./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3413632702
<...>
Warning: Permanently added '10.128.0.13' (ED25519) to the list of known hosts.
execve("./syz-executor3413632702", ["./syz-executor3413632702"], 0x7fff7cfc0020 /* 10 vars */) = 0
brk(NULL) = 0x555591313000
brk(0x555591313d00) = 0x555591313d00
arch_prctl(ARCH_SET_FS, 0x555591313380) = 0
set_tid_address(0x555591313650) = 5240
set_robust_list(0x555591313660, 24) = 0
rseq(0x555591313ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor3413632702", 4096) = 28
getrandom("\x8e\x86\x69\x43\xfe\x1d\xa6\x8d", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x555591313d00
brk(0x555591334d00) = 0x555591334d00
brk(0x555591335000) = 0x555591335000
mprotect(0x7ff0e2c89000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555591313650) = 5241
./strace-static-x86_64: Process 5241 attached
[pid 5241] set_robust_list(0x555591313660, 24) = 0
[pid 5241] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5241] setpgid(0, 0) = 0
[pid 5241] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5241] write(3, "1000", 4) = 4
[pid 5241] close(3) = 0
[pid 5241] write(1, "executing program\n", 18executing program
) = 18
[pid 5241] creat("./file0", 000) = 3
[pid 5241] pipe2([4, 5], 0) = 0
[pid 5241] write(5, "\x15\x00\x00\x00\x65\xff\xff\x04\x80\x00\x00\x08\x00\x39\x50\x32\x30\x30\x30\x00\x00", 21) = 21
[pid 5241] dup(5) = 6
[pid 5241] write(6, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
[pid 5241] write(6, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
[pid 5241] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000004,wfdno=0x0000000000000006,cache=mmap,k") = 0
[pid 5241] chmod("./file0", 000) = 0
[pid 5241] open("./file0", O_WRONLY) = 7
[pid 5241] openat(AT_FDCWD, "blkio.bfq.io_wait_time", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 8
[pid 5241] ftruncate(8, 33554441) = 0
[pid 5241] sendfile(7, 8, NULL, 2147479552) = 33554441
[pid 5241] exit_group(0) = ?
[pid 5241] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5241, si_uid=0, si_status=0, si_utime=0, si_stime=111 /* 1.11 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555591313650) = 5242
./strace-static-x86_64: Process 5242 attached
[pid 5242] set_robust_list(0x555591313660, 24) = 0
[pid 5242] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5242] setpgid(0, 0) = 0
[pid 5242] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5242] write(3, "1000", 4) = 4
[pid 5242] close(3) = 0
[pid 5242] write(1, "executing program\n", 18executing program
) = 18
[pid 5242] creat("./file0", 000) = -1 EIO (Input/output error)
[pid 5242] pipe2([3, 4], 0) = 0
[pid 5242] write(4, "\x15\x00\x00\x00\x65\xff\xff\x04\x80\x00\x00\x08\x00\x39\x50\x32\x30\x30\x30\x00\x00", 21) = 21
[pid 5242] dup(4) = 5
[pid 5242] write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
[pid 5242] write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
[pid 5242] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000005,cache=mmap,k") = 0
[pid 5242] chmod("./file0", 000) = 0
[pid 5242] open("./file0", O_WRONLY) = 6
[pid 5242] openat(AT_FDCWD, "blkio.bfq.io_wait_time", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 7
[pid 5242] ftruncate(7, 33554441) = 0
[pid 5242] sendfile(6, 7, NULL, 2147479552) = 33554441
[pid 5242] exit_group(0) = ?
[pid 5242] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5242, si_uid=0, si_status=0, si_utime=0, si_stime=141 /* 1.41 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5243 attached
, child_tidptr=0x555591313650) = 5243
[pid 5243] set_robust_list(0x555591313660, 24) = 0
[pid 5243] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5243] setpgid(0, 0) = 0
[pid 5243] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5243] write(3, "1000", 4) = 4
[pid 5243] close(3) = 0
executing program
[pid 5243] write(1, "executing program\n", 18) = 18
[pid 5243] creat("./file0", 000) = -1 EIO (Input/output error)
[pid 5243] pipe2([3, 4], 0) = 0
[pid 5243] write(4, "\x15\x00\x00\x00\x65\xff\xff\x04\x80\x00\x00\x08\x00\x39\x50\x32\x30\x30\x30\x00\x00", 21) = 21
[pid 5243] dup(4) = 5
[pid 5243] write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
[pid 5243] write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
[pid 5243] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000005,cache=mmap,k") = 0
[pid 5243] chmod("./file0", 000) = 0
[pid 5243] open("./file0", O_WRONLY) = 6
[pid 5243] openat(AT_FDCWD, "blkio.bfq.io_wait_time", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 7
[pid 5243] ftruncate(7, 33554441) = 0
[pid 5243] sendfile(6, 7, NULL, 2147479552) = 33554441
[pid 5243] exit_group(0) = ?
[pid 5243] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5243, si_uid=0, si_status=0, si_utime=0, si_stime=143 /* 1.43 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5244 attached
, child_tidptr=0x555591313650) = 5244
[pid 5244] set_robust_list(0x555591313660, 24) = 0
[pid 5244] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5244] setpgid(0, 0) = 0
[pid 5244] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5244] write(3, "1000", 4) = 4
[pid 5244] close(3) = 0
[pid 5244] write(1, "executing program\n", 18executing program
) = 18
[pid 5244] creat("./file0", 000) = -1 EIO (Input/output error)
[pid 5244] pipe2([3, 4], 0) = 0
[pid 5244] write(4, "\x15\x00\x00\x00\x65\xff\xff\x04\x80\x00\x00\x08\x00\x39\x50\x32\x30\x30\x30\x00\x00", 21) = 21
[pid 5244] dup(4) = 5
[pid 5244] write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
[pid 5244] write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
[pid 5244] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000005,cache=mmap,k") = 0
[pid 5244] chmod("./file0", 000) = 0
[pid 5244] open("./file0", O_WRONLY) = -1 EIO (Input/output error)
[pid 5244] openat(AT_FDCWD, "blkio.bfq.io_wait_time", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid 5244] ftruncate(6, 33554441) = 0
[pid 5244] sendfile(-1, 6, NULL, 2147479552) = -1 EBADF (Bad file descriptor)
[pid 5244] exit_group(0) = ?
[pid 5244] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5244, si_uid=0, si_status=0, si_utime=0, si_stime=37 /* 0.37 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5245 attached
, child_tidptr=0x555591313650) = 5245
[pid 5245] set_robust_list(0x555591313660, 24) = 0
[pid 5245] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5245] setpgid(0, 0) = 0
[pid 5245] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5245] write(3, "1000", 4) = 4
[pid 5245] close(3) = 0
executing program
[pid 5245] write(1, "executing program\n", 18) = 18
[pid 5245] creat("./file0", 000) = -1 EIO (Input/output error)
[pid 5245] pipe2([3, 4], 0) = 0
[pid 5245] write(4, "\x15\x00\x00\x00\x65\xff\xff\x04\x80\x00\x00\x08\x00\x39\x50\x32\x30\x30\x30\x00\x00", 21) = 21
[pid 5245] dup(4) = 5
[pid 5245] write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
[pid 5245] write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
[pid 5245] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000005,cache=mmap,k") = 0
[pid 5245] chmod("./file0", 000) = 0
[pid 5245] open("./file0", O_WRONLY) = 6
[pid 5245] openat(AT_FDCWD, "blkio.bfq.io_wait_time", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 7
[pid 5245] ftruncate(7, 33554441) = 0
[pid 5245] sendfile(6, 7, NULL, 2147479552) = 33554441
[pid 5245] exit_group(0) = ?
[pid 5245] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5245, si_uid=0, si_status=0, si_utime=0, si_stime=178 /* 1.78 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5246 attached
, child_tidptr=0x555591313650) = 5246
[pid 5246] set_robust_list(0x555591313660, 24) = 0
[pid 5246] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5246] setpgid(0, 0) = 0
[pid 5246] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5246] write(3, "1000", 4) = 4
[pid 5246] close(3) = 0
[pid 5246] write(1, "executing program\n", 18executing program
) = 18
[pid 5246] creat("./file0", 000) = -1 EIO (Input/output error)
[pid 5246] pipe2([3, 4], 0) = 0
[pid 5246] write(4, "\x15\x00\x00\x00\x65\xff\xff\x04\x80\x00\x00\x08\x00\x39\x50\x32\x30\x30\x30\x00\x00", 21) = 21
[pid 5246] dup(4) = 5
[pid 5246] write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
[pid 5246] write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
[pid 5246] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000005,cache=mmap,k") = 0
[pid 5246] chmod("./file0", 000) = 0
[pid 5246] open("./file0", O_WRONLY) = 6
[pid 5246] openat(AT_FDCWD, "blkio.bfq.io_wait_time", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 7
[pid 5246] ftruncate(7, 33554441) = 0
[pid 5246] sendfile(6, 7, NULL, 2147479552) = 33554441
[pid 5246] exit_group(0) = ?
[pid 5246] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5246, si_uid=0, si_status=0, si_utime=0, si_stime=141 /* 1.41 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5247 attached
, child_tidptr=0x555591313650) = 5247
[pid 5247] set_robust_list(0x555591313660, 24) = 0
[pid 5247] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5247] setpgid(0, 0) = 0
[pid 5247] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5247] write(3, "1000", 4) = 4
[pid 5247] close(3) = 0
executing program
[pid 5247] write(1, "executing program\n", 18) = 18
[pid 5247] creat("./file0", 000) = -1 EIO (Input/output error)
[pid 5247] pipe2([3, 4], 0) = 0
[pid 5247] write(4, "\x15\x00\x00\x00\x65\xff\xff\x04\x80\x00\x00\x08\x00\x39\x50\x32\x30\x30\x30\x00\x00", 21) = 21
[pid 5247] dup(4) = 5
[pid 5247] write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
[pid 5247] write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
[pid 5247] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000005,cache=mmap,k") = 0
[pid 5247] chmod("./file0", 000) = 0
[pid 5247] open("./file0", O_WRONLY) = 6
[pid 5247] openat(AT_FDCWD, "blkio.bfq.io_wait_time", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 7
[pid 5247] ftruncate(7, 33554441) = 0
[pid 5247] sendfile(6, 7, NULL, 2147479552) = 33554441
[pid 5247] exit_group(0) = ?
[pid 5247] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5247, si_uid=0, si_status=0, si_utime=0, si_stime=143 /* 1.43 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5249 attached
, child_tidptr=0x555591313650) = 5249
[pid 5249] set_robust_list(0x555591313660, 24) = 0
[pid 5249] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5249] setpgid(0, 0) = 0
[pid 5249] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5249] write(3, "1000", 4) = 4
[pid 5249] close(3) = 0
[pid 5249] write(1, "executing program\n", 18executing program
) = 18
[pid 5249] creat("./file0", 000) = -1 EIO (Input/output error)
[pid 5249] pipe2([3, 4], 0) = 0
[pid 5249] write(4, "\x15\x00\x00\x00\x65\xff\xff\x04\x80\x00\x00\x08\x00\x39\x50\x32\x30\x30\x30\x00\x00", 21) = 21
[pid 5249] dup(4) = 5
[pid 5249] write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
[pid 5249] write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
[pid 5249] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000005,cache=mmap,k") = 0
[pid 5249] chmod("./file0", 000) = 0
[pid 5249] open("./file0", O_WRONLY) = 6
[pid 5249] openat(AT_FDCWD, "blkio.bfq.io_wait_time", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 7
[pid 5249] ftruncate(7, 33554441) = 0
[pid 5249] sendfile(6, 7, NULL, 2147479552) = 33554441
[pid 5249] exit_group(0) = ?
[ 139.226570][ T5249] ==================================================================
[ 139.234673][ T5249] BUG: KASAN: slab-use-after-free in iov_iter_advance+0x677/0x6c0
[ 139.242518][ T5249] Read of size 8 at addr ffff88802a63dd20 by task syz-executor341/5249
[ 139.250754][ T5249]
[ 139.253076][ T5249] CPU: 1 UID: 0 PID: 5249 Comm: syz-executor341 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[ 139.263842][ T5249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 139.273897][ T5249] Call Trace:
[ 139.277168][ T5249]
[ 139.280099][ T5249] dump_stack_lvl+0x116/0x1f0
[ 139.284801][ T5249] print_report+0xc3/0x620
[ 139.289238][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 139.294884][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 139.300526][ T5249] ? __phys_addr+0xc6/0x150
[ 139.305051][ T5249] kasan_report+0xd9/0x110
[ 139.309517][ T5249] ? iov_iter_advance+0x677/0x6c0
[ 139.314585][ T5249] ? iov_iter_advance+0x677/0x6c0
[ 139.319654][ T5249] iov_iter_advance+0x677/0x6c0
[ 139.324549][ T5249] netfs_write_folio+0x745/0x18f0
[ 139.329621][ T5249] netfs_writepages+0x2ba/0xb90
[ 139.334518][ T5249] ? __pfx_netfs_writepages+0x10/0x10
[ 139.339921][ T5249] ? do_raw_spin_lock+0x12d/0x2c0
[ 139.344968][ T5249] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 139.350357][ T5249] ? bpf_ksym_find+0x124/0x1c0
[ 139.355143][ T5249] ? __pfx_netfs_writepages+0x10/0x10
[ 139.360551][ T5249] do_writepages+0x1a6/0x7f0
[ 139.365173][ T5249] ? __pfx_do_writepages+0x10/0x10
[ 139.370307][ T5249] ? __pfx_lock_acquire+0x10/0x10
[ 139.375370][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 139.381027][ T5249] ? do_raw_spin_lock+0x12d/0x2c0
[ 139.386071][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 139.391725][ T5249] ? do_raw_spin_unlock+0x172/0x230
[ 139.396943][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 139.402601][ T5249] ? _raw_spin_unlock+0x28/0x50
[ 139.407494][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 139.413149][ T5249] ? wbc_attach_and_unlock_inode+0x597/0x940
[ 139.419160][ T5249] filemap_fdatawrite_wbc+0x148/0x1c0
[ 139.424567][ T5249] __filemap_fdatawrite_range+0xba/0x100
[ 139.430243][ T5249] ? __pfx___filemap_fdatawrite_range+0x10/0x10
[ 139.436524][ T5249] ? lock_acquire+0x1b1/0x560
[ 139.441264][ T5249] ? __pfx_debug_check_no_obj_freed+0x10/0x10
[ 139.447365][ T5249] v9fs_dir_release+0x429/0x590
[ 139.452240][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 139.457896][ T5249] ? __pfx_v9fs_dir_release+0x10/0x10
[ 139.463293][ T5249] ? __pfx___might_resched+0x10/0x10
[ 139.468600][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 139.474258][ T5249] ? __pfx_v9fs_dir_release+0x10/0x10
[ 139.479653][ T5249] __fput+0x3f9/0xb60
[ 139.483669][ T5249] task_work_run+0x151/0x250
[ 139.488300][ T5249] ? __pfx_task_work_run+0x10/0x10
[ 139.493454][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 139.499113][ T5249] ? do_raw_spin_unlock+0x172/0x230
[ 139.504337][ T5249] do_exit+0xaa3/0x2bb0
[ 139.508528][ T5249] ? do_group_exit+0x1c3/0x2a0
[ 139.513325][ T5249] ? __pfx_lock_release+0x10/0x10
[ 139.518386][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 139.524042][ T5249] ? do_raw_spin_lock+0x12d/0x2c0
[ 139.529088][ T5249] ? __pfx_do_exit+0x10/0x10
[ 139.533795][ T5249] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 139.539220][ T5249] do_group_exit+0xd3/0x2a0
[ 139.543866][ T5249] __x64_sys_exit_group+0x3e/0x50
[ 139.548929][ T5249] x64_sys_call+0x14a9/0x16a0
[ 139.553661][ T5249] do_syscall_64+0xcd/0x250
[ 139.558208][ T5249] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 139.564144][ T5249] RIP: 0033:0x7ff0e2c14089
[ 139.568571][ T5249] Code: Unable to access opcode bytes at 0x7ff0e2c1405f.
[ 139.575592][ T5249] RSP: 002b:00007ffe69e64ba8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 139.584028][ T5249] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff0e2c14089
[ 139.592016][ T5249] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 139.600008][ T5249] RBP: 00007ff0e2c8f390 R08: ffffffffffffffb8 R09: 0000000000000006
[ 139.607997][ T5249] R10: 000000007ffff000 R11: 0000000000000246 R12: 00007ff0e2c8f390
[ 139.615984][ T5249] R13: 0000000000000000 R14: 00007ff0e2c8fde0 R15: 00007ff0e2be5070
[ 139.623984][ T5249]
[ 139.627011][ T5249]
[ 139.629331][ T5249] Allocated by task 5249:
[ 139.633664][ T5249] kasan_save_stack+0x33/0x60
[ 139.638463][ T5249] kasan_save_track+0x14/0x30
[ 139.643166][ T5249] __kasan_kmalloc+0xaa/0xb0
[ 139.647780][ T5249] netfs_buffer_append_folio+0x181/0x750
[ 139.653445][ T5249] netfs_write_folio+0x542/0x18f0
[ 139.658501][ T5249] netfs_writepages+0x2ba/0xb90
[ 139.663380][ T5249] do_writepages+0x1a6/0x7f0
[ 139.667996][ T5249] filemap_fdatawrite_wbc+0x148/0x1c0
[ 139.673392][ T5249] __filemap_fdatawrite_range+0xba/0x100
[ 139.679058][ T5249] v9fs_dir_release+0x429/0x590
[ 139.683929][ T5249] __fput+0x3f9/0xb60
[ 139.687932][ T5249] task_work_run+0x151/0x250
[ 139.692561][ T5249] do_exit+0xaa3/0x2bb0
[ 139.696746][ T5249] do_group_exit+0xd3/0x2a0
[ 139.701279][ T5249] __x64_sys_exit_group+0x3e/0x50
[ 139.706332][ T5249] x64_sys_call+0x14a9/0x16a0
[ 139.711054][ T5249] do_syscall_64+0xcd/0x250
[ 139.715578][ T5249] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 139.721513][ T5249]
[ 139.723837][ T5249] Freed by task 12:
[ 139.727653][ T5249] kasan_save_stack+0x33/0x60
[ 139.732420][ T5249] kasan_save_track+0x14/0x30
[ 139.737131][ T5249] kasan_save_free_info+0x3b/0x60
[ 139.742174][ T5249] poison_slab_object+0xf7/0x160
[ 139.747140][ T5249] __kasan_slab_free+0x32/0x50
[ 139.751933][ T5249] kfree+0x12a/0x3b0
[ 139.755883][ T5249] netfs_delete_buffer_head+0xa6/0x100
[ 139.761364][ T5249] netfs_write_collection_worker+0x20f9/0x4f80
[ 139.767551][ T5249] process_one_work+0x9c8/0x1b40
[ 139.772503][ T5249] worker_thread+0x6c8/0xf00
[ 139.777105][ T5249] kthread+0x2c4/0x3a0
[ 139.781198][ T5249] ret_from_fork+0x48/0x80
[ 139.785649][ T5249] ret_from_fork_asm+0x1a/0x30
[ 139.790445][ T5249]
[ 139.792776][ T5249] The buggy address belongs to the object at ffff88802a63dc00
[ 139.792776][ T5249] which belongs to the cache kmalloc-512 of size 512
[ 139.806925][ T5249] The buggy address is located 288 bytes inside of
[ 139.806925][ T5249] freed 512-byte region [ffff88802a63dc00, ffff88802a63de00)
[ 139.820737][ T5249]
[ 139.823061][ T5249] The buggy address belongs to the physical page:
[ 139.829473][ T5249] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2a63c
[ 139.838335][ T5249] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 139.846846][ T5249] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 139.854398][ T5249] page_type: 0xfdffffff(slab)
[ 139.859088][ T5249] raw: 00fff00000000040 ffff88801ac41c80 dead000000000122 0000000000000000
[ 139.867689][ T5249] raw: 0000000000000000 0000000080100010 00000001fdffffff 0000000000000000
[ 139.876288][ T5249] head: 00fff00000000040 ffff88801ac41c80 dead000000000122 0000000000000000
[ 139.884973][ T5249] head: 0000000000000000 0000000080100010 00000001fdffffff 0000000000000000
[ 139.893661][ T5249] head: 00fff00000000002 ffffea0000a98f01 ffffffffffffffff 0000000000000000
[ 139.902347][ T5249] head: 0000000000000004 0000000000000000 00000000ffffffff 0000000000000000
[ 139.911020][ T5249] page dumped because: kasan: bad access detected
[ 139.917434][ T5249] page_owner tracks the page as allocated
[ 139.923154][ T5249] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5249, tgid 5249 (syz-executor341), ts 139218928620, free_ts 130646507944
[ 139.944198][ T5249] post_alloc_hook+0x2d1/0x350
[ 139.949002][ T5249] get_page_from_freelist+0x1351/0x2e50
[ 139.954582][ T5249] __alloc_pages_noprof+0x22b/0x2460
[ 139.959901][ T5249] alloc_slab_page+0x4e/0xf0
[ 139.964511][ T5249] new_slab+0x84/0x260
[ 139.968779][ T5249] ___slab_alloc+0xdac/0x1870
[ 139.973485][ T5249] __slab_alloc.constprop.0+0x56/0xb0
[ 139.978887][ T5249] __kmalloc_cache_noprof+0x2b4/0x300
[ 139.984376][ T5249] netfs_buffer_append_folio+0x181/0x750
[ 139.990030][ T5249] netfs_write_folio+0x542/0x18f0
[ 139.995085][ T5249] netfs_writepages+0x2ba/0xb90
[ 139.999967][ T5249] do_writepages+0x1a6/0x7f0
[ 140.004587][ T5249] filemap_fdatawrite_wbc+0x148/0x1c0
[ 140.009984][ T5249] __filemap_fdatawrite_range+0xba/0x100
[ 140.015652][ T5249] v9fs_dir_release+0x429/0x590
[ 140.020522][ T5249] __fput+0x3f9/0xb60
[ 140.024527][ T5249] page last free pid 4682 tgid 4682 stack trace:
[ 140.030857][ T5249] free_unref_page+0x64a/0xe40
[ 140.035656][ T5249] __put_partials+0x14c/0x170
[ 140.040357][ T5249] qlist_free_all+0x4e/0x140
[ 140.044974][ T5249] kasan_quarantine_reduce+0x192/0x1e0
[ 140.050547][ T5249] __kasan_slab_alloc+0x69/0x90
[ 140.055430][ T5249] kmem_cache_alloc_noprof+0x121/0x2f0
[ 140.060924][ T5249] getname_flags.part.0+0x4c/0x550
[ 140.066072][ T5249] getname_flags+0x93/0xf0
[ 140.070588][ T5249] vfs_fstatat+0x86/0x160
[ 140.074943][ T5249] __do_sys_newfstatat+0xa2/0x130
[ 140.079996][ T5249] do_syscall_64+0xcd/0x250
[ 140.084520][ T5249] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 140.090459][ T5249]
[ 140.092780][ T5249] Memory state around the buggy address:
[ 140.098426][ T5249] ffff88802a63dc00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 140.106506][ T5249] ffff88802a63dc80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 140.114579][ T5249] >ffff88802a63dd00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 140.122643][ T5249] ^
[ 140.127755][ T5249] ffff88802a63dd80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 140.135823][ T5249] ffff88802a63de00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 140.143892][ T5249] ==================================================================
[ 140.155125][ T5249] Disabling lock debugging due to kernel taint
[ 140.186539][ T5249] ==================================================================
[ 140.194623][ T5249] BUG: KASAN: slab-use-after-free in iov_iter_advance+0x677/0x6c0
[ 140.202482][ T5249] Read of size 8 at addr ffff88802a63f520 by task syz-executor341/5249
[ 140.210724][ T5249]
[ 140.213045][ T5249] CPU: 1 UID: 0 PID: 5249 Comm: syz-executor341 Tainted: G B 6.11.0-syzkaller-02574-ga430d95c5efa #0
[ 140.225376][ T5249] Tainted: [B]=BAD_PAGE
[ 140.229518][ T5249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 140.239578][ T5249] Call Trace:
[ 140.242869][ T5249]
[ 140.245795][ T5249] dump_stack_lvl+0x116/0x1f0
[ 140.250490][ T5249] print_report+0xc3/0x620
[ 140.254924][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 140.260564][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 140.266208][ T5249] ? __phys_addr+0xc6/0x150
[ 140.270729][ T5249] kasan_report+0xd9/0x110
[ 140.275168][ T5249] ? iov_iter_advance+0x677/0x6c0
[ 140.280276][ T5249] ? iov_iter_advance+0x677/0x6c0
[ 140.285418][ T5249] iov_iter_advance+0x677/0x6c0
[ 140.290319][ T5249] netfs_write_folio+0x745/0x18f0
[ 140.295383][ T5249] netfs_writepages+0x2ba/0xb90
[ 140.300260][ T5249] ? __pfx_netfs_writepages+0x10/0x10
[ 140.305647][ T5249] ? do_raw_spin_lock+0x12d/0x2c0
[ 140.310675][ T5249] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 140.316048][ T5249] ? bpf_ksym_find+0x124/0x1c0
[ 140.320816][ T5249] ? __pfx_netfs_writepages+0x10/0x10
[ 140.326206][ T5249] do_writepages+0x1a6/0x7f0
[ 140.330809][ T5249] ? __pfx_do_writepages+0x10/0x10
[ 140.335927][ T5249] ? __pfx_lock_acquire+0x10/0x10
[ 140.340971][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 140.346612][ T5249] ? do_raw_spin_lock+0x12d/0x2c0
[ 140.351643][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 140.357280][ T5249] ? do_raw_spin_unlock+0x172/0x230
[ 140.362487][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 140.368128][ T5249] ? _raw_spin_unlock+0x28/0x50
[ 140.372996][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 140.378634][ T5249] ? wbc_attach_and_unlock_inode+0x597/0x940
[ 140.384625][ T5249] filemap_fdatawrite_wbc+0x148/0x1c0
[ 140.390014][ T5249] __filemap_fdatawrite_range+0xba/0x100
[ 140.395686][ T5249] ? __pfx___filemap_fdatawrite_range+0x10/0x10
[ 140.401945][ T5249] ? lock_acquire+0x1b1/0x560
[ 140.406664][ T5249] ? __pfx_debug_check_no_obj_freed+0x10/0x10
[ 140.412745][ T5249] v9fs_dir_release+0x429/0x590
[ 140.417627][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 140.423280][ T5249] ? __pfx_v9fs_dir_release+0x10/0x10
[ 140.428669][ T5249] ? __pfx___might_resched+0x10/0x10
[ 140.433971][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 140.439618][ T5249] ? __pfx_v9fs_dir_release+0x10/0x10
[ 140.444996][ T5249] __fput+0x3f9/0xb60
[ 140.448998][ T5249] task_work_run+0x151/0x250
[ 140.453613][ T5249] ? __pfx_task_work_run+0x10/0x10
[ 140.458748][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 140.464388][ T5249] ? do_raw_spin_unlock+0x172/0x230
[ 140.469599][ T5249] do_exit+0xaa3/0x2bb0
[ 140.473773][ T5249] ? do_group_exit+0x1c3/0x2a0
[ 140.478552][ T5249] ? __pfx_lock_release+0x10/0x10
[ 140.483594][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 140.489234][ T5249] ? do_raw_spin_lock+0x12d/0x2c0
[ 140.494351][ T5249] ? __pfx_do_exit+0x10/0x10
[ 140.498954][ T5249] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 140.504336][ T5249] do_group_exit+0xd3/0x2a0
[ 140.509120][ T5249] __x64_sys_exit_group+0x3e/0x50
[ 140.514168][ T5249] x64_sys_call+0x14a9/0x16a0
[ 140.518862][ T5249] do_syscall_64+0xcd/0x250
[ 140.523377][ T5249] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 140.529293][ T5249] RIP: 0033:0x7ff0e2c14089
[ 140.533706][ T5249] Code: Unable to access opcode bytes at 0x7ff0e2c1405f.
[ 140.540714][ T5249] RSP: 002b:00007ffe69e64ba8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 140.549214][ T5249] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff0e2c14089
[ 140.557208][ T5249] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 140.565190][ T5249] RBP: 00007ff0e2c8f390 R08: ffffffffffffffb8 R09: 0000000000000006
[ 140.573163][ T5249] R10: 000000007ffff000 R11: 0000000000000246 R12: 00007ff0e2c8f390
[ 140.581132][ T5249] R13: 0000000000000000 R14: 00007ff0e2c8fde0 R15: 00007ff0e2be5070
[ 140.589200][ T5249]
[ 140.592216][ T5249]
[ 140.594529][ T5249] Allocated by task 5249:
[ 140.598846][ T5249] kasan_save_stack+0x33/0x60
[ 140.603541][ T5249] kasan_save_track+0x14/0x30
[ 140.608232][ T5249] __kasan_kmalloc+0xaa/0xb0
[ 140.612831][ T5249] netfs_buffer_append_folio+0x181/0x750
[ 140.618472][ T5249] netfs_write_folio+0x542/0x18f0
[ 140.623527][ T5249] netfs_writepages+0x2ba/0xb90
[ 140.628395][ T5249] do_writepages+0x1a6/0x7f0
[ 140.632992][ T5249] filemap_fdatawrite_wbc+0x148/0x1c0
[ 140.638373][ T5249] __filemap_fdatawrite_range+0xba/0x100
[ 140.644020][ T5249] v9fs_dir_release+0x429/0x590
[ 140.648871][ T5249] __fput+0x3f9/0xb60
[ 140.652860][ T5249] task_work_run+0x151/0x250
[ 140.657471][ T5249] do_exit+0xaa3/0x2bb0
[ 140.661635][ T5249] do_group_exit+0xd3/0x2a0
[ 140.666151][ T5249] __x64_sys_exit_group+0x3e/0x50
[ 140.671186][ T5249] x64_sys_call+0x14a9/0x16a0
[ 140.675875][ T5249] do_syscall_64+0xcd/0x250
[ 140.680383][ T5249] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 140.686295][ T5249]
[ 140.688605][ T5249] Freed by task 12:
[ 140.692400][ T5249] kasan_save_stack+0x33/0x60
[ 140.697087][ T5249] kasan_save_track+0x14/0x30
[ 140.702041][ T5249] kasan_save_free_info+0x3b/0x60
[ 140.707070][ T5249] poison_slab_object+0xf7/0x160
[ 140.712017][ T5249] __kasan_slab_free+0x32/0x50
[ 140.716795][ T5249] kfree+0x12a/0x3b0
[ 140.720695][ T5249] netfs_delete_buffer_head+0xa6/0x100
[ 140.726698][ T5249] netfs_write_collection_worker+0x20f9/0x4f80
[ 140.732867][ T5249] process_one_work+0x9c8/0x1b40
[ 140.737802][ T5249] worker_thread+0x6c8/0xf00
[ 140.742389][ T5249] kthread+0x2c4/0x3a0
[ 140.746473][ T5249] ret_from_fork+0x48/0x80
[ 140.750906][ T5249] ret_from_fork_asm+0x1a/0x30
[ 140.755688][ T5249]
[ 140.758002][ T5249] The buggy address belongs to the object at ffff88802a63f400
[ 140.758002][ T5249] which belongs to the cache kmalloc-512 of size 512
[ 140.772070][ T5249] The buggy address is located 288 bytes inside of
[ 140.772070][ T5249] freed 512-byte region [ffff88802a63f400, ffff88802a63f600)
[ 140.785874][ T5249]
[ 140.788186][ T5249] The buggy address belongs to the physical page:
[ 140.794582][ T5249] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2a63c
[ 140.803339][ T5249] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 140.811833][ T5249] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 140.819377][ T5249] page_type: 0xfdffffff(slab)
[ 140.824054][ T5249] raw: 00fff00000000040 ffff88801ac41c80 dead000000000122 0000000000000000
[ 140.832639][ T5249] raw: 0000000000000000 0000000080100010 00000001fdffffff 0000000000000000
[ 140.841223][ T5249] head: 00fff00000000040 ffff88801ac41c80 dead000000000122 0000000000000000
[ 140.849895][ T5249] head: 0000000000000000 0000000080100010 00000001fdffffff 0000000000000000
[ 140.858567][ T5249] head: 00fff00000000002 ffffea0000a98f01 ffffffffffffffff 0000000000000000
[ 140.867237][ T5249] head: 0000000000000004 0000000000000000 00000000ffffffff 0000000000000000
[ 140.875896][ T5249] page dumped because: kasan: bad access detected
[ 140.882295][ T5249] page_owner tracks the page as allocated
[ 140.887993][ T5249] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5249, tgid 5249 (syz-executor341), ts 139218928620, free_ts 130646507944
[ 140.909014][ T5249] post_alloc_hook+0x2d1/0x350
[ 140.913792][ T5249] get_page_from_freelist+0x1351/0x2e50
[ 140.919444][ T5249] __alloc_pages_noprof+0x22b/0x2460
[ 140.924922][ T5249] alloc_slab_page+0x4e/0xf0
[ 140.929516][ T5249] new_slab+0x84/0x260
[ 140.933596][ T5249] ___slab_alloc+0xdac/0x1870
[ 140.938283][ T5249] __slab_alloc.constprop.0+0x56/0xb0
[ 140.943686][ T5249] __kmalloc_cache_noprof+0x2b4/0x300
[ 140.949070][ T5249] netfs_buffer_append_folio+0x181/0x750
[ 140.954710][ T5249] netfs_write_folio+0x542/0x18f0
[ 140.959747][ T5249] netfs_writepages+0x2ba/0xb90
[ 140.964609][ T5249] do_writepages+0x1a6/0x7f0
[ 140.969205][ T5249] filemap_fdatawrite_wbc+0x148/0x1c0
[ 140.974584][ T5249] __filemap_fdatawrite_range+0xba/0x100
[ 140.980233][ T5249] v9fs_dir_release+0x429/0x590
[ 140.985087][ T5249] __fput+0x3f9/0xb60
[ 140.989098][ T5249] page last free pid 4682 tgid 4682 stack trace:
[ 140.995422][ T5249] free_unref_page+0x64a/0xe40
[ 141.000202][ T5249] __put_partials+0x14c/0x170
[ 141.004888][ T5249] qlist_free_all+0x4e/0x140
[ 141.009489][ T5249] kasan_quarantine_reduce+0x192/0x1e0
[ 141.014955][ T5249] __kasan_slab_alloc+0x69/0x90
[ 141.019818][ T5249] kmem_cache_alloc_noprof+0x121/0x2f0
[ 141.025288][ T5249] getname_flags.part.0+0x4c/0x550
[ 141.030407][ T5249] getname_flags+0x93/0xf0
[ 141.034820][ T5249] vfs_fstatat+0x86/0x160
[ 141.039155][ T5249] __do_sys_newfstatat+0xa2/0x130
[ 141.044185][ T5249] do_syscall_64+0xcd/0x250
[ 141.048690][ T5249] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 141.054601][ T5249]
[ 141.056912][ T5249] Memory state around the buggy address:
[ 141.062536][ T5249] ffff88802a63f400: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 141.070591][ T5249] ffff88802a63f480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 141.078646][ T5249] >ffff88802a63f500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 141.086697][ T5249] ^
[ 141.091793][ T5249] ffff88802a63f580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 141.099847][ T5249] ffff88802a63f600: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 141.107900][ T5249] ==================================================================
[ 141.132219][ T5249] ==================================================================
[ 141.140395][ T5249] BUG: KASAN: slab-use-after-free in iov_iter_advance+0x677/0x6c0
[ 141.148258][ T5249] Read of size 8 at addr ffff88802c8aad20 by task syz-executor341/5249
[ 141.156527][ T5249]
[ 141.158961][ T5249] CPU: 1 UID: 0 PID: 5249 Comm: syz-executor341 Tainted: G B 6.11.0-syzkaller-02574-ga430d95c5efa #0
[ 141.171238][ T5249] Tainted: [B]=BAD_PAGE
[ 141.175398][ T5249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 141.185482][ T5249] Call Trace:
[ 141.188775][ T5249]
[ 141.191703][ T5249] dump_stack_lvl+0x116/0x1f0
[ 141.196395][ T5249] print_report+0xc3/0x620
[ 141.200830][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 141.206472][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 141.212124][ T5249] ? __phys_addr+0xc6/0x150
[ 141.216638][ T5249] kasan_report+0xd9/0x110
[ 141.221070][ T5249] ? iov_iter_advance+0x677/0x6c0
[ 141.226119][ T5249] ? iov_iter_advance+0x677/0x6c0
[ 141.231167][ T5249] iov_iter_advance+0x677/0x6c0
[ 141.236061][ T5249] netfs_write_folio+0x745/0x18f0
[ 141.241112][ T5249] netfs_writepages+0x2ba/0xb90
[ 141.245984][ T5249] ? __pfx_netfs_writepages+0x10/0x10
[ 141.251372][ T5249] ? do_raw_spin_lock+0x12d/0x2c0
[ 141.256402][ T5249] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 141.261778][ T5249] ? bpf_ksym_find+0x124/0x1c0
[ 141.266547][ T5249] ? __pfx_netfs_writepages+0x10/0x10
[ 141.271936][ T5249] do_writepages+0x1a6/0x7f0
[ 141.276632][ T5249] ? __pfx_do_writepages+0x10/0x10
[ 141.281754][ T5249] ? __pfx_lock_acquire+0x10/0x10
[ 141.286799][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 141.292440][ T5249] ? do_raw_spin_lock+0x12d/0x2c0
[ 141.297487][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 141.303128][ T5249] ? do_raw_spin_unlock+0x172/0x230
[ 141.308615][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 141.314257][ T5249] ? _raw_spin_unlock+0x28/0x50
[ 141.319129][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 141.324787][ T5249] ? wbc_attach_and_unlock_inode+0x597/0x940
[ 141.330790][ T5249] filemap_fdatawrite_wbc+0x148/0x1c0
[ 141.336184][ T5249] __filemap_fdatawrite_range+0xba/0x100
[ 141.341851][ T5249] ? __pfx___filemap_fdatawrite_range+0x10/0x10
[ 141.348159][ T5249] ? lock_acquire+0x1b1/0x560
[ 141.352887][ T5249] ? __pfx_debug_check_no_obj_freed+0x10/0x10
[ 141.358977][ T5249] v9fs_dir_release+0x429/0x590
[ 141.363842][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 141.369488][ T5249] ? __pfx_v9fs_dir_release+0x10/0x10
[ 141.374871][ T5249] ? __pfx___might_resched+0x10/0x10
[ 141.380164][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 141.385808][ T5249] ? __pfx_v9fs_dir_release+0x10/0x10
[ 141.391188][ T5249] __fput+0x3f9/0xb60
[ 141.395191][ T5249] task_work_run+0x151/0x250
[ 141.399811][ T5249] ? __pfx_task_work_run+0x10/0x10
[ 141.404944][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 141.410585][ T5249] ? do_raw_spin_unlock+0x172/0x230
[ 141.415969][ T5249] do_exit+0xaa3/0x2bb0
[ 141.420140][ T5249] ? do_group_exit+0x1c3/0x2a0
[ 141.424922][ T5249] ? __pfx_lock_release+0x10/0x10
[ 141.429963][ T5249] ? srso_alias_return_thunk+0x5/0xfbef5
[ 141.435611][ T5249] ? do_raw_spin_lock+0x12d/0x2c0
[ 141.440644][ T5249] ? __pfx_do_exit+0x10/0x10
[ 141.445249][ T5249] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 141.450633][ T5249] do_group_exit+0xd3/0x2a0
[ 141.455155][ T5249] __x64_sys_exit_group+0x3e/0x50
[ 141.460196][ T5249] x64_sys_call+0x14a9/0x16a0
[ 141.464894][ T5249] do_syscall_64+0xcd/0x250
[ 141.469407][ T5249] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 141.475330][ T5249] RIP: 0033:0x7ff0e2c14089
[ 141.479741][ T5249] Code: Unable to access opcode bytes at 0x7ff0e2c1405f.
[ 141.486750][ T5249] RSP: 002b:00007ffe69e64ba8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 141.495166][ T5249] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff0e2c14089
[ 141.503140][ T5249] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 141.511111][ T5249] RBP: 00007ff0e2c8f390 R08: ffffffffffffffb8 R09: 0000000000000006
[ 141.519083][ T5249] R10: 000000007ffff000 R11: 0000000000000246 R12: 00007ff0e2c8f390
[ 141.527053][ T5249] R13: 0000000000000000 R14: 00007ff0e2c8fde0 R15: 00007ff0e2be5070
[ 141.535033][ T5249]
[ 141.538044][ T5249]
[ 141.540354][ T5249] Allocated by task 5249:
[ 141.544676][ T5249] kasan_save_stack+0x33/0x60
[ 141.549367][ T5249] kasan_save_track+0x14/0x30
[ 141.554055][ T5249] __kasan_kmalloc+0xaa/0xb0
[ 141.558655][ T5249] netfs_buffer_append_folio+0x181/0x750
[ 141.564294][ T5249] netfs_write_folio+0x542/0x18f0
[ 141.569329][ T5249] netfs_writepages+0x2ba/0xb90
[ 141.574192][ T5249] do_writepages+0x1a6/0x7f0
[ 141.578787][ T5249] filemap_fdatawrite_wbc+0x148/0x1c0
[ 141.584169][ T5249] __filemap_fdatawrite_range+0xba/0x100
[ 141.589818][ T5249] v9fs_dir_release+0x429/0x590
[ 141.594672][ T5249] __fput+0x3f9/0xb60
[ 141.598666][ T5249] task_work_run+0x151/0x250
[ 141.603274][ T5249] do_exit+0xaa3/0x2bb0
[ 141.607441][ T5249] do_group_exit+0xd3/0x2a0
[ 141.611958][ T5249] __x64_sys_exit_group+0x3e/0x50
[ 141.616995][ T5249] x64_sys_call+0x14a9/0x16a0
[ 141.621686][ T5249] do_syscall_64+0xcd/0x250
[ 141.626190][ T5249] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 141.632103][ T5249]
[ 141.634414][ T5249] Freed by task 11:
[ 141.638211][ T5249] kasan_save_stack+0x33/0x60
[ 141.642901][ T5249] kasan_save_track+0x14/0x30
[ 141.647685][ T5249] kasan_save_free_info+0x3b/0x60
[ 141.652715][ T5249] poison_slab_object+0xf7/0x160
[ 141.657689][ T5249] __kasan_slab_free+0x32/0x50
[ 141.662472][ T5249] kfree+0x12a/0x3b0
[ 141.666392][ T5249] netfs_delete_buffer_head+0xa6/0x100
[ 141.671860][ T5249] netfs_write_collection_worker+0x20f9/0x4f80
[ 141.678029][ T5249] process_one_work+0x9c8/0x1b40
[ 141.682968][ T5249] worker_thread+0x6c8/0xf00
[ 141.687560][ T5249] kthread+0x2c4/0x3a0
[ 141.691687][ T5249] ret_from_fork+0x48/0x80
[ 141.696124][ T5249] ret_from_fork_asm+0x1a/0x30
[ 141.700902][ T5249]
[ 141.703217][ T5249] The buggy address belongs to the object at ffff88802c8aac00
[ 141.703217][ T5249] which belongs to the cache kmalloc-512 of size 512
[ 141.717297][ T5249] The buggy address is located 288 bytes inside of
[ 141.717297][ T5249] freed 512-byte region [ffff88802c8aac00, ffff88802c8aae00)
[ 141.731101][ T5249]
[ 141.733420][ T5249] The buggy address belongs to the physical page:
[ 141.739818][ T5249] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2c8a8
[ 141.748581][ T5249] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 141.757085][ T5249] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 141.764627][ T5249] page_type: 0xfdffffff(slab)
[ 141.769306][ T5249] raw: 00fff00000000040 ffff88801ac41c80 dead000000000122 0000000000000000
[ 141.777893][ T5249] raw: 0000000000000000 0000000080100010 00000001fdffffff 0000000000000000
[ 141.786484][ T5249] head: 00fff00000000040 ffff88801ac41c80 dead000000000122 0000000000000000
[ 141.795158][ T5249] head: 0000000000000000 0000000080100010 00000001fdffffff 0000000000000000
[ 141.803834][ T5249] head: 00fff00000000002 ffffea0000b22a01 ffffffffffffffff 0000000000000000
[ 141.812506][ T5249] head: 0000000000000004 0000000000000000 00000000ffffffff 0000000000000000
[ 141.821170][ T5249] page dumped because: kasan: bad access detected
[ 141.827576][ T5249] page_owner tracks the page as allocated
[ 141.833285][ T5249] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5249, tgid 5249 (syz-executor341), ts 141121433556, free_ts 130792291213
[ 141.854312][ T5249] post_alloc_hook+0x2d1/0x350
[ 141.859093][ T5249] get_page_from_freelist+0x1351/0x2e50
[ 141.864658][ T5249] __alloc_pages_noprof+0x22b/0x2460
[ 141.869961][ T5249] alloc_slab_page+0x4e/0xf0
[ 141.874558][ T5249] new_slab+0x84/0x260
[ 141.878642][ T5249] ___slab_alloc+0xdac/0x1870
[ 141.883331][ T5249] __slab_alloc.constprop.0+0x56/0xb0
[ 141.888806][ T5249] __kmalloc_cache_noprof+0x2b4/0x300
[ 141.894285][ T5249] netfs_buffer_append_folio+0x181/0x750
[ 141.899951][ T5249] netfs_write_folio+0x542/0x18f0
[ 141.904990][ T5249] netfs_writepages+0x2ba/0xb90
[ 141.909855][ T5249] do_writepages+0x1a6/0x7f0
[ 141.914454][ T5249] filemap_fdatawrite_wbc+0x148/0x1c0
[ 141.919839][ T5249] __filemap_fdatawrite_range+0xba/0x100
[ 141.925490][ T5249] v9fs_dir_release+0x429/0x590
[ 141.930347][ T5249] __fput+0x3f9/0xb60
[ 141.934339][ T5249] page last free pid 5243 tgid 5243 stack trace:
[ 141.940655][ T5249] free_unref_page+0x64a/0xe40
[ 141.945436][ T5249] __put_partials+0x14c/0x170
[ 141.950126][ T5249] qlist_free_all+0x4e/0x140
[ 141.954815][ T5249] kasan_quarantine_reduce+0x192/0x1e0
[ 141.960289][ T5249] __kasan_slab_alloc+0x69/0x90
[ 141.965160][ T5249] __kmalloc_cache_noprof+0x11e/0x300
[ 141.970552][ T5249] p9_fd_create+0x164/0x490
[ 141.975062][ T5249] p9_client_create+0x879/0x1210
[ 141.980012][ T5249] v9fs_session_init+0x1f8/0x1a80
[ 141.985044][ T5249] v9fs_mount+0xc6/0xa50
[ 141.989301][ T5249] legacy_get_tree+0x10c/0x220
[ 141.994170][ T5249] vfs_get_tree+0x92/0x380
[ 141.998591][ T5249] path_mount+0x14e6/0x1f20
[ 142.003098][ T5249] __x64_sys_mount+0x294/0x320
[ 142.007867][ T5249] do_syscall_64+0xcd/0x250
[ 142.012378][ T5249] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 142.018294][ T5249]
[ 142.020608][ T5249] Memory state around the buggy address:
[ 142.026230][ T5249] ffff88802c8aac00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 142.034290][ T5249] ffff88802c8aac80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[pid 5249] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5249, si_uid=0, si_status=0, si_utime=0, si_stime=147 /* 1.47 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555591313650) = 5255
./strace-static-x86_64: Process 5255 attached
[pid 5255] set_robust_list(0x555591313660, 24) = 0
[ 142.042351][ T5249] >ffff88802c8aad00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 142.050405][ T5249] ^
[ 142.055681][ T5249] ffff88802c8aad80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 142.063741][ T5249] ffff88802c8aae00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 142.071803][ T5249] ==================================================================
[pid 5255] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5255] setpgid(0, 0) = 0
[pid 5255] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5255] write(3, "1000", 4) = 4
[pid 5255] close(3) = 0
[pid 5255] write(1, "executing program\n", 18executing program
) = 18
[pid 5255] creat("./file0", 000) = -1 EIO (Input/output error)
[pid 5255] pipe2([3, 4], 0) = 0
[pid 5255] write(4, "\x15\x00\x00\x00\x65\xff\xff\x04\x80\x00\x00\x08\x00\x39\x50\x32\x30\x30\x30\x00\x00", 21) = 21
[pid 5255] dup(4) = 5
[pid 5255] write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
[pid 5255] write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
[pid 5255] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000005,cache=mmap,k") = 0
[pid 5255] chmod("./file0", 000) = 0
[pid 5255] open("./file0", O_WRONLY) = 6
[pid 5255] openat(AT_FDCWD, "blkio.bfq.io_wait_time", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 7
[pid 5255] ftruncate(7, 33554441) = 0
[pid 5255] sendfile(6, 7, NULL, 2147479552) = 33554441
[pid 5255] exit_group(0) = ?
[pid 5255] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5255, si_uid=0, si_status=0, si_utime=0, si_stime=113 /* 1.13 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555591313650) = 5257
./strace-static-x86_64: Process 5257 attached
[pid 5257] set_robust_list(0x555591313660, 24) = 0
[pid 5257] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5257] setpgid(0, 0) = 0
[pid 5257] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5257] write(3, "1000", 4) = 4
[pid 5257] close(3) = 0
[pid 5257] write(1, "executing program\n", 18executing program
) = 18
[pid 5257] creat("./file0", 000) = -1 EIO (Input/output error)
[pid 5257] pipe2([3, 4], 0) = 0
[pid 5257] write(4, "\x15\x00\x00\x00\x65\xff\xff\x04\x80\x00\x00\x08\x00\x39\x50\x32\x30\x30\x30\x00\x00", 21) = 21
[pid 5257] dup(4) = 5
[pid 5257] write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
[pid 5257] write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
[pid 5257] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000005,cache=mmap,k") = 0
[pid 5257] chmod("./file0", 000) = 0
[pid 5257] open("./file0", O_WRONLY) = 6
[pid 5257] openat(AT_FDCWD, "blkio.bfq.io_wait_time", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 7
[pid 5257] ftruncate(7, 33554441) = 0
[pid 5257] sendfile(6, 7, NULL, 2147479552) = 33554441
[pid 5257] exit_group(0) = ?
[pid 5257] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5257, si_uid=0, si_status=0, si_utime=0, si_stime=112 /* 1.12 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555591313650) = 5258
./strace-static-x86_64: Process 5258 attached
[pid 5258] set_robust_list(0x555591313660, 24) = 0
[pid 5258] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5258] setpgid(0, 0) = 0
[pid 5258] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program
) = 3
[pid 5258] write(3, "1000", 4) = 4
[pid 5258] close(3) = 0
[pid 5258] write(1, "executing program\n", 18) = 18
[pid 5258] creat("./file0", 000) = -1 EIO (Input/output error)
[pid 5258] pipe2([3, 4], 0) = 0
[pid 5258] write(4, "\x15\x00\x00\x00\x65\xff\xff\x04\x80\x00\x00\x08\x00\x39\x50\x32\x30\x30\x30\x00\x00", 21) = 21
[pid 5258] dup(4) = 5
[pid 5258] write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
[pid 5258] write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
[pid 5258] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000005,cache=mmap,k") = 0
[pid 5258] chmod("./file0", 000) = 0
[pid 5258] open("./file0", O_WRONLY) = 6
[pid 5258] openat(AT_FDCWD, "blkio.bfq.io_wait_time", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 7
[pid 5258] ftruncate(7, 33554441) = 0
[pid 5258] sendfile(6, 7, NULL, 2147479552) = 33554441
[pid 5258] exit_group(0) = ?
[pid 5258] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5258, si_uid=0, si_status=0, si_utime=0, si_stime=111 /* 1.11 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555591313650) = 5259
./strace-static-x86_64: Process 5259 attached
[pid 5259] set_robust_list(0x555591313660, 24) = 0
[pid 5259] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5259] setpgid(0, 0) = 0
[pid 5259] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5259] write(3, "1000", 4executing program
) = 4
[pid 5259] close(3) = 0
[pid 5259] write(1, "executing program\n", 18) = 18
[pid 5259] creat("./file0", 000) = -1 EIO (Input/output error)
[pid 5259] pipe2([3, 4], 0) = 0
[pid 5259] write(4, "\x15\x00\x00\x00\x65\xff\xff\x04\x80\x00\x00\x08\x00\x39\x50\x32\x30\x30\x30\x00\x00", 21) = 21
[pid 5259] dup(4) = 5
[pid 5259] write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
[pid 5259] write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
[pid 5259] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000005,cache=mmap,k") = 0
[pid 5259] chmod("./file0", 000) = 0
[pid 5259] open("./file0", O_WRONLY) = 6
[pid 5259] openat(AT_FDCWD, "blkio.bfq.io_wait_time", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 7
[pid 5259] ftruncate(7, 33554441) = 0
[pid 5259] sendfile(6, 7, NULL, 2147479552) = 33554441
[pid 5259] exit_group(0) = ?
[pid 5259] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5259, si_uid=0, si_status=0, si_utime=0, si_stime=112 /* 1.12 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5260 attached
, child_tidptr=0x555591313650) = 5260
[pid 5260] set_robust_list(0x555591313660, 24) = 0
[pid 5260] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5260] setpgid(0, 0) = 0
[pid 5260] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5260] write(3, "1000", 4) = 4
[pid 5260] close(3) = 0
executing program
[pid 5260] write(1, "executing program\n", 18) = 18
[pid 5260] creat("./file0", 000) = -1 EIO (Input/output error)
[pid 5260] pipe2([3, 4], 0) = 0
[pid 5260] write(4, "\x15\x00\x00\x00\x65\xff\xff\x04\x80\x00\x00\x08\x00\x39\x50\x32\x30\x30\x30\x00\x00", 21) = 21
[pid 5260] dup(4) = 5
[pid 5260] write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
[pid 5260] write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
[pid 5260] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000005,cache=mmap,k") = -1 EIO (Input/output error)
[pid 5260] chmod("./file0", 000) = -1 EIO (Input/output error)
[pid 5260] open("./file0", O_WRONLY) = -1 EIO (Input/output error)
[pid 5260] openat(AT_FDCWD, "blkio.bfq.io_wait_time", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid 5260] ftruncate(6, 33554441) = 0
[pid 5260] sendfile(-1, 6, NULL, 2147479552) = -1 EBADF (Bad file descriptor)
[pid 5260] exit_group(0) = ?
[pid 5260] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5260, si_uid=0, si_status=0, si_utime=0, si_stime=30 /* 0.30 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555591313650) = 5261
./strace-static-x86_64: Process 5261 attached
[pid 5261] set_robust_list(0x555591313660, 24) = 0
[pid 5261] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5261] setpgid(0, 0) = 0
[pid 5261] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5261] write(3, "1000", 4) = 4
executing program
[pid 5261] close(3) = 0
[pid 5261] write(1, "executing program\n", 18) = 18
[pid 5261] creat("./file0", 000) = -1 EIO (Input/output error)
[pid 5261] pipe2([3, 4], 0) = 0
[pid 5261] write(4, "\x15\x00\x00\x00\x65\xff\xff\x04\x80\x00\x00\x08\x00\x39\x50\x32\x30\x30\x30\x00\x00", 21) = 21
[pid 5261] dup(4) = 5
[pid 5261] write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
[pid 5261] write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
[pid 5261] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000005,cache=mmap,k") = -1 EIO (Input/output error)
[pid 5261] chmod("./file0", 000) = -1 EIO (Input/output error)
[pid 5261] open("./file0", O_WRONLY) = -1 EIO (Input/output error)
[pid 5261] openat(AT_FDCWD, "blkio.bfq.io_wait_time", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid 5261] ftruncate(6, 33554441) = 0
[pid 5261] sendfile(-1, 6, NULL, 2147479552) = -1 EBADF (Bad file descriptor)
[pid 5261] exit_group(0) = ?
[pid 5261] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5261, si_uid=0, si_status=0, si_utime=0, si_stime=58 /* 0.58 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555591313650) = 5262
./strace-static-x86_64: Process 5262 attached
[pid 5262] set_robust_list(0x555591313660, 24) = 0
[pid 5262] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5262] setpgid(0, 0) = 0
[pid 5262] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5262] write(3, "1000", 4) = 4
[pid 5262] close(3) = 0
[pid 5262] write(1, "executing program\n", 18executing program
) = 18
[pid 5262] creat("./file0", 000) = -1 EIO (Input/output error)
[pid 5262] pipe2([3, 4], 0) = 0
[pid 5262] write(4, "\x15\x00\x00\x00\x65\xff\xff\x04\x80\x00\x00\x08\x00\x39\x50\x32\x30\x30\x30\x00\x00", 21) = 21
[pid 5262] dup(4) = 5
[pid 5262] write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
[pid 5262] write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
[pid 5262] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000005,cache=mmap,k") = -1 EIO (Input/output error)
[pid 5262] chmod("./file0", 000) = -1 EIO (Input/output error)
[pid 5262] open("./file0", O_WRONLY) = -1 EIO (Input/output error)
[pid 5262] openat(AT_FDCWD, "blkio.bfq.io_wait_time", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid 5262] ftruncate(6, 33554441) = 0
[pid 5262] sendfile(-1, 6, NULL, 2147479552) = -1 EBADF (Bad file descriptor)
[pid 5262] exit_group(0) = ?
[pid 5262] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5262, si_uid=0, si_status=0, si_utime=0, si_stime=59 /* 0.59 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555591313650) = 5263
./strace-static-x86_64: Process 5263 attached
[pid 5263] set_robust_list(0x555591313660, 24) = 0
[pid 5263] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5263] setpgid(0, 0) = 0
[pid 5263] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5263] write(3, "1000", 4) = 4
executing program
[pid 5263] close(3) = 0
[pid 5263] write(1, "executing program\n", 18) = 18
[pid 5263] creat("./file0", 000) = -1 EIO (Input/output error)
[pid 5263] pipe2([3, 4], 0) = 0
[pid 5263] write(4, "\x15\x00\x00\x00\x65\xff\xff\x04\x80\x00\x00\x08\x00\x39\x50\x32\x30\x30\x30\x00\x00", 21) = 21
[pid 5263] dup(4) = 5
[pid 5263] write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
[pid 5263] write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
[pid 5263] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000005,cache=mmap,k") = 0
[pid 5263] chmod("./file0", 000) = 0
[pid 5263] open("./file0", O_WRONLY) = 6