156.504800][ T7126] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  7129] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7128] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7125] close(4 <unfinished ...>
[pid  7129] write(-1, NULL, 0 <unfinished ...>
[pid  7128] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  7125] <... close resumed>)        = 0
[pid  7125] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  7128] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7125] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7128] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  7125] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  7128] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7125] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7128] ftruncate(-1, 33587195 <unfinished ...>
[pid  7125] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  7128] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7125] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7128] read(-1,  <unfinished ...>
[pid  7129] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7128] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7125] ftruncate(-1, 33587195 <unfinished ...>
[pid  7128] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7125] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7128] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7125] read(-1,  <unfinished ...>
[pid  7128] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  7125] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7128] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7125] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7129] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  7128] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  7125] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7129] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7128] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7125] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  7128] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  7125] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  7129] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  7128] read(-1,  <unfinished ...>
[pid  7125] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7128] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7125] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  7125] read(-1,  <unfinished ...>
[pid  7129] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7129] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7128] write(-1, NULL, 0 <unfinished ...>
[pid  7125] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7129] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7128] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7125] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7128] write(-1, NULL, 0 <unfinished ...>
[pid  7125] write(-1, NULL, 0 <unfinished ...>
[pid  7128] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7125] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7128] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  7125] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  7129] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  7128] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7129] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7129] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7128] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  7125] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7129] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7129] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  7129] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  7129] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  7128] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7125] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  7128] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  7129] <... openat resumed>)       = 5
[pid  7128] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  7125] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7129] sendfile(5, 4, [100] <unfinished ...>
[pid  7128] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7125] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7128] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7127] <... sendfile resumed> => [671], 571) = 571
[pid  7125] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7128] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7127] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  7125] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  7128] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  7127] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  7128] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7127] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  7125] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7128] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  7127] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7125] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7127] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7125] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7128] <... openat resumed>)       = 4
[pid  7127] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7125] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  7128] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  7125] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7127] ftruncate(-1, 33587199 <unfinished ...>
[pid  7125] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  7127] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7127] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7128] <... openat resumed>)       = 5
[pid  7127] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7125] <... openat resumed>)       = 4
[pid  7127] open(NULL, O_RDONLY <unfinished ...>
[pid  7128] sendfile(5, 4, [100] <unfinished ...>
[pid  7127] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7125] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  7127] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7125] <... openat resumed>)       = 5
[pid  7127] <... openat resumed>)       = -1 EFAULT (Bad address)
[  156.600647][ T7127] syz-executor246 (7127): drop_caches: 2
[  156.625619][ T7127] syz-executor246 (7127): drop_caches: 2
[  156.628055][ T7129] syz-executor246 (7129): drop_caches: 2
[pid  7125] sendfile(5, 4, [100] <unfinished ...>
[pid  7127] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7127] exit_group(0)               = ?
[pid  7129] <... sendfile resumed> => [671], 571) = 571
[pid  7127] +++ exited with 0 +++
[pid  5062] <... umount2 resumed>)      = 0
[  156.662294][ T7125] syz-executor246 (7125): drop_caches: 2
[  156.666075][ T7126] XFS (loop4): Ending clean mount
[  156.669022][ T7128] syz-executor246 (7128): drop_caches: 2
[  156.698103][ T7129] syz-executor246 (7129): drop_caches: 2
[  156.698611][ T7125] syz-executor246 (7125): drop_caches: 2
[pid  7129] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5067] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7127, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=31 /* 0.31 s */} ---
[pid  5062] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7129] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  7125] <... sendfile resumed> => [671], 571) = 571
[pid  7128] <... sendfile resumed> => [671], 571) = 571
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7129] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  7128] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  7125] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  5062] newfstatat(AT_FDCWD, "./38/file0",  <unfinished ...>
[pid  7129] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7128] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  7125] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  5067] umount2("./38", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7129] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7128] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  7125] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7129] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7128] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7125] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5062] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7129] ftruncate(-1, 33587199 <unfinished ...>
[pid  7128] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7125] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7128] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7125] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5062] openat(AT_FDCWD, "./38/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  7128] ftruncate(-1, 33587199 <unfinished ...>
[pid  7129] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5067] <... openat resumed>)       = 3
[pid  7129] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7128] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5062] <... openat resumed>)       = 4
[pid  7129] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7128] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7125] ftruncate(-1, 33587199 <unfinished ...>
[pid  5067] newfstatat(3, "",  <unfinished ...>
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  7129] open(NULL, O_RDONLY <unfinished ...>
[pid  7128] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7125] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  7129] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7128] open(NULL, O_RDONLY <unfinished ...>
[pid  7125] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  7129] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7128] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7125] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5062] getdents64(4,  <unfinished ...>
[pid  7128] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7129] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7128] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7125] open(NULL, O_RDONLY <unfinished ...>
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  7129] read(-1,  <unfinished ...>
[pid  7128] read(-1,  <unfinished ...>
[pid  7125] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5067] umount2("./38/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7129] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7128] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7125] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  5062] getdents64(4,  <unfinished ...>
[pid  7125] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7128] exit_group(0 <unfinished ...>
[pid  5062] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7129] exit_group(0 <unfinished ...>
[pid  7128] <... exit_group resumed>)   = ?
[pid  7125] read(-1,  <unfinished ...>
[pid  5067] newfstatat(AT_FDCWD, "./38/binderfs",  <unfinished ...>
[pid  5062] close(4 <unfinished ...>
[pid  7125] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7125] exit_group(0 <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] <... close resumed>)        = 0
[pid  5062] rmdir("./38/file0")         = 0
[pid  7125] <... exit_group resumed>)   = ?
[pid  5067] unlink("./38/binderfs")     = 0
[pid  7129] <... exit_group resumed>)   = ?
[pid  7128] +++ exited with 0 +++
[pid  7126] <... mount resumed>)        = 0
[pid  7125] +++ exited with 0 +++
[pid  5067] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] getdents64(3,  <unfinished ...>
[pid  7126] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7128, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=24 /* 0.24 s */} ---
[pid  7126] <... openat resumed>)       = 3
[pid  5064] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7125, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=34 /* 0.34 s */} ---
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  7126] chdir("./file0" <unfinished ...>
[pid  5063] umount2("./38", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7126] <... chdir resumed>)        = 0
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7126] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  5063] openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  7126] <... ioctl resumed>)        = 0
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  7126] close(4 <unfinished ...>
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(3,  <unfinished ...>
[pid  7126] <... close resumed>)        = 0
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  7126] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5063] umount2("./38/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7126] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7126] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[  156.707435][ T7126] XFS (loop4): Quotacheck needed: Please wait.
[  156.713522][ T7128] syz-executor246 (7128): drop_caches: 2
[  156.749575][ T7126] XFS (loop4): Quotacheck: Done.
[pid  5063] newfstatat(AT_FDCWD, "./38/binderfs",  <unfinished ...>
[pid  7126] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] unlink("./38/binderfs" <unfinished ...>
[pid  7126] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  5063] <... unlink resumed>)       = 0
[pid  5063] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7126] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7126] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  7126] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7126] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  7126] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  7129] +++ exited with 0 +++
[pid  5064] umount2("./38", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] close(3 <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] <... close resumed>)        = 0
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7129, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=38 /* 0.38 s */} ---
[pid  5064] openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  5062] rmdir("./38" <unfinished ...>
[pid  5064] <... openat resumed>)       = 3
[pid  7126] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7126] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  5064] newfstatat(3, "",  <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  5065] <... restart_syscall resumed>) = 0
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] mkdir("./39", 0777 <unfinished ...>
[pid  5064] getdents64(3,  <unfinished ...>
[pid  7126] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5065] umount2("./38", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] <... mkdir resumed>)        = 0
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] umount2("./38/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5065] openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  7126] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  5065] <... openat resumed>)       = 3
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] <... openat resumed>)       = 3
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  5064] newfstatat(AT_FDCWD, "./38/binderfs",  <unfinished ...>
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  7126] read(-1,  <unfinished ...>
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  7126] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7126] write(-1, NULL, 0 <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5064] unlink("./38/binderfs" <unfinished ...>
[pid  5062] close(3 <unfinished ...>
[pid  7126] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5065] umount2("./38/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7126] write(-1, NULL, 0 <unfinished ...>
[pid  5064] <... unlink resumed>)       = 0
[pid  5062] <... close resumed>)        = 0
[pid  7126] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5065] newfstatat(AT_FDCWD, "./38/binderfs",  <unfinished ...>
[pid  7126] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  5065] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  7126] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7126] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  5065] unlink("./38/binderfs" <unfinished ...>
[pid  7126] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5065] <... unlink resumed>)       = 0
./strace-static-x86_64: Process 7178 attached
[pid  7126] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5065] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 7178
[pid  7126] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  7178] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  7126] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7126] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7178] <... set_robust_list resumed>) = 0
[pid  7126] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7178] chdir("./39" <unfinished ...>
[pid  7126] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  7126] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  7178] <... chdir resumed>)        = 0
[pid  7126] <... openat resumed>)       = 4
[pid  7178] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7178] setpgid(0, 0 <unfinished ...>
[pid  7126] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  7178] <... setpgid resumed>)      = 0
[pid  7126] <... openat resumed>)       = 5
[  156.758727][ T5067] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  156.767691][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  7178] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  7126] sendfile(5, 4, [100] <unfinished ...>
[pid  7178] <... openat resumed>)       = 3
[pid  7178] write(3, "1000", 4)         = 4
[pid  7178] close(3)                    = 0
[pid  7178] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7178] memfd_create("syzkaller", 0) = 3
[  156.813512][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  156.822780][ T5064] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  7178] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[  156.868174][ T7126] syz-executor246 (7126): drop_caches: 2
[  156.917797][ T7126] syz-executor246 (7126): drop_caches: 2
[pid  7126] <... sendfile resumed> => [671], 571) = 571
[pid  7126] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  7126] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  7126] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  7126] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  7126] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  7126] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  7126] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  7126] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7126] exit_group(0)               = ?
[pid  7126] +++ exited with 0 +++
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7126, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=32 /* 0.32 s */} ---
[pid  5066] umount2("./37", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5066] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(3, 0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5066] umount2("./37/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5066] newfstatat(AT_FDCWD, "./37/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] unlink("./37/binderfs")     = 0
[  157.080603][ T5066] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  5066] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7178] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  5063] <... umount2 resumed>)      = 0
[pid  5063] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] newfstatat(AT_FDCWD, "./38/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5063] openat(AT_FDCWD, "./38/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5063] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5065] <... umount2 resumed>)      = 0
[pid  5063] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5063] getdents64(4,  <unfinished ...>
[pid  5067] <... umount2 resumed>)      = 0
[pid  5065] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./38/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] close(4 <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] openat(AT_FDCWD, "./38/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5067] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5067] newfstatat(AT_FDCWD, "./38/file0",  <unfinished ...>
[pid  5065] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  5065] getdents64(4,  <unfinished ...>
[pid  5063] rmdir("./38/file0" <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5065] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] close(4 <unfinished ...>
[pid  5063] <... rmdir resumed>)        = 0
[pid  5067] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... close resumed>)        = 0
[pid  5065] rmdir("./38/file0")         = 0
[pid  5063] getdents64(3, 0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5067] openat(AT_FDCWD, "./38/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5064] <... umount2 resumed>)      = 0
[pid  5063] close(3 <unfinished ...>
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5065] close(3)                    = 0
[pid  5065] rmdir("./38")               = 0
[pid  5067] newfstatat(4, "",  <unfinished ...>
[pid  5065] mkdir("./39", 0777 <unfinished ...>
[pid  5067] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] <... mkdir resumed>)        = 0
[pid  5067] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5067] getdents64(4,  <unfinished ...>
[pid  5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5067] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5065] <... openat resumed>)       = 3
[pid  5067] close(4 <unfinished ...>
[pid  5065] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  5065] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5067] rmdir("./38/file0" <unfinished ...>
[pid  5065] close(3 <unfinished ...>
[pid  5067] <... rmdir resumed>)        = 0
[pid  5065] <... close resumed>)        = 0
[pid  5067] getdents64(3,  <unfinished ...>
[pid  5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5063] <... close resumed>)        = 0
[pid  5067] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5067] close(3 <unfinished ...>
[pid  5063] rmdir("./38"./strace-static-x86_64: Process 7179 attached
 <unfinished ...>
[pid  5067] <... close resumed>)        = 0
[pid  7179] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5067] rmdir("./38" <unfinished ...>
[pid  5065] <... clone resumed>, child_tidptr=0x55555697c750) = 7179
[pid  7179] <... set_robust_list resumed>) = 0
[pid  5067] <... rmdir resumed>)        = 0
[pid  5063] <... rmdir resumed>)        = 0
[pid  7179] chdir("./39" <unfinished ...>
[pid  5067] mkdir("./39", 0777 <unfinished ...>
[pid  5063] mkdir("./39", 0777 <unfinished ...>
[pid  7179] <... chdir resumed>)        = 0
[pid  5067] <... mkdir resumed>)        = 0
[pid  5063] <... mkdir resumed>)        = 0
[pid  7179] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  7179] setpgid(0, 0)               = 0
[pid  7179] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5067] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3
[pid  7179] <... openat resumed>)       = 3
[pid  5067] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5064] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] <... openat resumed>)       = 3
[pid  5063] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5067] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  7179] write(3, "1000", 4)         = 4
[pid  7179] close(3)                    = 0
[pid  7179] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5064] newfstatat(AT_FDCWD, "./38/file0",  <unfinished ...>
[pid  5063] close(3 <unfinished ...>
[pid  5067] close(3)                    = 0
[pid  7179] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5063] <... close resumed>)        = 0
./strace-static-x86_64: Process 7180 attached
[pid  5064] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  7179] <... memfd_create resumed>) = 3
[pid  7179] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
./strace-static-x86_64: Process 7181 attached
[pid  7180] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5067] <... clone resumed>, child_tidptr=0x55555697c750) = 7180
[pid  5064] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7181] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  7180] <... set_robust_list resumed>) = 0
[pid  7181] <... set_robust_list resumed>) = 0
[pid  5064] openat(AT_FDCWD, "./38/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5063] <... clone resumed>, child_tidptr=0x55555697c750) = 7181
[pid  7181] chdir("./39" <unfinished ...>
[pid  7180] chdir("./39" <unfinished ...>
[pid  5064] <... openat resumed>)       = 4
[pid  7181] <... chdir resumed>)        = 0
[pid  7180] <... chdir resumed>)        = 0
[pid  5064] newfstatat(4, "",  <unfinished ...>
[pid  7181] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  7180] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5064] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  7181] <... prctl resumed>)        = 0
[pid  7180] <... prctl resumed>)        = 0
[pid  5064] getdents64(4,  <unfinished ...>
[pid  7181] setpgid(0, 0 <unfinished ...>
[pid  5064] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  7180] setpgid(0, 0 <unfinished ...>
[pid  5064] getdents64(4,  <unfinished ...>
[pid  7181] <... setpgid resumed>)      = 0
[pid  7180] <... setpgid resumed>)      = 0
[pid  7181] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  7180] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5064] <... getdents64 resumed>0x555556985830 /* 0 entries */, 32768) = 0
[pid  5064] close(4 <unfinished ...>
[pid  7180] <... openat resumed>)       = 3
[pid  5064] <... close resumed>)        = 0
[pid  7181] <... openat resumed>)       = 3
[pid  7181] write(3, "1000", 4 <unfinished ...>
[pid  7180] write(3, "1000", 4 <unfinished ...>
[pid  5064] rmdir("./38/file0" <unfinished ...>
[pid  7181] <... write resumed>)        = 4
[pid  7181] close(3 <unfinished ...>
[pid  7180] <... write resumed>)        = 4
[pid  5064] <... rmdir resumed>)        = 0
[pid  7181] <... close resumed>)        = 0
[pid  7180] close(3 <unfinished ...>
[pid  5064] getdents64(3,  <unfinished ...>
[pid  7181] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  7180] <... close resumed>)        = 0
[pid  5064] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  7181] <... symlink resumed>)      = 0
[pid  7180] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5064] close(3 <unfinished ...>
[pid  7181] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5064] <... close resumed>)        = 0
[pid  7181] <... memfd_create resumed>) = 3
[pid  7180] <... symlink resumed>)      = 0
[pid  5064] rmdir("./38" <unfinished ...>
[pid  5066] <... umount2 resumed>)      = 0
[pid  7181] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  7180] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5066] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5064] <... rmdir resumed>)        = 0
[pid  7181] <... mmap resumed>)         = 0x7f6d986f1000
[pid  7180] <... memfd_create resumed>) = 3
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] mkdir("./39", 0777 <unfinished ...>
[pid  5066] newfstatat(AT_FDCWD, "./37/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7180] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5064] <... mkdir resumed>)        = 0
[pid  7180] <... mmap resumed>)         = 0x7f6d986f1000
[pid  5066] openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5066] <... openat resumed>)       = 4
[pid  5066] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5066] getdents64(4, 0x555556985830 /* 2 entries */, 32768) = 48
[pid  5066] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5066] close(4)                    = 0
[pid  5066] rmdir("./37/file0" <unfinished ...>
[pid  5064] <... openat resumed>)       = 3
[pid  5066] <... rmdir resumed>)        = 0
[pid  5066] getdents64(3,  <unfinished ...>
[pid  5064] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5064] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5066] close(3)                    = 0
[pid  5066] rmdir("./37" <unfinished ...>
[pid  5064] close(3 <unfinished ...>
[pid  5066] <... rmdir resumed>)        = 0
[pid  5066] mkdir("./38", 0777)         = 0
[pid  5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5066] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5064] <... close resumed>)        = 0
[pid  5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5066] close(3)                    = 0
[pid  5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 7182 attached
./strace-static-x86_64: Process 7183 attached
 <unfinished ...>
[pid  7182] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  5064] <... clone resumed>, child_tidptr=0x55555697c750) = 7182
[pid  7183] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  7182] <... set_robust_list resumed>) = 0
[pid  7183] <... set_robust_list resumed>) = 0
[pid  7182] chdir("./39" <unfinished ...>
[pid  5066] <... clone resumed>, child_tidptr=0x55555697c750) = 7183
[pid  7183] chdir("./38" <unfinished ...>
[pid  7182] <... chdir resumed>)        = 0
[pid  7183] <... chdir resumed>)        = 0
[pid  7182] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  7183] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  7182] <... prctl resumed>)        = 0
[pid  7183] <... prctl resumed>)        = 0
[pid  7183] setpgid(0, 0 <unfinished ...>
[pid  7182] setpgid(0, 0)               = 0
[pid  7182] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  7183] <... setpgid resumed>)      = 0
[pid  7182] write(3, "1000", 4 <unfinished ...>
[pid  7183] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  7182] <... write resumed>)        = 4
[pid  7183] <... openat resumed>)       = 3
[pid  7182] close(3 <unfinished ...>
[pid  7183] write(3, "1000", 4 <unfinished ...>
[pid  7182] <... close resumed>)        = 0
[pid  7183] <... write resumed>)        = 4
[pid  7182] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  7183] close(3 <unfinished ...>
[pid  7182] <... symlink resumed>)      = 0
[pid  7183] <... close resumed>)        = 0
[pid  7182] memfd_create("syzkaller", 0 <unfinished ...>
[pid  7183] symlink("/dev/binderfs", "./binderfs") = 0
[pid  7183] memfd_create("syzkaller", 0 <unfinished ...>
[pid  7182] <... memfd_create resumed>) = 3
[pid  7182] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  7183] <... memfd_create resumed>) = 3
[pid  7183] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  7178] <... write resumed>)        = 16777216
[pid  7178] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  7179] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7178] <... munmap resumed>)       = 0
[pid  7181] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7180] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7178] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  7178] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7178] close(3)                    = 0
[pid  7178] mkdir("./file0", 0777)      = 0
[  157.793987][ T7178] loop0: detected capacity change from 0 to 32768
[pid  7178] mount("/dev/loop0", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7182] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[  157.876576][ T7178] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  157.904489][ T7178] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  158.024255][ T7178] XFS (loop0): Ending clean mount
[pid  7183] write(3, "\x58\x46\x53\x42\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x96\xe0\x5e\x54\x0d\x4c\x72\xb5\x91\x04\xd7\x9d\x8b\x4e\xeb\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\x00\x11\x40\x00\x00\x00\x00\x00\x00\x11\x41\x00\x00\x00\x00\x00\x00\x11\x42\x00\x00\x00\x01\x00\x00\x10\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x04\x3e"..., 16777216 <unfinished ...>
[pid  7181] <... write resumed>)        = 16777216
[  158.055932][ T7178] XFS (loop0): Quotacheck needed: Please wait.
[pid  7181] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  7178] <... mount resumed>)        = 0
[pid  7181] <... munmap resumed>)       = 0
[pid  7178] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7181] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[  158.103318][ T7178] XFS (loop0): Quotacheck: Done.
[pid  7178] chdir("./file0" <unfinished ...>
[pid  7181] <... openat resumed>)       = 4
[pid  7178] <... chdir resumed>)        = 0
[pid  7181] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  7178] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  7181] <... ioctl resumed>)        = 0
[pid  7178] <... ioctl resumed>)        = 0
[pid  7181] close(3 <unfinished ...>
[pid  7178] close(4)                    = 0
[pid  7181] <... close resumed>)        = 0
[pid  7181] mkdir("./file0", 0777)      = 0
[pid  7178] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  7178] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  7181] mount("/dev/loop1", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7178] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7178] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  7178] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  7178] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7178] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  7178] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  7178] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  7178] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[  158.124084][ T7181] loop1: detected capacity change from 0 to 32768
[pid  7178] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7178] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7178] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7178] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  7178] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  7178] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  7178] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  7178] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  7178] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  7178] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  7178] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY) = 5
[  158.223127][ T7181] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  158.253088][ T7181] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[pid  7178] sendfile(5, 4, [100] <unfinished ...>
[pid  7183] <... write resumed>)        = 16777216
[pid  7183] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  7178] <... sendfile resumed> => [671], 571) = 571
[pid  7183] <... munmap resumed>)       = 0
[pid  7179] <... write resumed>)        = 16777216
[  158.305045][ T7178] syz-executor246 (7178): drop_caches: 2
[  158.317054][ T7178] syz-executor246 (7178): drop_caches: 2
[pid  7183] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid  7179] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  7183] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  7179] <... munmap resumed>)       = 0
[pid  7178] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  7178] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  7178] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  7178] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  7178] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  7178] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  7183] <... ioctl resumed>)        = 0
[pid  7178] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7183] close(3 <unfinished ...>
[pid  7180] <... write resumed>)        = 16777216
[pid  7179] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  7178] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7183] <... close resumed>)        = 0
[pid  7178] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7180] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  7179] <... openat resumed>)       = 4
[pid  7178] exit_group(0)               = ?
[pid  7183] mkdir("./file0", 0777 <unfinished ...>
[pid  7179] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  7178] +++ exited with 0 +++
[pid  7183] <... mkdir resumed>)        = 0
[pid  5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7178, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=32 /* 0.32 s */} ---
[pid  7183] mount("/dev/loop4", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5062] umount2("./39", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] openat(AT_FDCWD, "./39", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  7179] <... ioctl resumed>)        = 0
[pid  5062] newfstatat(3, "",  <unfinished ...>
[pid  7179] close(3 <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  7179] <... close resumed>)        = 0
[pid  5062] getdents64(3,  <unfinished ...>
[pid  7179] mkdir("./file0", 0777 <unfinished ...>
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[  158.356840][ T7183] loop4: detected capacity change from 0 to 32768
[  158.395708][ T7179] loop3: detected capacity change from 0 to 32768
[pid  7179] <... mkdir resumed>)        = 0
[pid  5062] umount2("./39/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5062] newfstatat(AT_FDCWD, "./39/binderfs",  <unfinished ...>
[pid  7179] mount("/dev/loop3", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] unlink("./39/binderfs")     = 0
[pid  5062] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7180] <... munmap resumed>)       = 0
[pid  7180] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4
[pid  7180] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7180] close(3)                    = 0
[pid  7180] mkdir("./file0", 0777)      = 0
[  158.413998][ T7183] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  158.429019][ T5062] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  158.441710][ T7180] loop5: detected capacity change from 0 to 32768
[  158.442065][ T7183] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  158.458322][ T7181] XFS (loop1): Ending clean mount
[pid  7180] mount("/dev/loop5", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7182] <... write resumed>)        = 16777216
[pid  7182] munmap(0x7f6d986f1000, 138412032 <unfinished ...>
[pid  7181] <... mount resumed>)        = 0
[  158.466841][ T7179] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[  158.487339][ T7181] XFS (loop1): Quotacheck needed: Please wait.
[  158.495439][ T7179] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  158.505371][ T7181] XFS (loop1): Quotacheck: Done.
[pid  7181] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  7181] chdir("./file0")            = 0
[pid  7181] ioctl(4, LOOP_CLR_FD)       = 0
[pid  7181] close(4)                    = 0
[pid  7181] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  7181] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[  158.521696][ T7180] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  158.550480][ T7183] XFS (loop4): Ending clean mount
[  158.562364][ T7183] XFS (loop4): Quotacheck needed: Please wait.
[pid  7181] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  7181] ftruncate(-1, 33587195)     = -1 EBADF (Bad file descriptor)
[pid  7181] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7181] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  7181] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  7181] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  7181] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT, 0) = -1 EBADF (Bad file descriptor)
[pid  7181] read(-1,  <unfinished ...>
[pid  7182] <... munmap resumed>)       = 0
[pid  7181] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7181] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7181] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7181] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  7181] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  7181] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[  158.578071][ T7180] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  158.603267][ T7179] XFS (loop3): Ending clean mount
[pid  7182] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  7181] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  7181] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7182] <... openat resumed>)       = 4
[pid  7181] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7182] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  7181] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  7181] openat(AT_FDCWD, "/proc/partitions", O_RDONLY) = 4
[pid  7181] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  7182] close(3 <unfinished ...>
[pid  7181] <... openat resumed>)       = 5
[pid  7179] <... mount resumed>)        = 0
[pid  7182] <... close resumed>)        = 0
[pid  7181] sendfile(5, 4, [100] <unfinished ...>
[pid  7179] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  7182] mkdir("./file0", 0777)      = 0
[pid  7179] <... openat resumed>)       = 3
[pid  7179] chdir("./file0" <unfinished ...>
[pid  7182] mount("/dev/loop2", "./file0", "xfs", MS_SUBMOUNT, "filestreams,usrquota,noalign,pquota,dax,dax,prjquota,usrquota,gquota,,nouuid" <unfinished ...>
[pid  7179] <... chdir resumed>)        = 0
[pid  7179] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  7183] <... mount resumed>)        = 0
[pid  7183] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  7179] <... ioctl resumed>)        = 0
[pid  7179] close(4)                    = 0
[pid  7183] <... openat resumed>)       = 3
[pid  7179] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  7183] chdir("./file0")            = 0
[pid  7183] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  7179] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7183] <... ioctl resumed>)        = 0
[  158.624171][ T7179] XFS (loop3): Quotacheck needed: Please wait.
[  158.634855][ T7182] loop2: detected capacity change from 0 to 32768
[  158.656854][ T7179] XFS (loop3): Quotacheck: Done.
[  158.657283][ T7183] XFS (loop4): Quotacheck: Done.
[pid  7183] close(4)                    = 0
[pid  7183] sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor)
[pid  7183] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  7183] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  7179] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  7183] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7179] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7183] ftruncate(-1, 33587195 <unfinished ...>
[pid  7179] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000 <unfinished ...>
[pid  7183] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7183] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7183] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  7183] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  7183] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION, 0) = -1 EBADF (Bad file descriptor)
[pid  7179] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7183] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  7179] ftruncate(-1, 33587195 <unfinished ...>
[pid  7183] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7183] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  7183] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7183] write(-1, NULL, 0)          = -1 EBADF (Bad file descriptor)
[pid  7183] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR) = -1 ENOENT (No such file or directory)
[pid  7179] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7183] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid  7183] openat(AT_FDCWD, NULL, O_WRONLY) = -1 EFAULT (Bad address)
[pid  7183] sendfile(-1, -1, NULL, 131643) = -1 EBADF (Bad file descriptor)
[pid  7183] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  7179] read(-1,  <unfinished ...>
[pid  7183] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC) = -1 EBADF (Bad file descriptor)
[pid  7179] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7183] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  7179] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7181] <... sendfile resumed> => [671], 571) = 571
[pid  7179] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7179] sendfile(-1, -1, NULL, 571 <unfinished ...>
[pid  7183] <... openat resumed>)       = 4
[pid  7181] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  7179] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7181] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  7179] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  7181] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  7179] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7181] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7179] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  7181] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  7179] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7181] ftruncate(-1, 33587199 <unfinished ...>
[pid  7179] read(-1,  <unfinished ...>
[pid  7181] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7179] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7181] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7179] write(-1, NULL, 0 <unfinished ...>
[pid  7181] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7179] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7181] open(NULL, O_RDONLY <unfinished ...>
[pid  7179] write(-1, NULL, 0 <unfinished ...>
[pid  7183] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  7181] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7179] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7179] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[  158.716896][ T7180] XFS (loop5): Ending clean mount
[  158.725337][ T7180] XFS (loop5): Quotacheck needed: Please wait.
[  158.733613][ T7181] syz-executor246 (7181): drop_caches: 2
[  158.742785][ T7181] syz-executor246 (7181): drop_caches: 2
[  158.752032][ T7182] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[pid  7181] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7183] <... openat resumed>)       = 5
[pid  7181] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7179] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5062] <... umount2 resumed>)      = 0
[pid  7183] sendfile(5, 4, [100] <unfinished ...>
[pid  7181] read(-1,  <unfinished ...>
[pid  7180] <... mount resumed>)        = 0
[pid  7179] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  5062] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7181] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7181] exit_group(0)               = ?
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7181] +++ exited with 0 +++
[pid  5062] newfstatat(AT_FDCWD, "./39/file0",  <unfinished ...>
[pid  7179] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7181, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=28 /* 0.28 s */} ---
[pid  5063] umount2("./39", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  7179] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7179] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5063] openat(AT_FDCWD, "./39", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  7180] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  7179] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  5063] <... openat resumed>)       = 3
[pid  5062] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7180] <... openat resumed>)       = 3
[pid  5063] newfstatat(3, "",  <unfinished ...>
[pid  5062] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5063] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5062] openat(AT_FDCWD, "./39/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  7180] chdir("./file0" <unfinished ...>
[pid  7179] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5063] getdents64(3,  <unfinished ...>
[pid  7179] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  5062] <... openat resumed>)       = 4
[pid  7180] <... chdir resumed>)        = 0
[pid  7179] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5063] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5062] newfstatat(4, "",  <unfinished ...>
[pid  7180] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid  7179] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  5063] umount2("./39/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  7180] <... ioctl resumed>)        = 0
[pid  7179] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5063] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5062] getdents64(4,  <unfinished ...>
[pid  7179] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  5063] newfstatat(AT_FDCWD, "./39/binderfs",  <unfinished ...>
[pid  7180] close(4 <unfinished ...>
[pid  5062] <... getdents64 resumed>0x555556985830 /* 2 entries */, 32768) = 48
[pid  7180] <... close resumed>)        = 0
[pid  7179] <... openat resumed>)       = 4
[pid  5063] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5062] getdents64(4, 0x555556985830 /* 0 entries */, 32768) = 0
[pid  5063] unlink("./39/binderfs" <unfinished ...>
[pid  7180] sendfile(-1, -1, NULL, 281474978811909 <unfinished ...>
[pid  5062] close(4 <unfinished ...>
[pid  5063] <... unlink resumed>)       = 0
[pid  7180] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  5063] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5062] <... close resumed>)        = 0
[pid  7180] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000 <unfinished ...>
[pid  7179] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  7180] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7179] <... openat resumed>)       = 5
[pid  5062] rmdir("./39/file0" <unfinished ...>
[  158.785164][ T7182] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  158.794176][ T7180] XFS (loop5): Quotacheck: Done.
[  158.807393][ T7183] syz-executor246 (7183): drop_caches: 2
[pid  7180] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address)
[pid  7179] sendfile(5, 4, [100] <unfinished ...>
[pid  5062] <... rmdir resumed>)        = 0
[pid  7183] <... sendfile resumed> => [671], 571) = 571
[pid  7180] ftruncate(-1, 33587195 <unfinished ...>
[pid  5062] getdents64(3,  <unfinished ...>
[pid  7180] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  5062] <... getdents64 resumed>0x55555697d7f0 /* 0 entries */, 32768) = 0
[pid  5062] close(3 <unfinished ...>
[pid  7180] read(-1, NULL, 0)           = -1 EBADF (Bad file descriptor)
[pid  5062] <... close resumed>)        = 0
[pid  7183] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE) = -1 EFAULT (Bad address)
[pid  7183] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address)
[pid  7183] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  5062] rmdir("./39" <unfinished ...>
[pid  7180] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7183] ftruncate(-1, 33587199 <unfinished ...>
[pid  7180] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  5062] <... rmdir resumed>)        = 0
[pid  7180] sendfile(-1, -1, NULL, 571) = -1 EBADF (Bad file descriptor)
[pid  5062] mkdir("./40", 0777 <unfinished ...>
[pid  7183] <... ftruncate resumed>)    = -1 EBADF (Bad file descriptor)
[pid  7180] ioctl(-1, AUTOFS_DEV_IOCTL_VERSION <unfinished ...>
[pid  5062] <... mkdir resumed>)        = 0
[pid  7183] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7180] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7183] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7180] ioctl(-1, AUTOFS_DEV_IOCTL_ISMOUNTPOINT <unfinished ...>
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  7183] open(NULL, O_RDONLY <unfinished ...>
[pid  7180] <... ioctl resumed>, 0)     = -1 EBADF (Bad file descriptor)
[pid  7183] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7180] read(-1,  <unfinished ...>
[pid  5062] <... openat resumed>)       = 3
[pid  7183] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7180] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  5062] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  7183] <... openat resumed>)       = -1 EFAULT (Bad address)
[  158.840282][ T7183] syz-executor246 (7183): drop_caches: 2
[  158.843299][ T5063] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  158.863136][ T7179] syz-executor246 (7179): drop_caches: 2
[pid  7180] write(-1, NULL, 0 <unfinished ...>
[pid  5062] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  7183] read(-1,  <unfinished ...>
[pid  7180] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  7180] write(-1, NULL, 0 <unfinished ...>
[pid  5062] close(3 <unfinished ...>
[pid  7180] <... write resumed>)        = -1 EBADF (Bad file descriptor)
[pid  5062] <... close resumed>)        = 0
[pid  7183] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7180] openat(AT_FDCWD, "/proc/self/(null)", O_RDWR <unfinished ...>
[pid  7179] <... sendfile resumed> => [671], 571) = 571
[pid  5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  7183] exit_group(0 <unfinished ...>
[pid  7180] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7183] <... exit_group resumed>)   = ?
[pid  7180] openat(AT_FDCWD, "/proc/self/(null)", O_RDONLY <unfinished ...>
[pid  7179] open_by_handle_at(-1, NULL, O_WRONLY|O_CLOEXEC|O_TMPFILE <unfinished ...>
[pid  7180] <... openat resumed>)       = -1 ENOENT (No such file or directory)
[pid  7183] +++ exited with 0 +++
[pid  7180] openat(AT_FDCWD, NULL, O_WRONLY <unfinished ...>
[pid  7179] <... open_by_handle_at resumed>) = -1 EFAULT (Bad address)
[pid  7180] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7179] open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000 <unfinished ...>
[pid  5066] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7183, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=39 /* 0.39 s */} ---
[pid  5062] <... clone resumed>, child_tidptr=0x55555697c750) = 7232
./strace-static-x86_64: Process 7232 attached
[pid  7180] sendfile(-1, -1, NULL, 131643 <unfinished ...>
[pid  7179] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  7179] open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address)
[pid  7179] ftruncate(-1, 33587199)     = -1 EBADF (Bad file descriptor)
[pid  7179] openat(-1, NULL, O_RDONLY)  = -1 EFAULT (Bad address)
[pid  7179] open(NULL, O_RDONLY)        = -1 EFAULT (Bad address)
[pid  7232] set_robust_list(0x55555697c760, 24 <unfinished ...>
[pid  7179] openat(-1, NULL, O_RDONLY <unfinished ...>
[pid  7232] <... set_robust_list resumed>) = 0
[pid  7179] <... openat resumed>)       = -1 EFAULT (Bad address)
[pid  7232] chdir("./40" <unfinished ...>
[pid  7179] read(-1,  <unfinished ...>
[pid  7232] <... chdir resumed>)        = 0
[pid  7179] <... read resumed>NULL, 0)  = -1 EBADF (Bad file descriptor)
[pid  7232] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  7180] <... sendfile resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7179] exit_group(0 <unfinished ...>
[pid  5066] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid  7180] open(NULL, O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000 <unfinished ...>
[pid  7232] <... prctl resumed>)        = 0
[pid  7179] <... exit_group resumed>)   = ?
[pid  7180] <... open resumed>)         = -1 EFAULT (Bad address)
[pid  5066] <... restart_syscall resumed>) = 0
[pid  5066] umount2("./38", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  7180] pwritev2(-1, NULL, 0, 163840, RWF_HIPRI|RWF_DSYNC <unfinished ...>
[pid  7232] setpgid(0, 0)               = 0
[pid  7180] <... pwritev2 resumed>)     = -1 EBADF (Bad file descriptor)
[pid  7179] +++ exited with 0 +++
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7180] openat(AT_FDCWD, "/proc/partitions", O_RDONLY <unfinished ...>
[pid  7232] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  7180] <... openat resumed>)       = 4
[pid  5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7179, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=30 /* 0.30 s */} ---
[pid  7180] openat(AT_FDCWD, "/proc/sys/vm/drop_caches", O_WRONLY <unfinished ...>
[pid  7232] <... openat resumed>)       = 3
[pid  7180] <... openat resumed>)       = 5
[pid  5066] openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5065] umount2("./39", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... openat resumed>)       = 3
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  7180] sendfile(5, 4, [100] <unfinished ...>
[pid  5065] openat(AT_FDCWD, "./39", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  7232] write(3, "1000", 4 <unfinished ...>
[pid  5066] newfstatat(3, "",  <unfinished ...>
[pid  5065] <... openat resumed>)       = 3
[pid  5065] newfstatat(3, "",  <unfinished ...>
[pid  7232] <... write resumed>)        = 4
[pid  5066] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5065] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  7232] close(3)                    = 0
[pid  7232] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5065] getdents64(3,  <unfinished ...>
[pid  5066] getdents64(3,  <unfinished ...>
[pid  7232] <... symlink resumed>)      = 0
[pid  5065] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[  158.890457][ T7179] syz-executor246 (7179): drop_caches: 2
[  158.923652][ T7182] XFS (loop2): Ending clean mount
[pid  7232] memfd_create("syzkaller", 0) = 3
[pid  5066] <... getdents64 resumed>0x55555697d7f0 /* 4 entries */, 32768) = 112
[pid  5065] umount2("./39/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] umount2("./38/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5065] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5066] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid  5065] newfstatat(AT_FDCWD, "./39/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  7232] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6d986f1000
[pid  5065] unlink("./39/binderfs" <unfinished ...>
[pid  5066] newfstatat(AT_FDCWD, "./38/binderfs",  <unfinished ...>
[pid  5065] <... unlink resumed>)       = 0
[pid  5065] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[pid  5066] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5066] unlink("./38/binderfs")     = 0
[  158.948361][ T7182] XFS (loop2): Quotacheck needed: Please wait.
[  158.968904][ T7180] syz-executor246 (7180): drop_caches: 2
[  159.014636][ T5065] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  159.033783][ T7180] ==================================================================
[  159.041878][ T7180] BUG: KASAN: stack-out-of-bounds in __lock_acquire+0x11c/0x7f70
[  159.049627][ T7180] Read of size 8 at addr ffffc9000f757898 by task syz-executor246/7180
[  159.057865][ T7180] 
[  159.060186][ T7180] CPU: 1 PID: 7180 Comm: syz-executor246 Not tainted 6.6.0-syzkaller-16201-gb57b17e88bf5 #0
[  159.070247][ T7180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023
[  159.080305][ T7180] Call Trace:
[  159.083583][ T7180]  <TASK>
[  159.086507][ T7180]  dump_stack_lvl+0x1e7/0x2d0
[  159.091200][ T7180]  ? nf_tcp_handle_invalid+0x650/0x650
[  159.096672][ T7180]  ? panic+0x850/0x850
[  159.100756][ T7180]  ? _printk+0xd5/0x120
[  159.104926][ T7180]  print_report+0x163/0x540
[  159.109435][ T7180]  ? __virt_addr_valid+0xbd/0x2e0
[pid  5066] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW <unfinished ...>
[  159.114469][ T7180]  ? __lock_acquire+0x11c/0x7f70
[  159.119422][ T7180]  kasan_report+0x142/0x170
[  159.123944][ T7180]  ? __lock_acquire+0x11c/0x7f70
[  159.128903][ T7180]  __lock_acquire+0x11c/0x7f70
[  159.133761][ T7180]  ? ktime_get+0x83/0x270
[  159.138089][ T7180]  ? verify_lock_unused+0x140/0x140
[  159.143279][ T7180]  ? __submit_bio+0x239/0x2e0
[  159.147952][ T7180]  ? blk_free_queue_rcu+0x40/0x40
[  159.152973][ T7180]  ? verify_lock_unused+0x140/0x140
[  159.158161][ T7180]  ? submit_bio_noacct_nocheck+0xa2f/0xc60
[  159.163958][ T7180]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  159.169668][ T7180]  ? should_fail_request+0x80/0x80
[  159.174771][ T7180]  lock_acquire+0x1e3/0x520
[  159.179259][ T7180]  ? down+0x39/0xc0
[  159.183058][ T7180]  ? __lock_acquire+0x7f70/0x7f70
[  159.188072][ T7180]  ? read_lock_is_recursive+0x20/0x20
[  159.193436][ T7180]  _raw_spin_lock_irqsave+0xd5/0x120
[  159.198707][ T7180]  ? down+0x39/0xc0
[  159.202501][ T7180]  ? _raw_spin_lock+0x40/0x40
[  159.207161][ T7180]  ? xfs_buf_hold+0x210/0x210
[  159.211822][ T7180]  ? __xfs_buf_submit+0x155/0x7c0
[  159.216831][ T7180]  ? __xfs_buf_submit+0x155/0x7c0
[  159.221839][ T7180]  ? xfs_buf_delwri_submit_buffers+0x14d/0x8e0
[  159.227982][ T7180]  down+0x39/0xc0
[  159.231609][ T7180]  ? xfs_buf_delwri_submit_buffers+0x14d/0x8e0
[  159.237761][ T7180]  xfs_buf_lock+0x154/0x4b0
[  159.242254][ T7180]  xfs_buf_delwri_submit_buffers+0x14d/0x8e0
[  159.248221][ T7180]  ? xfs_buf_delwri_submit_nowait+0x20/0x20
[  159.254104][ T7180]  ? list_lru_walk_one+0xb1/0xe0
[  159.259028][ T7180]  ? __lock_acquire+0x7f70/0x7f70
[  159.264041][ T7180]  xfs_buf_delwri_submit+0xba/0x260
[  159.269222][ T7180]  ? do_raw_spin_unlock+0x13b/0x8b0
[  159.274411][ T7180]  ? xfs_buf_delwri_submit_buffers+0x8e0/0x8e0
[  159.280547][ T7180]  ? _raw_spin_unlock+0x28/0x40
[  159.285382][ T7180]  ? list_lru_walk_one+0xb1/0xe0
[  159.290305][ T7180]  xfs_qm_shrink_scan+0x1ee/0x400
[  159.295315][ T7180]  ? xfs_qm_shrink_count+0xa0/0xa0
[  159.300411][ T7180]  do_shrink_slab+0x6ed/0x1120
[  159.305171][ T7180]  ? shrink_slab+0x12b/0x14c0
[  159.309833][ T7180]  shrink_slab+0x1092/0x14c0
[  159.314411][ T7180]  ? shrink_slab+0x12b/0x14c0
[  159.319077][ T7180]  ? mem_cgroup_iter+0x3a/0x550
[  159.323918][ T7180]  ? reparent_shrinker_deferred+0x4f0/0x4f0
[  159.329801][ T7180]  ? mem_cgroup_iter+0x3e9/0x550
[  159.334724][ T7180]  ? mem_cgroup_iter+0x3a/0x550
[  159.339563][ T7180]  drop_slab+0x148/0x280
[  159.343791][ T7180]  drop_caches_sysctl_handler+0xbc/0x160
[  159.349408][ T7180]  ? proc_dostring_coredump+0x100/0x100
[  159.354937][ T7180]  proc_sys_call_handler+0x546/0x8a0
[  159.360211][ T7180]  ? proc_sys_open+0x270/0x270
[  159.364969][ T7180]  do_iter_write+0x7ac/0xcb0
[  159.369551][ T7180]  ? vfs_iter_write+0xa0/0xa0
[  159.374217][ T7180]  ? vfs_iter_write+0x70/0xa0
[  159.378896][ T7180]  iter_file_splice_write+0x86d/0x1010
[  159.384356][ T7180]  ? splice_from_pipe+0x240/0x240
[  159.389369][ T7180]  ? splice_shrink_spd+0xb0/0xb0
[  159.394296][ T7180]  ? splice_from_pipe+0x240/0x240
[  159.399309][ T7180]  direct_splice_actor+0xea/0x1c0
[  159.404323][ T7180]  splice_direct_to_actor+0x376/0x9e0
[  159.409687][ T7180]  ? finish_task_switch+0x1e5/0x840
[  159.414875][ T7180]  ? direct_file_splice_eof+0xb0/0xb0
[  159.420235][ T7180]  ? warn_unsupported+0xc0/0xc0
[  159.425074][ T7180]  ? fsnotify_perm+0x67/0x5a0
[  159.429740][ T7180]  ? bpf_lsm_file_permission+0x9/0x10
[  159.435186][ T7180]  do_splice_direct+0x2ac/0x3f0
[  159.440029][ T7180]  ? splice_direct_to_actor+0x9e0/0x9e0
[  159.445564][ T7180]  ? rcu_read_lock_any_held+0xb7/0x160
[  159.451008][ T7180]  ? do_splice_direct+0x3f0/0x3f0
[  159.456022][ T7180]  do_sendfile+0x62c/0x1000
[  159.460518][ T7180]  ? do_pwritev+0x360/0x360
[  159.465009][ T7180]  ? __might_fault+0xc1/0x120
[  159.469668][ T7180]  __se_sys_sendfile64+0x100/0x1e0
[  159.474770][ T7180]  ? __x64_sys_sendfile64+0xb0/0xb0
[  159.479955][ T7180]  ? syscall_enter_from_user_mode+0x32/0x230
[  159.485930][ T7180]  ? syscall_enter_from_user_mode+0x8c/0x230
[  159.491896][ T7180]  do_syscall_64+0x44/0x110
[  159.496475][ T7180]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  159.502361][ T7180] RIP: 0033:0x7f6da0b30f59
[  159.506767][ T7180] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  159.526532][ T7180] RSP: 002b:00007ffdca46db28 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  159.535052][ T7180] RAX: ffffffffffffffda RBX: 00007ffdca46db30 RCX: 00007f6da0b30f59
[  159.543018][ T7180] RDX: 0000000020002080 RSI: 0000000000000004 RDI: 0000000000000005
[  159.550974][ T7180] RBP: 0000000000000000 R08: 65732f636f72702f R09: 65732f636f72702f
[  159.558930][ T7180] R10: 000000000000023b R11: 0000000000000246 R12: 00007ffdca46dbdc
[  159.566888][ T7180] R13: 0000000000000027 R14: 431bde82d7b634db R15: 00007ffdca46dc10
[  159.574860][ T7180]  </TASK>
[  159.577871][ T7180] 
[  159.580270][ T7180] The buggy address belongs to the virtual mapping at
[  159.580270][ T7180]  [ffffc9000f750000, ffffc9000f759000) created by:
[  159.580270][ T7180]  copy_process+0x5d1/0x3fb0
[  159.597877][ T7180] 
[  159.600187][ T7180] The buggy address belongs to the physical page:
[  159.606584][ T7180] page:ffffea00005cdd80 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x17376
[  159.616729][ T7180] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  159.623940][ T7180] page_type: 0xffffffff()
[  159.628258][ T7180] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000
[  159.637013][ T7180] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  159.645707][ T7180] page dumped because: kasan: bad access detected
[  159.652195][ T7180] page_owner tracks the page as allocated
[  159.657896][ T7180] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), pid 2, tgid 2 (kthreadd), ts 155944385071, free_ts 154428140707
[  159.676382][ T7180]  post_alloc_hook+0x1e6/0x210
[  159.681141][ T7180]  get_page_from_freelist+0x339a/0x3530
[  159.686672][ T7180]  __alloc_pages+0x255/0x670
[  159.691247][ T7180]  alloc_pages_mpol+0x3de/0x640
[  159.696263][ T7180]  __vmalloc_node_range+0x9a3/0x1490
[  159.701537][ T7180]  dup_task_struct+0x3e5/0x7d0
[  159.706284][ T7180]  copy_process+0x5d1/0x3fb0
[  159.710950][ T7180]  kernel_clone+0x222/0x840
[  159.715434][ T7180]  kernel_thread+0x1bc/0x230
[  159.720107][ T7180]  kthreadd+0x60c/0x810
[  159.724247][ T7180]  ret_from_fork+0x48/0x80
[  159.728648][ T7180]  ret_from_fork_asm+0x11/0x20
[  159.733399][ T7180] page last free stack trace:
[  159.738056][ T7180]  free_unref_page_prepare+0x92a/0xa50
[  159.743500][ T7180]  free_unref_page+0x37/0x3f0
[  159.748167][ T7180]  __mmdrop+0xb8/0x3d0
[  159.752228][ T7180]  exit_mm+0x21f/0x300
[  159.756369][ T7180]  do_exit+0x9b7/0x2750
[  159.760610][ T7180]  do_group_exit+0x206/0x2c0
[  159.765189][ T7180]  __x64_sys_exit_group+0x3f/0x40
[  159.770206][ T7180]  do_syscall_64+0x44/0x110
[  159.774696][ T7180]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  159.780579][ T7180] 
[  159.782893][ T7180] Memory state around the buggy address:
[  159.788507][ T7180]  ffffc9000f757780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  159.796727][ T7180]  ffffc9000f757800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  159.804946][ T7180] >ffffc9000f757880: f3 f3 f3 f3 f3 f3 f3 f3 00 00 00 00 00 00 00 00
[  159.813170][ T7180]                             ^
[  159.818029][ T7180]  ffffc9000f757900: 00 00 00 00 00 00 00 00 00 00 00 00 f1 f1 f1 f1
[  159.826084][ T7180]  ffffc9000f757980: 00 00 f3 f3 00 00 00 00 00 00 00 00 00 00 00 00
[  159.834125][ T7180] ==================================================================
[  159.842167][ T7180] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  159.849344][ T7180] CPU: 1 PID: 7180 Comm: syz-executor246 Not tainted 6.6.0-syzkaller-16201-gb57b17e88bf5 #0
[  159.859482][ T7180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023
[  159.869611][ T7180] Call Trace:
[  159.872885][ T7180]  <TASK>
[  159.875803][ T7180]  dump_stack_lvl+0x1e7/0x2d0
[  159.880477][ T7180]  ? nf_tcp_handle_invalid+0x650/0x650
[  159.886097][ T7180]  ? panic+0x850/0x850
[  159.890158][ T7180]  ? rcu_is_watching+0x15/0xb0
[  159.895001][ T7180]  ? lock_release+0xbf/0x9d0
[  159.899671][ T7180]  ? vscnprintf+0x5d/0x80
[  159.904075][ T7180]  panic+0x349/0x850
[  159.907981][ T7180]  ? check_panic_on_warn+0x21/0xa0
[  159.913080][ T7180]  ? __memcpy_flushcache+0x2b0/0x2b0
[  159.918440][ T7180]  ? do_raw_spin_unlock+0x13b/0x8b0
[  159.923626][ T7180]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  159.929501][ T7180]  ? _raw_spin_unlock+0x40/0x40
[  159.934334][ T7180]  ? print_report+0x4fb/0x540
[  159.939001][ T7180]  check_panic_on_warn+0x82/0xa0
[  159.943924][ T7180]  ? __lock_acquire+0x11c/0x7f70
[  159.948846][ T7180]  end_report+0x6e/0x130
[  159.953093][ T7180]  kasan_report+0x153/0x170
[  159.957593][ T7180]  ? __lock_acquire+0x11c/0x7f70
[  159.962521][ T7180]  __lock_acquire+0x11c/0x7f70
[  159.967286][ T7180]  ? ktime_get+0x83/0x270
[  159.971612][ T7180]  ? verify_lock_unused+0x140/0x140
[  159.976802][ T7180]  ? __submit_bio+0x239/0x2e0
[  159.981473][ T7180]  ? blk_free_queue_rcu+0x40/0x40
[  159.986486][ T7180]  ? verify_lock_unused+0x140/0x140
[  159.991679][ T7180]  ? submit_bio_noacct_nocheck+0xa2f/0xc60
[  159.997472][ T7180]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  160.003098][ T7180]  ? should_fail_request+0x80/0x80
[  160.008198][ T7180]  lock_acquire+0x1e3/0x520
[  160.012704][ T7180]  ? down+0x39/0xc0
[  160.016521][ T7180]  ? __lock_acquire+0x7f70/0x7f70
[  160.021542][ T7180]  ? read_lock_is_recursive+0x20/0x20
[  160.026913][ T7180]  _raw_spin_lock_irqsave+0xd5/0x120
[  160.032195][ T7180]  ? down+0x39/0xc0
[  160.035994][ T7180]  ? _raw_spin_lock+0x40/0x40
[  160.040660][ T7180]  ? xfs_buf_hold+0x210/0x210
[  160.045329][ T7180]  ? __xfs_buf_submit+0x155/0x7c0
[  160.050344][ T7180]  ? __xfs_buf_submit+0x155/0x7c0
[  160.055357][ T7180]  ? xfs_buf_delwri_submit_buffers+0x14d/0x8e0
[  160.061495][ T7180]  down+0x39/0xc0
[  160.065124][ T7180]  ? xfs_buf_delwri_submit_buffers+0x14d/0x8e0
[  160.071262][ T7180]  xfs_buf_lock+0x154/0x4b0
[  160.075751][ T7180]  xfs_buf_delwri_submit_buffers+0x14d/0x8e0
[  160.081738][ T7180]  ? xfs_buf_delwri_submit_nowait+0x20/0x20
[  160.087632][ T7180]  ? list_lru_walk_one+0xb1/0xe0
[  160.092569][ T7180]  ? __lock_acquire+0x7f70/0x7f70
[  160.097590][ T7180]  xfs_buf_delwri_submit+0xba/0x260
[  160.102799][ T7180]  ? do_raw_spin_unlock+0x13b/0x8b0
[  160.107992][ T7180]  ? xfs_buf_delwri_submit_buffers+0x8e0/0x8e0
[  160.114133][ T7180]  ? _raw_spin_unlock+0x28/0x40
[  160.118970][ T7180]  ? list_lru_walk_one+0xb1/0xe0
[  160.123898][ T7180]  xfs_qm_shrink_scan+0x1ee/0x400
[  160.128910][ T7180]  ? xfs_qm_shrink_count+0xa0/0xa0
[  160.134024][ T7180]  do_shrink_slab+0x6ed/0x1120
[  160.138991][ T7180]  ? shrink_slab+0x12b/0x14c0
[  160.143769][ T7180]  shrink_slab+0x1092/0x14c0
[  160.148361][ T7180]  ? shrink_slab+0x12b/0x14c0
[  160.153030][ T7180]  ? mem_cgroup_iter+0x3a/0x550
[  160.157887][ T7180]  ? reparent_shrinker_deferred+0x4f0/0x4f0
[  160.163775][ T7180]  ? mem_cgroup_iter+0x3e9/0x550
[  160.168705][ T7180]  ? mem_cgroup_iter+0x3a/0x550
[  160.173547][ T7180]  drop_slab+0x148/0x280
[  160.177783][ T7180]  drop_caches_sysctl_handler+0xbc/0x160
[  160.183403][ T7180]  ? proc_dostring_coredump+0x100/0x100
[  160.188935][ T7180]  proc_sys_call_handler+0x546/0x8a0
[  160.194243][ T7180]  ? proc_sys_open+0x270/0x270
[  160.199013][ T7180]  do_iter_write+0x7ac/0xcb0
[  160.203621][ T7180]  ? vfs_iter_write+0xa0/0xa0
[  160.208315][ T7180]  ? vfs_iter_write+0x70/0xa0
[  160.212999][ T7180]  iter_file_splice_write+0x86d/0x1010
[  160.218592][ T7180]  ? splice_from_pipe+0x240/0x240
[  160.223791][ T7180]  ? splice_shrink_spd+0xb0/0xb0
[  160.228756][ T7180]  ? splice_from_pipe+0x240/0x240
[  160.233789][ T7180]  direct_splice_actor+0xea/0x1c0
[  160.238819][ T7180]  splice_direct_to_actor+0x376/0x9e0
[  160.244205][ T7180]  ? finish_task_switch+0x1e5/0x840
[  160.249407][ T7180]  ? direct_file_splice_eof+0xb0/0xb0
[  160.254773][ T7180]  ? warn_unsupported+0xc0/0xc0
[  160.259618][ T7180]  ? fsnotify_perm+0x67/0x5a0
[  160.264319][ T7180]  ? bpf_lsm_file_permission+0x9/0x10
[  160.269683][ T7180]  do_splice_direct+0x2ac/0x3f0
[  160.274529][ T7180]  ? splice_direct_to_actor+0x9e0/0x9e0
[  160.280065][ T7180]  ? rcu_read_lock_any_held+0xb7/0x160
[  160.285525][ T7180]  ? do_splice_direct+0x3f0/0x3f0
[  160.290541][ T7180]  do_sendfile+0x62c/0x1000
[  160.295042][ T7180]  ? do_pwritev+0x360/0x360
[  160.299557][ T7180]  ? __might_fault+0xc1/0x120
[  160.304223][ T7180]  __se_sys_sendfile64+0x100/0x1e0
[  160.309327][ T7180]  ? __x64_sys_sendfile64+0xb0/0xb0
[  160.314526][ T7180]  ? syscall_enter_from_user_mode+0x32/0x230
[  160.320505][ T7180]  ? syscall_enter_from_user_mode+0x8c/0x230
[  160.326477][ T7180]  do_syscall_64+0x44/0x110
[  160.330968][ T7180]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  160.336854][ T7180] RIP: 0033:0x7f6da0b30f59
[  160.341279][ T7180] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  160.360875][ T7180] RSP: 002b:00007ffdca46db28 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  160.369277][ T7180] RAX: ffffffffffffffda RBX: 00007ffdca46db30 RCX: 00007f6da0b30f59
[  160.377624][ T7180] RDX: 0000000020002080 RSI: 0000000000000004 RDI: 0000000000000005
[  160.386029][ T7180] RBP: 0000000000000000 R08: 65732f636f72702f R09: 65732f636f72702f
[  160.394162][ T7180] R10: 000000000000023b R11: 0000000000000246 R12: 00007ffdca46dbdc
[  160.402168][ T7180] R13: 0000000000000027 R14: 431bde82d7b634db R15: 00007ffdca46dc10
[  160.410137][ T7180]  </TASK>
[  160.413407][ T7180] Kernel Offset: disabled
[  160.417715][ T7180] Rebooting in 86400 seconds..