./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3262907132
<...>
syzkaller
syzkaller login: [ 60.016207][ T27] kauditd_printk_skb: 42 callbacks suppressed
[ 60.016221][ T27] audit: type=1400 audit(1697691002.838:77): avc: denied { transition } for pid=4886 comm="sshd" path="/bin/sh" dev="sda1" ino=89 scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 60.045421][ T27] audit: type=1400 audit(1697691002.838:78): avc: denied { noatsecure } for pid=4886 comm="sshd" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 60.064938][ T27] audit: type=1400 audit(1697691002.868:79): avc: denied { write } for pid=4886 comm="sh" path="pipe:[1980]" dev="pipefs" ino=1980 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[ 60.088497][ T27] audit: type=1400 audit(1697691002.868:80): avc: denied { rlimitinh } for pid=4886 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 60.108513][ T27] audit: type=1400 audit(1697691002.868:81): avc: denied { siginh } for pid=4886 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 61.313852][ T27] audit: type=1400 audit(1697691004.128:82): avc: denied { read } for pid=4467 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
Warning: Permanently added '10.128.0.188' (ED25519) to the list of known hosts.
execve("./syz-executor3262907132", ["./syz-executor3262907132"], 0x7ffd79071380 /* 10 vars */) = 0
brk(NULL) = 0x555556be0000
brk(0x555556be0d00) = 0x555556be0d00
arch_prctl(ARCH_SET_FS, 0x555556be0380) = 0
set_tid_address(0x555556be0650) = 5036
set_robust_list(0x555556be0660, 24) = 0
rseq(0x555556be0ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor3262907132", 4096) = 28
getrandom("\xa7\x94\x8d\xd7\x6a\x07\x60\x8a", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x555556be0d00
brk(0x555556c01d00) = 0x555556c01d00
brk(0x555556c02000) = 0x555556c02000
mprotect(0x7f20193b3000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
mkdir("./syzkaller.EFDnvK", 0700) = 0
chmod("./syzkaller.EFDnvK", 0777) = 0
chdir("./syzkaller.EFDnvK") = 0
mkdir("./0", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5037
./strace-static-x86_64: Process 5037 attached
[ 77.714720][ T27] audit: type=1400 audit(1697691020.538:83): avc: denied { write } for pid=5033 comm="strace-static-x" path="pipe:[4116]" dev="pipefs" ino=4116 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[ 77.743243][ T27] audit: type=1400 audit(1697691020.558:84): avc: denied { execmem } for pid=5036 comm="syz-executor326" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[pid 5037] set_robust_list(0x555556be0660, 24) = 0
[pid 5037] chdir("./0") = 0
[pid 5037] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[ 77.764730][ T27] audit: type=1400 audit(1697691020.558:85): avc: denied { read write } for pid=5036 comm="syz-executor326" name="loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 77.790530][ T27] audit: type=1400 audit(1697691020.558:86): avc: denied { open } for pid=5036 comm="syz-executor326" path="/dev/loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[pid 5037] setpgid(0, 0) = 0
[pid 5037] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5037] write(3, "1000", 4) = 4
[pid 5037] close(3) = 0
[pid 5037] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5037] memfd_create("syzkaller", 0) = 3
[pid 5037] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[ 77.815696][ T27] audit: type=1400 audit(1697691020.558:87): avc: denied { ioctl } for pid=5036 comm="syz-executor326" path="/dev/loop0" dev="devtmpfs" ino=648 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 77.834853][ T5037] syz-executor326[5037]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[pid 5037] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5037] munmap(0x7f2010eff000, 138412032) = 0
[pid 5037] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5037] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5037] close(3) = 0
[pid 5037] mkdir("./file0", 0777) = 0
[ 77.909315][ T5037] loop0: detected capacity change from 0 to 8192
[ 77.919516][ T27] audit: type=1400 audit(1697691020.738:88): avc: denied { mounton } for pid=5037 comm="syz-executor326" path="/root/syzkaller.EFDnvK/0/file0" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[ 77.926160][ T5037] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 77.957532][ T5037] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 77.967364][ T5037] REISERFS (device loop0): using ordered data mode
[ 77.974184][ T5037] reiserfs: using flush barriers
[ 77.981274][ T5037] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 77.998140][ T5037] REISERFS (device loop0): checking transaction log (loop0)
[pid 5037] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5037] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5037] chdir("./file0") = 0
[pid 5037] ioctl(4, LOOP_CLR_FD) = 0
[pid 5037] close(4) = 0
[pid 5037] mkdir("./file1", 000) = 0
[ 78.008744][ T5037] REISERFS (device loop0): Using r5 hash to sort names
[ 78.017229][ T5037] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 78.030206][ T5037] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5037] mkdir("./bus", 000) = 0
[pid 5037] mkdir("./file0", 000) = 0
[ 78.041167][ T27] audit: type=1400 audit(1697691020.868:89): avc: denied { mount } for pid=5037 comm="syz-executor326" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[ 78.064759][ T27] audit: type=1400 audit(1697691020.888:90): avc: denied { mounton } for pid=5037 comm="syz-executor326" path="/root/syzkaller.EFDnvK/0/file0/bus" dev="loop0" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:nfs_t tclass=dir permissive=1
[ 78.077221][ T5037] overlayfs: upper fs needs to support d_type.
[ 78.096539][ T5037] overlayfs: upper fs does not support tmpfile.
[pid 5037] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[ 78.107010][ T5037] overlayfs: upper fs does not support RENAME_WHITEOUT.
[pid 5037] rename("./file1", "./file0/file0") = 0
[pid 5037] mkdir("./file1", 000) = 0
[pid 5037] rename("./file1", "./file0/file0") = 0
[pid 5037] exit_group(0) = ?
[pid 5037] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5037, si_uid=0, si_status=0, si_utime=0, si_stime=20 /* 0.20 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./0/binderfs") = 0
[ 78.136011][ T27] audit: type=1400 audit(1697691020.958:91): avc: denied { mount } for pid=5037 comm="syz-executor326" name="/" dev="overlay" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 78.168805][ T27] audit: type=1400 audit(1697691020.988:92): avc: denied { unmount } for pid=5036 comm="syz-executor326" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[ 78.201698][ T5036]
[ 78.204080][ T5036] ======================================================
[ 78.211086][ T5036] WARNING: possible circular locking dependency detected
[ 78.218088][ T5036] 6.6.0-rc6-syzkaller-00043-gdd72f9c7e512 #0 Not tainted
[ 78.225095][ T5036] ------------------------------------------------------
[ 78.232093][ T5036] syz-executor326/5036 is trying to acquire lock:
[ 78.238490][ T5036] ffff888072ef2b00 (&type->i_mutex_dir_key#6/2){+.+.}-{3:3}, at: delete_one_xattr+0x13e/0x2d0
[ 78.248799][ T5036]
[ 78.248799][ T5036] but task is already holding lock:
[ 78.256149][ T5036] ffff888072ef03e0 (&type->i_mutex_dir_key#6/3){+.+.}-{3:3}, at: reiserfs_for_each_xattr+0x737/0x990
[ 78.267022][ T5036]
[ 78.267022][ T5036] which lock already depends on the new lock.
[ 78.267022][ T5036]
[ 78.277411][ T5036]
[ 78.277411][ T5036] the existing dependency chain (in reverse order) is:
[ 78.286409][ T5036]
[ 78.286409][ T5036] -> #2 (&type->i_mutex_dir_key#6/3){+.+.}-{3:3}:
[ 78.295003][ T5036] down_write_nested+0x97/0x200
[ 78.300397][ T5036] open_xa_dir+0x142/0x8d0
[ 78.305327][ T5036] xattr_lookup+0x1f/0x380
[ 78.310254][ T5036] reiserfs_xattr_set_handle+0x103/0xb50
[ 78.316400][ T5036] reiserfs_xattr_set+0x46a/0x5c0
[ 78.321942][ T5036] trusted_set+0xa8/0xd0
[ 78.326698][ T5036] __vfs_setxattr+0x173/0x1d0
[ 78.331887][ T5036] __vfs_setxattr_noperm+0x127/0x5e0
[ 78.337683][ T5036] __vfs_setxattr_locked+0x17e/0x250
[ 78.343479][ T5036] vfs_setxattr+0x146/0x350
[ 78.348505][ T5036] ovl_fill_super+0x13fa/0x6450
[ 78.353874][ T5036] get_tree_nodev+0xd6/0x180
[ 78.358990][ T5036] vfs_get_tree+0x8c/0x370
[ 78.363939][ T5036] path_mount+0x1492/0x1ed0
[ 78.369072][ T5036] __x64_sys_mount+0x293/0x310
[ 78.374351][ T5036] do_syscall_64+0x38/0xb0
[ 78.379299][ T5036] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 78.385705][ T5036]
[ 78.385705][ T5036] -> #1 (&type->i_mutex_dir_key#6){++++}-{3:3}:
[ 78.394126][ T5036] down_write_nested+0x97/0x200
[ 78.399489][ T5036] lock_two_inodes+0x1b2/0x1e0
[ 78.404767][ T5036] vfs_rename+0x4f0/0x1c30
[ 78.409698][ T5036] do_renameat2+0xc3c/0xdc0
[ 78.414711][ T5036] __x64_sys_rename+0x81/0xa0
[ 78.419900][ T5036] do_syscall_64+0x38/0xb0
[ 78.424829][ T5036] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 78.431241][ T5036]
[ 78.431241][ T5036] -> #0 (&type->i_mutex_dir_key#6/2){+.+.}-{3:3}:
[ 78.439834][ T5036] __lock_acquire+0x2e3d/0x5de0
[ 78.445200][ T5036] lock_acquire+0x1ae/0x510
[ 78.450213][ T5036] down_write_nested+0x97/0x200
[ 78.455661][ T5036] delete_one_xattr+0x13e/0x2d0
[ 78.461023][ T5036] reiserfs_for_each_xattr+0x746/0x990
[ 78.466998][ T5036] reiserfs_delete_xattrs+0x1f/0x90
[ 78.472705][ T5036] reiserfs_evict_inode+0x302/0x570
[ 78.478416][ T5036] evict+0x2ed/0x6b0
[ 78.482818][ T5036] iput.part.0+0x55e/0x7a0
[ 78.487745][ T5036] iput+0x5c/0x80
[ 78.491887][ T5036] dentry_unlink_inode+0x292/0x430
[ 78.497516][ T5036] __dentry_kill+0x3b8/0x640
[ 78.502739][ T5036] dput+0x6de/0xf80
[ 78.507078][ T5036] cleanup_mnt+0x1fa/0x3d0
[ 78.512140][ T5036] task_work_run+0x14d/0x240
[ 78.517356][ T5036] ptrace_notify+0x10c/0x130
[ 78.522469][ T5036] syscall_exit_to_user_mode_prepare+0x120/0x220
[ 78.529311][ T5036] syscall_exit_to_user_mode+0xd/0x60
[ 78.535208][ T5036] do_syscall_64+0x44/0xb0
[ 78.540133][ T5036] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 78.546566][ T5036]
[ 78.546566][ T5036] other info that might help us debug this:
[ 78.546566][ T5036]
[ 78.556780][ T5036] Chain exists of:
[ 78.556780][ T5036] &type->i_mutex_dir_key#6/2 --> &type->i_mutex_dir_key#6 --> &type->i_mutex_dir_key#6/3
[ 78.556780][ T5036]
[ 78.572540][ T5036] Possible unsafe locking scenario:
[ 78.572540][ T5036]
[ 78.579974][ T5036] CPU0 CPU1
[ 78.585346][ T5036] ---- ----
[ 78.590721][ T5036] lock(&type->i_mutex_dir_key#6/3);
[ 78.596121][ T5036] lock(&type->i_mutex_dir_key#6);
[ 78.603830][ T5036] lock(&type->i_mutex_dir_key#6/3);
[ 78.611719][ T5036] lock(&type->i_mutex_dir_key#6/2);
[ 78.617089][ T5036]
[ 78.617089][ T5036] *** DEADLOCK ***
[ 78.617089][ T5036]
[ 78.625218][ T5036] 1 lock held by syz-executor326/5036:
[ 78.630659][ T5036] #0: ffff888072ef03e0 (&type->i_mutex_dir_key#6/3){+.+.}-{3:3}, at: reiserfs_for_each_xattr+0x737/0x990
[ 78.641971][ T5036]
[ 78.641971][ T5036] stack backtrace:
[ 78.647845][ T5036] CPU: 0 PID: 5036 Comm: syz-executor326 Not tainted 6.6.0-rc6-syzkaller-00043-gdd72f9c7e512 #0
[ 78.658251][ T5036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 78.668295][ T5036] Call Trace:
[ 78.671564][ T5036]
[ 78.674503][ T5036] dump_stack_lvl+0xd9/0x1b0
[ 78.679102][ T5036] check_noncircular+0x311/0x3f0
[ 78.684032][ T5036] ? print_circular_bug+0x750/0x750
[ 78.689220][ T5036] ? reacquire_held_locks+0x20b/0x4b0
[ 78.694586][ T5036] ? reiserfs_write_lock_nested+0x69/0xe0
[ 78.700302][ T5036] ? is_dynamic_key+0x200/0x200
[ 78.705166][ T5036] ? find_held_lock+0x59/0x110
[ 78.709920][ T5036] __lock_acquire+0x2e3d/0x5de0
[ 78.714765][ T5036] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 78.720741][ T5036] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 78.726722][ T5036] ? find_held_lock+0x2d/0x110
[ 78.731476][ T5036] lock_acquire+0x1ae/0x510
[ 78.735992][ T5036] ? delete_one_xattr+0x13e/0x2d0
[ 78.741017][ T5036] ? lock_sync+0x190/0x190
[ 78.745690][ T5036] ? preempt_count_sub+0x150/0x150
[ 78.750797][ T5036] down_write_nested+0x97/0x200
[ 78.755645][ T5036] ? delete_one_xattr+0x13e/0x2d0
[ 78.760673][ T5036] ? _down_write_nest_lock+0x200/0x200
[ 78.766121][ T5036] ? down_write_nested+0x153/0x200
[ 78.771236][ T5036] ? _down_write_nest_lock+0x200/0x200
[ 78.776702][ T5036] delete_one_xattr+0x13e/0x2d0
[ 78.781643][ T5036] reiserfs_for_each_xattr+0x746/0x990
[ 78.787101][ T5036] ? xattr_unlink+0x180/0x180
[ 78.791767][ T5036] ? open_xa_dir+0x8d0/0x8d0
[ 78.796351][ T5036] ? delete_one_xattr+0x2d0/0x2d0
[ 78.801373][ T5036] reiserfs_delete_xattrs+0x1f/0x90
[ 78.806563][ T5036] reiserfs_evict_inode+0x302/0x570
[ 78.811751][ T5036] ? reiserfs_bmap+0x1b0/0x1b0
[ 78.816504][ T5036] ? spin_bug+0x1d0/0x1d0
[ 78.821016][ T5036] ? reiserfs_bmap+0x1b0/0x1b0
[ 78.825768][ T5036] evict+0x2ed/0x6b0
[ 78.829656][ T5036] iput.part.0+0x55e/0x7a0
[ 78.834070][ T5036] iput+0x5c/0x80
[ 78.837698][ T5036] dentry_unlink_inode+0x292/0x430
[ 78.842819][ T5036] __dentry_kill+0x3b8/0x640
[ 78.847427][ T5036] dput+0x6de/0xf80
[ 78.851237][ T5036] cleanup_mnt+0x1fa/0x3d0
[ 78.855647][ T5036] task_work_run+0x14d/0x240
[ 78.860237][ T5036] ? task_work_cancel+0x30/0x30
[ 78.865087][ T5036] ptrace_notify+0x10c/0x130
[ 78.869678][ T5036] syscall_exit_to_user_mode_prepare+0x120/0x220
[ 78.876000][ T5036] syscall_exit_to_user_mode+0xd/0x60
[ 78.881375][ T5036] do_syscall_64+0x44/0xb0
[ 78.885786][ T5036] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 78.891673][ T5036] RIP: 0033:0x7f201933f547
[ 78.896075][ T5036] Code: 07 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8
[ 78.915707][ T5036] RSP: 002b:00007fffe97f5688 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6
[ 78.924129][ T5036] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f201933f547
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./0/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./0/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./0") = 0
mkdir("./1", 0777) = 0
[ 78.932087][ T5036] RDX: 0000000000000000 RSI: 000000000000000a RDI: 00007fffe97f5740
[ 78.940049][ T5036] RBP: 00007fffe97f5740 R08: 0000000000000000 R09: 0000000000000000
[ 78.948010][ T5036] R10: 00000000ffffffff R11: 0000000000000206 R12: 00007fffe97f67b0
[ 78.955972][ T5036] R13: 0000555556be16c0 R14: 431bde82d7b634db R15: 00007fffe97f67d0
[ 78.963942][ T5036]
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5040
./strace-static-x86_64: Process 5040 attached
[pid 5040] set_robust_list(0x555556be0660, 24) = 0
[pid 5040] chdir("./1") = 0
[pid 5040] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5040] setpgid(0, 0) = 0
[pid 5040] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5040] write(3, "1000", 4) = 4
[pid 5040] close(3) = 0
[pid 5040] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5040] memfd_create("syzkaller", 0) = 3
[pid 5040] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5040] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5040] munmap(0x7f2010eff000, 138412032) = 0
[pid 5040] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5040] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5040] close(3) = 0
[pid 5040] mkdir("./file0", 0777) = 0
[ 79.081233][ T5040] loop0: detected capacity change from 0 to 8192
[ 79.092337][ T5040] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 79.105556][ T5040] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 79.114860][ T5040] REISERFS (device loop0): using ordered data mode
[ 79.121370][ T5040] reiserfs: using flush barriers
[pid 5040] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5040] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5040] chdir("./file0") = 0
[pid 5040] ioctl(4, LOOP_CLR_FD) = 0
[pid 5040] close(4) = 0
[pid 5040] mkdir("./file1", 000) = 0
[pid 5040] mkdir("./bus", 000) = 0
[pid 5040] mkdir("./file0", 000) = 0
[ 79.127787][ T5040] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 79.144203][ T5040] REISERFS (device loop0): checking transaction log (loop0)
[ 79.152246][ T5040] REISERFS (device loop0): Using r5 hash to sort names
[ 79.159431][ T5040] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 79.172140][ T5040] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5040] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5040] rename("./file1", "./file0/file0") = 0
[pid 5040] mkdir("./file1", 000) = 0
[pid 5040] rename("./file1", "./file0/file0") = 0
[pid 5040] exit_group(0) = ?
[pid 5040] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5040, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=15 /* 0.15 s */} ---
umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./1/binderfs") = 0
[ 79.197826][ T5040] overlayfs: upper fs needs to support d_type.
[ 79.204229][ T5040] overlayfs: upper fs does not support tmpfile.
[ 79.211362][ T5040] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./1/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./1/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./1") = 0
mkdir("./2", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5042 attached
[pid 5042] set_robust_list(0x555556be0660, 24) = 0
[pid 5042] chdir("./2") = 0
[pid 5042] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5042] setpgid(0, 0) = 0
[pid 5042] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC
[pid 5036] <... clone resumed>, child_tidptr=0x555556be0650) = 5042
[pid 5042] <... openat resumed>) = 3
[pid 5042] write(3, "1000", 4) = 4
[pid 5042] close(3) = 0
[pid 5042] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5042] memfd_create("syzkaller", 0) = 3
[pid 5042] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5042] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5042] munmap(0x7f2010eff000, 138412032) = 0
[pid 5042] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5042] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5042] close(3) = 0
[pid 5042] mkdir("./file0", 0777) = 0
[ 79.341315][ T5042] loop0: detected capacity change from 0 to 8192
[ 79.352498][ T5042] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 79.365795][ T5042] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 79.375412][ T5042] REISERFS (device loop0): using ordered data mode
[ 79.382040][ T5042] reiserfs: using flush barriers
[pid 5042] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[ 79.388662][ T5042] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 79.405324][ T5042] REISERFS (device loop0): checking transaction log (loop0)
[ 79.413479][ T5042] REISERFS (device loop0): Using r5 hash to sort names
[ 79.421361][ T5042] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[pid 5042] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5042] chdir("./file0") = 0
[pid 5042] ioctl(4, LOOP_CLR_FD) = 0
[pid 5042] close(4) = 0
[pid 5042] mkdir("./file1", 000) = 0
[pid 5042] mkdir("./bus", 000) = 0
[pid 5042] mkdir("./file0", 000) = 0
[pid 5042] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5042] rename("./file1", "./file0/file0") = 0
[pid 5042] mkdir("./file1", 000) = 0
[pid 5042] rename("./file1", "./file0/file0") = 0
[pid 5042] exit_group(0) = ?
[pid 5042] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5042, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=12 /* 0.12 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./2/binderfs") = 0
[ 79.434327][ T5042] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[ 79.460724][ T5042] overlayfs: upper fs needs to support d_type.
[ 79.467174][ T5042] overlayfs: upper fs does not support tmpfile.
[ 79.474870][ T5042] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./2/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./2/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./2") = 0
mkdir("./3", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5044 attached
, child_tidptr=0x555556be0650) = 5044
[pid 5044] set_robust_list(0x555556be0660, 24) = 0
[pid 5044] chdir("./3") = 0
[pid 5044] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5044] setpgid(0, 0) = 0
[pid 5044] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5044] write(3, "1000", 4) = 4
[pid 5044] close(3) = 0
[pid 5044] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5044] memfd_create("syzkaller", 0) = 3
[pid 5044] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5044] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5044] munmap(0x7f2010eff000, 138412032) = 0
[pid 5044] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5044] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5044] close(3) = 0
[pid 5044] mkdir("./file0", 0777) = 0
[ 79.604493][ T5044] loop0: detected capacity change from 0 to 8192
[ 79.614623][ T5044] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 79.627723][ T5044] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 79.637266][ T5044] REISERFS (device loop0): using ordered data mode
[ 79.643980][ T5044] reiserfs: using flush barriers
[pid 5044] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5044] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5044] chdir("./file0") = 0
[pid 5044] ioctl(4, LOOP_CLR_FD) = 0
[pid 5044] close(4) = 0
[pid 5044] mkdir("./file1", 000) = 0
[pid 5044] mkdir("./bus", 000) = 0
[ 79.650576][ T5044] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 79.666992][ T5044] REISERFS (device loop0): checking transaction log (loop0)
[ 79.675165][ T5044] REISERFS (device loop0): Using r5 hash to sort names
[ 79.682274][ T5044] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 79.695104][ T5044] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5044] mkdir("./file0", 000) = 0
[pid 5044] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5044] rename("./file1", "./file0/file0") = 0
[pid 5044] mkdir("./file1", 000) = 0
[pid 5044] rename("./file1", "./file0/file0") = 0
[pid 5044] exit_group(0) = ?
[pid 5044] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5044, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=12 /* 0.12 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./3", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./3/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./3/binderfs") = 0
[ 79.724090][ T5044] overlayfs: upper fs needs to support d_type.
[ 79.730480][ T5044] overlayfs: upper fs does not support tmpfile.
[ 79.738347][ T5044] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./3/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./3/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./3") = 0
mkdir("./4", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5046 attached
[pid 5046] set_robust_list(0x555556be0660, 24) = 0
[pid 5046] chdir("./4") = 0
[pid 5046] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5046] setpgid(0, 0
[pid 5036] <... clone resumed>, child_tidptr=0x555556be0650) = 5046
[pid 5046] <... setpgid resumed>) = 0
[pid 5046] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5046] write(3, "1000", 4) = 4
[pid 5046] close(3) = 0
[pid 5046] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5046] memfd_create("syzkaller", 0) = 3
[pid 5046] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5046] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5046] munmap(0x7f2010eff000, 138412032) = 0
[pid 5046] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5046] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5046] close(3) = 0
[pid 5046] mkdir("./file0", 0777) = 0
[ 79.852460][ T5046] loop0: detected capacity change from 0 to 8192
[ 79.866566][ T5046] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 79.879904][ T5046] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 79.889395][ T5046] REISERFS (device loop0): using ordered data mode
[ 79.896039][ T5046] reiserfs: using flush barriers
[ 79.902229][ T5046] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 79.919095][ T5046] REISERFS (device loop0): checking transaction log (loop0)
[ 79.927356][ T5046] REISERFS (device loop0): Using r5 hash to sort names
[ 79.934772][ T5046] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[pid 5046] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5046] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5046] chdir("./file0") = 0
[pid 5046] ioctl(4, LOOP_CLR_FD) = 0
[pid 5046] close(4) = 0
[pid 5046] mkdir("./file1", 000) = 0
[pid 5046] mkdir("./bus", 000) = 0
[pid 5046] mkdir("./file0", 000) = 0
[ 79.947628][ T5046] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5046] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5046] rename("./file1", "./file0/file0") = 0
[pid 5046] mkdir("./file1", 000) = 0
[pid 5046] rename("./file1", "./file0/file0") = 0
[pid 5046] exit_group(0) = ?
[pid 5046] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5046, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} ---
umount2("./4", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./4/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./4/binderfs") = 0
[ 79.984137][ T5046] overlayfs: upper fs needs to support d_type.
[ 79.990372][ T5046] overlayfs: upper fs does not support tmpfile.
[ 79.999339][ T5046] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./4/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./4/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./4") = 0
mkdir("./5", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5048 attached
[pid 5048] set_robust_list(0x555556be0660, 24) = 0
[pid 5048] chdir("./5") = 0
[pid 5048] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5048] setpgid(0, 0) = 0
[pid 5036] <... clone resumed>, child_tidptr=0x555556be0650) = 5048
[pid 5048] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5048] write(3, "1000", 4) = 4
[pid 5048] close(3) = 0
[pid 5048] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5048] memfd_create("syzkaller", 0) = 3
[pid 5048] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5048] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5048] munmap(0x7f2010eff000, 138412032) = 0
[pid 5048] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5048] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5048] close(3) = 0
[pid 5048] mkdir("./file0", 0777) = 0
[ 80.127599][ T5048] loop0: detected capacity change from 0 to 8192
[ 80.138053][ T5048] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 80.151154][ T5048] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 80.160522][ T5048] REISERFS (device loop0): using ordered data mode
[ 80.167104][ T5048] reiserfs: using flush barriers
[pid 5048] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5048] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5048] chdir("./file0") = 0
[pid 5048] ioctl(4, LOOP_CLR_FD) = 0
[pid 5048] close(4) = 0
[pid 5048] mkdir("./file1", 000) = 0
[pid 5048] mkdir("./bus", 000) = 0
[pid 5048] mkdir("./file0", 000) = 0
[ 80.173333][ T5048] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 80.189927][ T5048] REISERFS (device loop0): checking transaction log (loop0)
[ 80.198146][ T5048] REISERFS (device loop0): Using r5 hash to sort names
[ 80.205472][ T5048] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 80.218830][ T5048] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5048] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5048] rename("./file1", "./file0/file0") = 0
[pid 5048] mkdir("./file1", 000) = 0
[pid 5048] rename("./file1", "./file0/file0") = 0
[pid 5048] exit_group(0) = ?
[pid 5048] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5048, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./5", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./5/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./5/binderfs") = 0
[ 80.250425][ T5048] overlayfs: upper fs needs to support d_type.
[ 80.263644][ T5048] overlayfs: upper fs does not support tmpfile.
[ 80.270466][ T5048] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./5/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./5/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./5") = 0
mkdir("./6", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5050 attached
, child_tidptr=0x555556be0650) = 5050
[pid 5050] set_robust_list(0x555556be0660, 24) = 0
[pid 5050] chdir("./6") = 0
[pid 5050] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5050] setpgid(0, 0) = 0
[pid 5050] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5050] write(3, "1000", 4) = 4
[pid 5050] close(3) = 0
[pid 5050] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5050] memfd_create("syzkaller", 0) = 3
[pid 5050] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5050] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5050] munmap(0x7f2010eff000, 138412032) = 0
[pid 5050] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5050] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5050] close(3) = 0
[pid 5050] mkdir("./file0", 0777) = 0
[ 80.383267][ T5050] loop0: detected capacity change from 0 to 8192
[ 80.392974][ T5050] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 80.405989][ T5050] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 80.415233][ T5050] REISERFS (device loop0): using ordered data mode
[ 80.421778][ T5050] reiserfs: using flush barriers
[pid 5050] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5050] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5050] chdir("./file0") = 0
[pid 5050] ioctl(4, LOOP_CLR_FD) = 0
[pid 5050] close(4) = 0
[pid 5050] mkdir("./file1", 000) = 0
[pid 5050] mkdir("./bus", 000) = 0
[pid 5050] mkdir("./file0", 000) = 0
[ 80.428248][ T5050] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 80.444819][ T5050] REISERFS (device loop0): checking transaction log (loop0)
[ 80.452754][ T5050] REISERFS (device loop0): Using r5 hash to sort names
[ 80.460010][ T5050] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 80.472733][ T5050] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5050] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5050] rename("./file1", "./file0/file0") = 0
[pid 5050] mkdir("./file1", 000) = 0
[pid 5050] rename("./file1", "./file0/file0") = 0
[pid 5050] exit_group(0) = ?
[pid 5050] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5050, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./6", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./6/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./6/binderfs") = 0
[ 80.500792][ T5050] overlayfs: upper fs needs to support d_type.
[ 80.507156][ T5050] overlayfs: upper fs does not support tmpfile.
[ 80.517465][ T5050] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./6/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./6/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./6") = 0
mkdir("./7", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5052
./strace-static-x86_64: Process 5052 attached
[pid 5052] set_robust_list(0x555556be0660, 24) = 0
[pid 5052] chdir("./7") = 0
[pid 5052] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5052] setpgid(0, 0) = 0
[pid 5052] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5052] write(3, "1000", 4) = 4
[pid 5052] close(3) = 0
[pid 5052] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5052] memfd_create("syzkaller", 0) = 3
[pid 5052] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5052] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5052] munmap(0x7f2010eff000, 138412032) = 0
[pid 5052] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5052] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5052] close(3) = 0
[pid 5052] mkdir("./file0", 0777) = 0
[ 80.642345][ T5052] loop0: detected capacity change from 0 to 8192
[ 80.651924][ T5052] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 80.665082][ T5052] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 80.674512][ T5052] REISERFS (device loop0): using ordered data mode
[ 80.681009][ T5052] reiserfs: using flush barriers
[pid 5052] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5052] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5052] chdir("./file0") = 0
[pid 5052] ioctl(4, LOOP_CLR_FD) = 0
[pid 5052] close(4) = 0
[pid 5052] mkdir("./file1", 000) = 0
[pid 5052] mkdir("./bus", 000) = 0
[pid 5052] mkdir("./file0", 000) = 0
[ 80.687654][ T5052] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 80.704196][ T5052] REISERFS (device loop0): checking transaction log (loop0)
[ 80.712354][ T5052] REISERFS (device loop0): Using r5 hash to sort names
[ 80.719469][ T5052] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 80.732247][ T5052] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5052] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5052] rename("./file1", "./file0/file0") = 0
[pid 5052] mkdir("./file1", 000) = 0
[pid 5052] rename("./file1", "./file0/file0") = 0
[pid 5052] exit_group(0) = ?
[pid 5052] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5052, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./7", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./7/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./7/binderfs") = 0
[ 80.752896][ T5052] overlayfs: upper fs needs to support d_type.
[ 80.759332][ T5052] overlayfs: upper fs does not support tmpfile.
[ 80.766911][ T5052] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./7/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./7/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./7/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./7") = 0
mkdir("./8", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5054 attached
, child_tidptr=0x555556be0650) = 5054
[pid 5054] set_robust_list(0x555556be0660, 24) = 0
[pid 5054] chdir("./8") = 0
[pid 5054] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5054] setpgid(0, 0) = 0
[pid 5054] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5054] write(3, "1000", 4) = 4
[pid 5054] close(3) = 0
[pid 5054] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5054] memfd_create("syzkaller", 0) = 3
[pid 5054] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5054] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5054] munmap(0x7f2010eff000, 138412032) = 0
[pid 5054] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5054] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5054] close(3) = 0
[pid 5054] mkdir("./file0", 0777) = 0
[ 80.903608][ T5054] loop0: detected capacity change from 0 to 8192
[ 80.913211][ T5054] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 80.926891][ T5054] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 80.936385][ T5054] REISERFS (device loop0): using ordered data mode
[ 80.943060][ T5054] reiserfs: using flush barriers
[pid 5054] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5054] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5054] chdir("./file0") = 0
[pid 5054] ioctl(4, LOOP_CLR_FD) = 0
[pid 5054] close(4) = 0
[pid 5054] mkdir("./file1", 000) = 0
[pid 5054] mkdir("./bus", 000) = 0
[pid 5054] mkdir("./file0", 000) = 0
[ 80.949539][ T5054] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 80.965966][ T5054] REISERFS (device loop0): checking transaction log (loop0)
[ 80.974401][ T5054] REISERFS (device loop0): Using r5 hash to sort names
[ 80.981524][ T5054] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 80.994430][ T5054] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5054] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5054] rename("./file1", "./file0/file0") = 0
[pid 5054] mkdir("./file1", 000) = 0
[pid 5054] rename("./file1", "./file0/file0") = 0
[pid 5054] exit_group(0) = ?
[pid 5054] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5054, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./8", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./8/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./8/binderfs") = 0
[ 81.026218][ T5054] overlayfs: upper fs needs to support d_type.
[ 81.032461][ T5054] overlayfs: upper fs does not support tmpfile.
[ 81.048541][ T5054] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./8/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./8/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./8/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./8") = 0
mkdir("./9", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5056
./strace-static-x86_64: Process 5056 attached
[pid 5056] set_robust_list(0x555556be0660, 24) = 0
[pid 5056] chdir("./9") = 0
[pid 5056] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5056] setpgid(0, 0) = 0
[pid 5056] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5056] write(3, "1000", 4) = 4
[pid 5056] close(3) = 0
[pid 5056] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5056] memfd_create("syzkaller", 0) = 3
[pid 5056] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5056] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5056] munmap(0x7f2010eff000, 138412032) = 0
[pid 5056] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5056] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5056] close(3) = 0
[pid 5056] mkdir("./file0", 0777) = 0
[ 81.180277][ T5056] loop0: detected capacity change from 0 to 8192
[ 81.189698][ T5056] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 81.203097][ T5056] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 81.212551][ T5056] REISERFS (device loop0): using ordered data mode
[ 81.219275][ T5056] reiserfs: using flush barriers
[pid 5056] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5056] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5056] chdir("./file0") = 0
[pid 5056] ioctl(4, LOOP_CLR_FD) = 0
[pid 5056] close(4) = 0
[pid 5056] mkdir("./file1", 000) = 0
[pid 5056] mkdir("./bus", 000) = 0
[pid 5056] mkdir("./file0", 000) = 0
[ 81.225703][ T5056] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 81.242282][ T5056] REISERFS (device loop0): checking transaction log (loop0)
[ 81.250895][ T5056] REISERFS (device loop0): Using r5 hash to sort names
[ 81.258280][ T5056] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 81.271513][ T5056] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5056] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5056] rename("./file1", "./file0/file0") = 0
[pid 5056] mkdir("./file1", 000) = 0
[pid 5056] rename("./file1", "./file0/file0") = 0
[pid 5056] exit_group(0) = ?
[pid 5056] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5056, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=14 /* 0.14 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./9", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./9/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./9/binderfs") = 0
[ 81.304101][ T5056] overlayfs: upper fs needs to support d_type.
[ 81.310413][ T5056] overlayfs: upper fs does not support tmpfile.
[ 81.317867][ T5056] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./9/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./9/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./9/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./9") = 0
mkdir("./10", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5058
./strace-static-x86_64: Process 5058 attached
[pid 5058] set_robust_list(0x555556be0660, 24) = 0
[pid 5058] chdir("./10") = 0
[pid 5058] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5058] setpgid(0, 0) = 0
[pid 5058] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5058] write(3, "1000", 4) = 4
[pid 5058] close(3) = 0
[pid 5058] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5058] memfd_create("syzkaller", 0) = 3
[pid 5058] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5058] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5058] munmap(0x7f2010eff000, 138412032) = 0
[pid 5058] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5058] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5058] close(3) = 0
[pid 5058] mkdir("./file0", 0777) = 0
[ 81.453610][ T5058] loop0: detected capacity change from 0 to 8192
[ 81.463329][ T5058] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 81.476580][ T5058] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 81.486080][ T5058] REISERFS (device loop0): using ordered data mode
[ 81.492586][ T5058] reiserfs: using flush barriers
[pid 5058] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5058] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5058] chdir("./file0") = 0
[pid 5058] ioctl(4, LOOP_CLR_FD) = 0
[pid 5058] close(4) = 0
[ 81.498913][ T5058] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 81.515613][ T5058] REISERFS (device loop0): checking transaction log (loop0)
[ 81.523717][ T5058] REISERFS (device loop0): Using r5 hash to sort names
[ 81.530823][ T5058] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 81.543622][ T5058] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5058] mkdir("./file1", 000) = 0
[pid 5058] mkdir("./bus", 000) = 0
[pid 5058] mkdir("./file0", 000) = 0
[pid 5058] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5058] rename("./file1", "./file0/file0") = 0
[pid 5058] mkdir("./file1", 000) = 0
[pid 5058] rename("./file1", "./file0/file0") = 0
[pid 5058] exit_group(0) = ?
[pid 5058] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5058, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=12 /* 0.12 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./10", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./10/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./10/binderfs") = 0
[ 81.559538][ T5058] overlayfs: upper fs needs to support d_type.
[ 81.565836][ T5058] overlayfs: upper fs does not support tmpfile.
[ 81.573177][ T5058] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./10/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./10/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./10/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./10") = 0
mkdir("./11", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5060
./strace-static-x86_64: Process 5060 attached
[pid 5060] set_robust_list(0x555556be0660, 24) = 0
[pid 5060] chdir("./11") = 0
[pid 5060] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5060] setpgid(0, 0) = 0
[pid 5060] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5060] write(3, "1000", 4) = 4
[pid 5060] close(3) = 0
[pid 5060] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5060] memfd_create("syzkaller", 0) = 3
[pid 5060] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5060] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5060] munmap(0x7f2010eff000, 138412032) = 0
[pid 5060] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5060] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5060] close(3) = 0
[pid 5060] mkdir("./file0", 0777) = 0
[ 81.720248][ T5060] loop0: detected capacity change from 0 to 8192
[ 81.730052][ T5060] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 81.743303][ T5060] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 81.752553][ T5060] REISERFS (device loop0): using ordered data mode
[ 81.759185][ T5060] reiserfs: using flush barriers
[pid 5060] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5060] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5060] chdir("./file0") = 0
[ 81.765545][ T5060] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 81.782272][ T5060] REISERFS (device loop0): checking transaction log (loop0)
[ 81.790472][ T5060] REISERFS (device loop0): Using r5 hash to sort names
[ 81.797620][ T5060] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 81.810398][ T5060] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5060] ioctl(4, LOOP_CLR_FD) = 0
[pid 5060] close(4) = 0
[pid 5060] mkdir("./file1", 000) = 0
[pid 5060] mkdir("./bus", 000) = 0
[pid 5060] mkdir("./file0", 000) = 0
[pid 5060] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5060] rename("./file1", "./file0/file0") = 0
[pid 5060] mkdir("./file1", 000) = 0
[pid 5060] rename("./file1", "./file0/file0") = 0
[pid 5060] exit_group(0) = ?
[pid 5060] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5060, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} ---
umount2("./11", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./11/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./11/binderfs") = 0
[ 81.825770][ T5060] overlayfs: upper fs needs to support d_type.
[ 81.832312][ T5060] overlayfs: upper fs does not support tmpfile.
[ 81.840956][ T5060] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./11/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./11/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./11/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./11") = 0
mkdir("./12", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5062 attached
, child_tidptr=0x555556be0650) = 5062
[pid 5062] set_robust_list(0x555556be0660, 24) = 0
[pid 5062] chdir("./12") = 0
[pid 5062] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5062] setpgid(0, 0) = 0
[pid 5062] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5062] write(3, "1000", 4) = 4
[pid 5062] close(3) = 0
[pid 5062] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5062] memfd_create("syzkaller", 0) = 3
[pid 5062] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5062] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5062] munmap(0x7f2010eff000, 138412032) = 0
[pid 5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5062] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5062] close(3) = 0
[pid 5062] mkdir("./file0", 0777) = 0
[ 81.982283][ T5062] loop0: detected capacity change from 0 to 8192
[ 81.991645][ T5062] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 82.005122][ T5062] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 82.014566][ T5062] REISERFS (device loop0): using ordered data mode
[ 82.021065][ T5062] reiserfs: using flush barriers
[pid 5062] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5062] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5062] chdir("./file0") = 0
[pid 5062] ioctl(4, LOOP_CLR_FD) = 0
[pid 5062] close(4) = 0
[pid 5062] mkdir("./file1", 000) = 0
[pid 5062] mkdir("./bus", 000) = 0
[pid 5062] mkdir("./file0", 000) = 0
[ 82.027682][ T5062] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 82.044565][ T5062] REISERFS (device loop0): checking transaction log (loop0)
[ 82.052824][ T5062] REISERFS (device loop0): Using r5 hash to sort names
[ 82.060160][ T5062] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 82.073724][ T5062] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5062] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5062] rename("./file1", "./file0/file0") = 0
[pid 5062] mkdir("./file1", 000) = 0
[pid 5062] rename("./file1", "./file0/file0") = 0
[pid 5062] exit_group(0) = ?
[pid 5062] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5062, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=13 /* 0.13 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./12", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./12/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./12/binderfs") = 0
[ 82.094662][ T5062] overlayfs: upper fs needs to support d_type.
[ 82.101237][ T5062] overlayfs: upper fs does not support tmpfile.
[ 82.108910][ T5062] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./12/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./12/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./12/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./12") = 0
mkdir("./13", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5064 attached
, child_tidptr=0x555556be0650) = 5064
[pid 5064] set_robust_list(0x555556be0660, 24) = 0
[pid 5064] chdir("./13") = 0
[pid 5064] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5064] setpgid(0, 0) = 0
[pid 5064] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5064] write(3, "1000", 4) = 4
[pid 5064] close(3) = 0
[pid 5064] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5064] memfd_create("syzkaller", 0) = 3
[pid 5064] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5064] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5064] munmap(0x7f2010eff000, 138412032) = 0
[pid 5064] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5064] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5064] close(3) = 0
[pid 5064] mkdir("./file0", 0777) = 0
[ 82.304802][ T5064] loop0: detected capacity change from 0 to 8192
[ 82.314750][ T5064] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 82.328596][ T5064] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 82.338257][ T5064] REISERFS (device loop0): using ordered data mode
[ 82.344932][ T5064] reiserfs: using flush barriers
[ 82.351311][ T5064] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 82.367797][ T5064] REISERFS (device loop0): checking transaction log (loop0)
[ 82.376330][ T5064] REISERFS (device loop0): Using r5 hash to sort names
[ 82.383411][ T5064] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[pid 5064] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5064] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5064] chdir("./file0") = 0
[pid 5064] ioctl(4, LOOP_CLR_FD) = 0
[pid 5064] close(4) = 0
[pid 5064] mkdir("./file1", 000) = 0
[pid 5064] mkdir("./bus", 000) = 0
[pid 5064] mkdir("./file0", 000) = 0
[ 82.396476][ T5064] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5064] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5064] rename("./file1", "./file0/file0") = 0
[pid 5064] mkdir("./file1", 000) = 0
[pid 5064] rename("./file1", "./file0/file0") = 0
[pid 5064] exit_group(0) = ?
[pid 5064] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5064, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} ---
umount2("./13", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./13/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./13/binderfs") = 0
[ 82.431226][ T5064] overlayfs: upper fs needs to support d_type.
[ 82.437699][ T5064] overlayfs: upper fs does not support tmpfile.
[ 82.445370][ T5064] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./13/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./13/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./13/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./13") = 0
mkdir("./14", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5066
./strace-static-x86_64: Process 5066 attached
[pid 5066] set_robust_list(0x555556be0660, 24) = 0
[pid 5066] chdir("./14") = 0
[pid 5066] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5066] setpgid(0, 0) = 0
[pid 5066] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5066] write(3, "1000", 4) = 4
[pid 5066] close(3) = 0
[pid 5066] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5066] memfd_create("syzkaller", 0) = 3
[pid 5066] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5066] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5066] munmap(0x7f2010eff000, 138412032) = 0
[pid 5066] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5066] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5066] close(3) = 0
[pid 5066] mkdir("./file0", 0777) = 0
[ 82.582314][ T5066] loop0: detected capacity change from 0 to 8192
[ 82.593248][ T5066] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 82.606740][ T5066] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 82.616157][ T5066] REISERFS (device loop0): using ordered data mode
[ 82.622697][ T5066] reiserfs: using flush barriers
[ 82.629238][ T5066] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 82.645773][ T5066] REISERFS (device loop0): checking transaction log (loop0)
[ 82.654103][ T5066] REISERFS (device loop0): Using r5 hash to sort names
[ 82.661168][ T5066] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 82.673910][ T5066] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5066] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5066] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5066] chdir("./file0") = 0
[pid 5066] ioctl(4, LOOP_CLR_FD) = 0
[pid 5066] close(4) = 0
[pid 5066] mkdir("./file1", 000) = 0
[pid 5066] mkdir("./bus", 000) = 0
[pid 5066] mkdir("./file0", 000) = 0
[pid 5066] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5066] rename("./file1", "./file0/file0") = 0
[pid 5066] mkdir("./file1", 000) = 0
[pid 5066] rename("./file1", "./file0/file0") = 0
[pid 5066] exit_group(0) = ?
[pid 5066] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5066, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=9 /* 0.09 s */} ---
umount2("./14", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./14/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./14/binderfs") = 0
[ 82.697780][ T5066] overlayfs: upper fs needs to support d_type.
[ 82.704179][ T5066] overlayfs: upper fs does not support tmpfile.
[ 82.714392][ T5066] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./14/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./14/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./14/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./14") = 0
mkdir("./15", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5068
./strace-static-x86_64: Process 5068 attached
[pid 5068] set_robust_list(0x555556be0660, 24) = 0
[pid 5068] chdir("./15") = 0
[pid 5068] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5068] setpgid(0, 0) = 0
[pid 5068] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5068] write(3, "1000", 4) = 4
[pid 5068] close(3) = 0
[pid 5068] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5068] memfd_create("syzkaller", 0) = 3
[pid 5068] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5068] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5068] munmap(0x7f2010eff000, 138412032) = 0
[pid 5068] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5068] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5068] close(3) = 0
[pid 5068] mkdir("./file0", 0777) = 0
[ 82.869204][ T5068] loop0: detected capacity change from 0 to 8192
[ 82.878725][ T5068] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 82.891886][ T5068] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 82.901338][ T5068] REISERFS (device loop0): using ordered data mode
[ 82.908036][ T5068] reiserfs: using flush barriers
[pid 5068] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5068] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5068] chdir("./file0") = 0
[pid 5068] ioctl(4, LOOP_CLR_FD) = 0
[pid 5068] close(4) = 0
[pid 5068] mkdir("./file1", 000) = 0
[pid 5068] mkdir("./bus", 000) = 0
[pid 5068] mkdir("./file0", 000) = 0
[ 82.914528][ T5068] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 82.931126][ T5068] REISERFS (device loop0): checking transaction log (loop0)
[ 82.939457][ T5068] REISERFS (device loop0): Using r5 hash to sort names
[ 82.946805][ T5068] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 82.959589][ T5068] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5068] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5068] rename("./file1", "./file0/file0") = 0
[pid 5068] mkdir("./file1", 000) = 0
[pid 5068] rename("./file1", "./file0/file0") = 0
[pid 5068] exit_group(0) = ?
[pid 5068] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5068, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} ---
umount2("./15", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./15/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./15/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./15/binderfs") = 0
[ 82.976152][ T5068] overlayfs: upper fs needs to support d_type.
[ 82.982705][ T5068] overlayfs: upper fs does not support tmpfile.
[ 82.989758][ T5068] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./15/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./15/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./15/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./15") = 0
mkdir("./16", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5070
./strace-static-x86_64: Process 5070 attached
[pid 5070] set_robust_list(0x555556be0660, 24) = 0
[pid 5070] chdir("./16") = 0
[pid 5070] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5070] setpgid(0, 0) = 0
[pid 5070] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5070] write(3, "1000", 4) = 4
[pid 5070] close(3) = 0
[pid 5070] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5070] memfd_create("syzkaller", 0) = 3
[pid 5070] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5070] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5070] munmap(0x7f2010eff000, 138412032) = 0
[pid 5070] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5070] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5070] close(3) = 0
[pid 5070] mkdir("./file0", 0777) = 0
[ 83.120303][ T5070] loop0: detected capacity change from 0 to 8192
[ 83.129526][ T5070] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 83.142840][ T5070] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 83.152262][ T5070] REISERFS (device loop0): using ordered data mode
[ 83.159009][ T5070] reiserfs: using flush barriers
[pid 5070] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5070] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5070] chdir("./file0") = 0
[pid 5070] ioctl(4, LOOP_CLR_FD) = 0
[pid 5070] close(4) = 0
[pid 5070] mkdir("./file1", 000) = 0
[pid 5070] mkdir("./bus", 000) = 0
[pid 5070] mkdir("./file0", 000) = 0
[ 83.165402][ T5070] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 83.182251][ T5070] REISERFS (device loop0): checking transaction log (loop0)
[ 83.190607][ T5070] REISERFS (device loop0): Using r5 hash to sort names
[ 83.197940][ T5070] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 83.210860][ T5070] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5070] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5070] rename("./file1", "./file0/file0") = 0
[pid 5070] mkdir("./file1", 000) = 0
[pid 5070] rename("./file1", "./file0/file0") = 0
[pid 5070] exit_group(0) = ?
[pid 5070] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5070, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} ---
umount2("./16", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./16/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./16/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./16/binderfs") = 0
[ 83.226961][ T5070] overlayfs: upper fs needs to support d_type.
[ 83.233274][ T5070] overlayfs: upper fs does not support tmpfile.
[ 83.240813][ T5070] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./16/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./16/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./16/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./16") = 0
mkdir("./17", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5072
./strace-static-x86_64: Process 5072 attached
[pid 5072] set_robust_list(0x555556be0660, 24) = 0
[pid 5072] chdir("./17") = 0
[pid 5072] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5072] setpgid(0, 0) = 0
[pid 5072] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5072] write(3, "1000", 4) = 4
[pid 5072] close(3) = 0
[pid 5072] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5072] memfd_create("syzkaller", 0) = 3
[pid 5072] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5072] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5072] munmap(0x7f2010eff000, 138412032) = 0
[pid 5072] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5072] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5072] close(3) = 0
[pid 5072] mkdir("./file0", 0777) = 0
[ 83.367335][ T5072] loop0: detected capacity change from 0 to 8192
[ 83.376608][ T5072] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 83.390124][ T5072] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 83.399697][ T5072] REISERFS (device loop0): using ordered data mode
[ 83.406370][ T5072] reiserfs: using flush barriers
[pid 5072] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[ 83.412655][ T5072] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 83.429300][ T5072] REISERFS (device loop0): checking transaction log (loop0)
[ 83.437429][ T5072] REISERFS (device loop0): Using r5 hash to sort names
[ 83.444593][ T5072] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 83.457309][ T5072] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5072] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5072] chdir("./file0") = 0
[pid 5072] ioctl(4, LOOP_CLR_FD) = 0
[pid 5072] close(4) = 0
[pid 5072] mkdir("./file1", 000) = 0
[pid 5072] mkdir("./bus", 000) = 0
[pid 5072] mkdir("./file0", 000) = 0
[pid 5072] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5072] rename("./file1", "./file0/file0") = 0
[pid 5072] mkdir("./file1", 000) = 0
[pid 5072] rename("./file1", "./file0/file0") = 0
[pid 5072] exit_group(0) = ?
[pid 5072] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5072, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} ---
umount2("./17", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./17/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./17/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./17/binderfs") = 0
[ 83.471650][ T5072] overlayfs: upper fs needs to support d_type.
[ 83.478208][ T5072] overlayfs: upper fs does not support tmpfile.
[ 83.491067][ T5072] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./17/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./17/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./17/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./17") = 0
mkdir("./18", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5074 attached
, child_tidptr=0x555556be0650) = 5074
[pid 5074] set_robust_list(0x555556be0660, 24) = 0
[pid 5074] chdir("./18") = 0
[pid 5074] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5074] setpgid(0, 0) = 0
[pid 5074] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5074] write(3, "1000", 4) = 4
[pid 5074] close(3) = 0
[pid 5074] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5074] memfd_create("syzkaller", 0) = 3
[pid 5074] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5074] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5074] munmap(0x7f2010eff000, 138412032) = 0
[pid 5074] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5074] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5074] close(3) = 0
[pid 5074] mkdir("./file0", 0777) = 0
[ 83.643264][ T5074] loop0: detected capacity change from 0 to 8192
[ 83.653926][ T5074] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 83.667000][ T5074] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 83.676217][ T5074] REISERFS (device loop0): using ordered data mode
[ 83.682758][ T5074] reiserfs: using flush barriers
[pid 5074] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5074] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5074] chdir("./file0") = 0
[pid 5074] ioctl(4, LOOP_CLR_FD) = 0
[pid 5074] close(4) = 0
[pid 5074] mkdir("./file1", 000) = 0
[pid 5074] mkdir("./bus", 000) = 0
[pid 5074] mkdir("./file0", 000) = 0
[ 83.689366][ T5074] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 83.705791][ T5074] REISERFS (device loop0): checking transaction log (loop0)
[ 83.714541][ T5074] REISERFS (device loop0): Using r5 hash to sort names
[ 83.721611][ T5074] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 83.734426][ T5074] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5074] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5074] rename("./file1", "./file0/file0") = 0
[pid 5074] mkdir("./file1", 000) = 0
[pid 5074] rename("./file1", "./file0/file0") = 0
[pid 5074] exit_group(0) = ?
[pid 5074] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5074, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./18", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./18/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./18/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./18/binderfs") = 0
[ 83.755542][ T5074] overlayfs: upper fs needs to support d_type.
[ 83.763648][ T5074] overlayfs: upper fs does not support tmpfile.
[ 83.770866][ T5074] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./18/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./18/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./18/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./18") = 0
mkdir("./19", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5076 attached
, child_tidptr=0x555556be0650) = 5076
[pid 5076] set_robust_list(0x555556be0660, 24) = 0
[pid 5076] chdir("./19") = 0
[pid 5076] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5076] setpgid(0, 0) = 0
[pid 5076] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5076] write(3, "1000", 4) = 4
[pid 5076] close(3) = 0
[pid 5076] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5076] memfd_create("syzkaller", 0) = 3
[pid 5076] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5076] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5076] munmap(0x7f2010eff000, 138412032) = 0
[pid 5076] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5076] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5076] close(3) = 0
[pid 5076] mkdir("./file0", 0777) = 0
[ 83.909845][ T5076] loop0: detected capacity change from 0 to 8192
[ 83.919850][ T5076] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 83.932955][ T5076] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 83.942189][ T5076] REISERFS (device loop0): using ordered data mode
[ 83.948846][ T5076] reiserfs: using flush barriers
[pid 5076] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5076] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5076] chdir("./file0") = 0
[pid 5076] ioctl(4, LOOP_CLR_FD) = 0
[pid 5076] close(4) = 0
[pid 5076] mkdir("./file1", 000) = 0
[pid 5076] mkdir("./bus", 000) = 0
[pid 5076] mkdir("./file0", 000) = 0
[ 83.955107][ T5076] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 83.971771][ T5076] REISERFS (device loop0): checking transaction log (loop0)
[ 83.980179][ T5076] REISERFS (device loop0): Using r5 hash to sort names
[ 83.987482][ T5076] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 84.000872][ T5076] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5076] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5076] rename("./file1", "./file0/file0") = 0
[pid 5076] mkdir("./file1", 000) = 0
[pid 5076] rename("./file1", "./file0/file0") = 0
[pid 5076] exit_group(0) = ?
[pid 5076] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5076, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=17 /* 0.17 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./19", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./19/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./19/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./19/binderfs") = 0
[ 84.036129][ T5076] overlayfs: upper fs needs to support d_type.
[ 84.042347][ T5076] overlayfs: upper fs does not support tmpfile.
[ 84.050946][ T5076] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./19/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./19/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./19/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./19") = 0
mkdir("./20", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5078 attached
, child_tidptr=0x555556be0650) = 5078
[pid 5078] set_robust_list(0x555556be0660, 24) = 0
[pid 5078] chdir("./20") = 0
[pid 5078] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5078] setpgid(0, 0) = 0
[pid 5078] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5078] write(3, "1000", 4) = 4
[pid 5078] close(3) = 0
[pid 5078] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5078] memfd_create("syzkaller", 0) = 3
[pid 5078] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5078] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5078] munmap(0x7f2010eff000, 138412032) = 0
[pid 5078] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5078] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5078] close(3) = 0
[pid 5078] mkdir("./file0", 0777) = 0
[ 84.226229][ T5078] loop0: detected capacity change from 0 to 8192
[ 84.239470][ T5078] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 84.252447][ T5078] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 84.261986][ T5078] REISERFS (device loop0): using ordered data mode
[ 84.268509][ T5078] reiserfs: using flush barriers
[ 84.274900][ T5078] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 84.291500][ T5078] REISERFS (device loop0): checking transaction log (loop0)
[ 84.299671][ T5078] REISERFS (device loop0): Using r5 hash to sort names
[ 84.306872][ T5078] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[pid 5078] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5078] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5078] chdir("./file0") = 0
[pid 5078] ioctl(4, LOOP_CLR_FD) = 0
[pid 5078] close(4) = 0
[pid 5078] mkdir("./file1", 000) = 0
[pid 5078] mkdir("./bus", 000) = 0
[pid 5078] mkdir("./file0", 000) = 0
[ 84.319852][ T5078] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5078] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5078] rename("./file1", "./file0/file0") = 0
[pid 5078] mkdir("./file1", 000) = 0
[pid 5078] rename("./file1", "./file0/file0") = 0
[pid 5078] exit_group(0) = ?
[pid 5078] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5078, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=15 /* 0.15 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./20", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./20/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./20/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./20/binderfs") = 0
[ 84.348533][ T5078] overlayfs: upper fs needs to support d_type.
[ 84.354936][ T5078] overlayfs: upper fs does not support tmpfile.
[ 84.362692][ T5078] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./20/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./20/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./20/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./20") = 0
mkdir("./21", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5080
./strace-static-x86_64: Process 5080 attached
[pid 5080] set_robust_list(0x555556be0660, 24) = 0
[pid 5080] chdir("./21") = 0
[pid 5080] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5080] setpgid(0, 0) = 0
[pid 5080] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5080] write(3, "1000", 4) = 4
[pid 5080] close(3) = 0
[pid 5080] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5080] memfd_create("syzkaller", 0) = 3
[pid 5080] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5080] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5080] munmap(0x7f2010eff000, 138412032) = 0
[pid 5080] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5080] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5080] close(3) = 0
[pid 5080] mkdir("./file0", 0777) = 0
[ 84.514006][ T5080] loop0: detected capacity change from 0 to 8192
[ 84.523535][ T5080] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 84.536642][ T5080] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 84.546121][ T5080] REISERFS (device loop0): using ordered data mode
[ 84.552788][ T5080] reiserfs: using flush barriers
[pid 5080] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5080] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5080] chdir("./file0") = 0
[ 84.559171][ T5080] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 84.575703][ T5080] REISERFS (device loop0): checking transaction log (loop0)
[ 84.583641][ T5080] REISERFS (device loop0): Using r5 hash to sort names
[ 84.590739][ T5080] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 84.603743][ T5080] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5080] ioctl(4, LOOP_CLR_FD) = 0
[pid 5080] close(4) = 0
[pid 5080] mkdir("./file1", 000) = 0
[pid 5080] mkdir("./bus", 000) = 0
[pid 5080] mkdir("./file0", 000) = 0
[pid 5080] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5080] rename("./file1", "./file0/file0") = 0
[pid 5080] mkdir("./file1", 000) = 0
[pid 5080] rename("./file1", "./file0/file0") = 0
[pid 5080] exit_group(0) = ?
[pid 5080] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5080, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./21", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./21", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./21/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./21/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./21/binderfs") = 0
[ 84.618884][ T5080] overlayfs: upper fs needs to support d_type.
[ 84.625494][ T5080] overlayfs: upper fs does not support tmpfile.
[ 84.632904][ T5080] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./21/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./21/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./21/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./21") = 0
mkdir("./22", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5082
./strace-static-x86_64: Process 5082 attached
[pid 5082] set_robust_list(0x555556be0660, 24) = 0
[pid 5082] chdir("./22") = 0
[pid 5082] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5082] setpgid(0, 0) = 0
[pid 5082] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5082] write(3, "1000", 4) = 4
[pid 5082] close(3) = 0
[pid 5082] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5082] memfd_create("syzkaller", 0) = 3
[pid 5082] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5082] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5082] munmap(0x7f2010eff000, 138412032) = 0
[pid 5082] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5082] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5082] close(3) = 0
[pid 5082] mkdir("./file0", 0777) = 0
[ 84.768770][ T5082] loop0: detected capacity change from 0 to 8192
[ 84.778501][ T5082] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 84.791604][ T5082] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 84.801093][ T5082] REISERFS (device loop0): using ordered data mode
[ 84.807817][ T5082] reiserfs: using flush barriers
[pid 5082] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5082] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5082] chdir("./file0") = 0
[pid 5082] ioctl(4, LOOP_CLR_FD) = 0
[pid 5082] close(4) = 0
[pid 5082] mkdir("./file1", 000) = 0
[pid 5082] mkdir("./bus", 000) = 0
[pid 5082] mkdir("./file0", 000) = 0
[ 84.814350][ T5082] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 84.830764][ T5082] REISERFS (device loop0): checking transaction log (loop0)
[ 84.838798][ T5082] REISERFS (device loop0): Using r5 hash to sort names
[ 84.845915][ T5082] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 84.858641][ T5082] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5082] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5082] rename("./file1", "./file0/file0") = 0
[pid 5082] mkdir("./file1", 000) = 0
[pid 5082] rename("./file1", "./file0/file0") = 0
[pid 5082] exit_group(0) = ?
[pid 5082] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5082, si_uid=0, si_status=0, si_utime=0, si_stime=17 /* 0.17 s */} ---
umount2("./22", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./22", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./22/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./22/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./22/binderfs") = 0
[ 84.891202][ T5082] overlayfs: upper fs needs to support d_type.
[ 84.897685][ T5082] overlayfs: upper fs does not support tmpfile.
[ 84.904797][ T5082] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./22/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./22/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./22/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./22") = 0
mkdir("./23", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5084
./strace-static-x86_64: Process 5084 attached
[pid 5084] set_robust_list(0x555556be0660, 24) = 0
[pid 5084] chdir("./23") = 0
[pid 5084] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5084] setpgid(0, 0) = 0
[pid 5084] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5084] write(3, "1000", 4) = 4
[pid 5084] close(3) = 0
[pid 5084] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5084] memfd_create("syzkaller", 0) = 3
[pid 5084] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5084] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5084] munmap(0x7f2010eff000, 138412032) = 0
[pid 5084] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5084] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5084] close(3) = 0
[pid 5084] mkdir("./file0", 0777) = 0
[ 85.038694][ T5084] loop0: detected capacity change from 0 to 8192
[ 85.048524][ T5084] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 85.061749][ T5084] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 85.071054][ T5084] REISERFS (device loop0): using ordered data mode
[ 85.077570][ T5084] reiserfs: using flush barriers
[pid 5084] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5084] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5084] chdir("./file0") = 0
[pid 5084] ioctl(4, LOOP_CLR_FD) = 0
[pid 5084] close(4) = 0
[pid 5084] mkdir("./file1", 000) = 0
[pid 5084] mkdir("./bus", 000) = 0
[pid 5084] mkdir("./file0", 000) = 0
[ 85.084000][ T5084] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 85.100406][ T5084] REISERFS (device loop0): checking transaction log (loop0)
[ 85.108798][ T5084] REISERFS (device loop0): Using r5 hash to sort names
[ 85.116122][ T5084] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 85.129137][ T5084] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5084] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5084] rename("./file1", "./file0/file0") = 0
[pid 5084] mkdir("./file1", 000) = 0
[pid 5084] rename("./file1", "./file0/file0") = 0
[pid 5084] exit_group(0) = ?
[pid 5084] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5084, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=16 /* 0.16 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./23", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./23", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./23/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./23/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./23/binderfs") = 0
[ 85.150463][ T5084] overlayfs: upper fs needs to support d_type.
[ 85.156759][ T5084] overlayfs: upper fs does not support tmpfile.
[ 85.164914][ T5084] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./23/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./23/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./23/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./23") = 0
mkdir("./24", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5086
./strace-static-x86_64: Process 5086 attached
[pid 5086] set_robust_list(0x555556be0660, 24) = 0
[pid 5086] chdir("./24") = 0
[pid 5086] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5086] setpgid(0, 0) = 0
[pid 5086] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5086] write(3, "1000", 4) = 4
[pid 5086] close(3) = 0
[pid 5086] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5086] memfd_create("syzkaller", 0) = 3
[pid 5086] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5086] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5086] munmap(0x7f2010eff000, 138412032) = 0
[pid 5086] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5086] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5086] close(3) = 0
[pid 5086] mkdir("./file0", 0777) = 0
[ 85.315164][ T5086] loop0: detected capacity change from 0 to 8192
[ 85.325190][ T5086] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 85.338208][ T5086] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 85.348285][ T5086] REISERFS (device loop0): using ordered data mode
[ 85.355127][ T5086] reiserfs: using flush barriers
[ 85.361435][ T5086] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 85.378177][ T5086] REISERFS (device loop0): checking transaction log (loop0)
[ 85.386527][ T5086] REISERFS (device loop0): Using r5 hash to sort names
[ 85.393749][ T5086] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 85.406764][ T5086] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5086] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5086] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5086] chdir("./file0") = 0
[pid 5086] ioctl(4, LOOP_CLR_FD) = 0
[pid 5086] close(4) = 0
[pid 5086] mkdir("./file1", 000) = 0
[pid 5086] mkdir("./bus", 000) = 0
[pid 5086] mkdir("./file0", 000) = 0
[pid 5086] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5086] rename("./file1", "./file0/file0") = 0
[pid 5086] mkdir("./file1", 000) = 0
[pid 5086] rename("./file1", "./file0/file0") = 0
[pid 5086] exit_group(0) = ?
[pid 5086] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5086, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=14 /* 0.14 s */} ---
umount2("./24", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./24/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./24/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./24/binderfs") = 0
[ 85.425139][ T5086] overlayfs: upper fs needs to support d_type.
[ 85.431419][ T5086] overlayfs: upper fs does not support tmpfile.
[ 85.438909][ T5086] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./24/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./24/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./24") = 0
mkdir("./25", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5088 attached
, child_tidptr=0x555556be0650) = 5088
[pid 5088] set_robust_list(0x555556be0660, 24) = 0
[pid 5088] chdir("./25") = 0
[pid 5088] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5088] setpgid(0, 0) = 0
[pid 5088] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5088] write(3, "1000", 4) = 4
[pid 5088] close(3) = 0
[pid 5088] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5088] memfd_create("syzkaller", 0) = 3
[pid 5088] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5088] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5088] munmap(0x7f2010eff000, 138412032) = 0
[pid 5088] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5088] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5088] close(3) = 0
[pid 5088] mkdir("./file0", 0777) = 0
[ 85.568176][ T5088] loop0: detected capacity change from 0 to 8192
[ 85.577815][ T5088] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 85.591075][ T5088] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 85.600383][ T5088] REISERFS (device loop0): using ordered data mode
[ 85.607064][ T5088] reiserfs: using flush barriers
[pid 5088] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5088] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5088] chdir("./file0") = 0
[pid 5088] ioctl(4, LOOP_CLR_FD) = 0
[pid 5088] close(4) = 0
[pid 5088] mkdir("./file1", 000) = 0
[pid 5088] mkdir("./bus", 000) = 0
[pid 5088] mkdir("./file0", 000) = 0
[ 85.613345][ T5088] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 85.630145][ T5088] REISERFS (device loop0): checking transaction log (loop0)
[ 85.638342][ T5088] REISERFS (device loop0): Using r5 hash to sort names
[ 85.645509][ T5088] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 85.658576][ T5088] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5088] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5088] rename("./file1", "./file0/file0") = 0
[pid 5088] mkdir("./file1", 000) = 0
[pid 5088] rename("./file1", "./file0/file0") = 0
[pid 5088] exit_group(0) = ?
[pid 5088] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5088, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./25", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./25/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./25/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./25/binderfs") = 0
umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./25/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./25/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
[ 85.674912][ T5088] overlayfs: upper fs needs to support d_type.
[ 85.681187][ T5088] overlayfs: upper fs does not support tmpfile.
[ 85.688955][ T5088] overlayfs: upper fs does not support RENAME_WHITEOUT.
rmdir("./25") = 0
mkdir("./26", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5090
./strace-static-x86_64: Process 5090 attached
[pid 5090] set_robust_list(0x555556be0660, 24) = 0
[pid 5090] chdir("./26") = 0
[pid 5090] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5090] setpgid(0, 0) = 0
[pid 5090] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5090] write(3, "1000", 4) = 4
[pid 5090] close(3) = 0
[pid 5090] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5090] memfd_create("syzkaller", 0) = 3
[pid 5090] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5090] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5090] munmap(0x7f2010eff000, 138412032) = 0
[pid 5090] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5090] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5090] close(3) = 0
[pid 5090] mkdir("./file0", 0777) = 0
[ 85.830479][ T5090] loop0: detected capacity change from 0 to 8192
[ 85.839594][ T5090] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 85.853052][ T5090] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 85.862473][ T5090] REISERFS (device loop0): using ordered data mode
[ 85.869327][ T5090] reiserfs: using flush barriers
[pid 5090] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5090] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5090] chdir("./file0") = 0
[pid 5090] ioctl(4, LOOP_CLR_FD) = 0
[pid 5090] close(4) = 0
[pid 5090] mkdir("./file1", 000) = 0
[pid 5090] mkdir("./bus", 000) = 0
[pid 5090] mkdir("./file0", 000) = 0
[ 85.875798][ T5090] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 85.892291][ T5090] REISERFS (device loop0): checking transaction log (loop0)
[ 85.900510][ T5090] REISERFS (device loop0): Using r5 hash to sort names
[ 85.907724][ T5090] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 85.920507][ T5090] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5090] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5090] rename("./file1", "./file0/file0") = 0
[pid 5090] mkdir("./file1", 000) = 0
[pid 5090] rename("./file1", "./file0/file0") = 0
[pid 5090] exit_group(0) = ?
[pid 5090] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5090, si_uid=0, si_status=0, si_utime=0, si_stime=18 /* 0.18 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./26", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./26/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./26/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./26/binderfs") = 0
[ 85.948460][ T5090] overlayfs: upper fs needs to support d_type.
[ 85.955235][ T5090] overlayfs: upper fs does not support tmpfile.
[ 85.963281][ T5090] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./26/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./26/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./26") = 0
mkdir("./27", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5092
./strace-static-x86_64: Process 5092 attached
[pid 5092] set_robust_list(0x555556be0660, 24) = 0
[pid 5092] chdir("./27") = 0
[pid 5092] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5092] setpgid(0, 0) = 0
[pid 5092] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5092] write(3, "1000", 4) = 4
[pid 5092] close(3) = 0
[pid 5092] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5092] memfd_create("syzkaller", 0) = 3
[pid 5092] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5092] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5092] munmap(0x7f2010eff000, 138412032) = 0
[pid 5092] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5092] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5092] close(3) = 0
[pid 5092] mkdir("./file0", 0777) = 0
[ 86.096074][ T5092] loop0: detected capacity change from 0 to 8192
[ 86.106218][ T5092] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 86.119308][ T5092] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 86.128577][ T5092] REISERFS (device loop0): using ordered data mode
[ 86.135636][ T5092] reiserfs: using flush barriers
[pid 5092] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5092] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5092] chdir("./file0") = 0
[pid 5092] ioctl(4, LOOP_CLR_FD) = 0
[pid 5092] close(4) = 0
[pid 5092] mkdir("./file1", 000) = 0
[ 86.142094][ T5092] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 86.158588][ T5092] REISERFS (device loop0): checking transaction log (loop0)
[ 86.166767][ T5092] REISERFS (device loop0): Using r5 hash to sort names
[ 86.173845][ T5092] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 86.186648][ T5092] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5092] mkdir("./bus", 000) = 0
[pid 5092] mkdir("./file0", 000) = 0
[pid 5092] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5092] rename("./file1", "./file0/file0") = 0
[pid 5092] mkdir("./file1", 000) = 0
[pid 5092] rename("./file1", "./file0/file0") = 0
[pid 5092] exit_group(0) = ?
[pid 5092] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5092, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./27", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./27/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./27/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./27/binderfs") = 0
[ 86.201474][ T5092] overlayfs: upper fs needs to support d_type.
[ 86.208280][ T5092] overlayfs: upper fs does not support tmpfile.
[ 86.215940][ T5092] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./27/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./27/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./27") = 0
mkdir("./28", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5094 attached
[pid 5094] set_robust_list(0x555556be0660, 24) = 0
[pid 5094] chdir("./28") = 0
[pid 5094] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5094] setpgid(0, 0
[pid 5036] <... clone resumed>, child_tidptr=0x555556be0650) = 5094
[pid 5094] <... setpgid resumed>) = 0
[pid 5094] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5094] write(3, "1000", 4) = 4
[pid 5094] close(3) = 0
[pid 5094] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5094] memfd_create("syzkaller", 0) = 3
[pid 5094] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5094] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5094] munmap(0x7f2010eff000, 138412032) = 0
[pid 5094] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5094] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5094] close(3) = 0
[pid 5094] mkdir("./file0", 0777) = 0
[ 86.356330][ T5094] loop0: detected capacity change from 0 to 8192
[ 86.366521][ T5094] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 86.379535][ T5094] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 86.388777][ T5094] REISERFS (device loop0): using ordered data mode
[ 86.395368][ T5094] reiserfs: using flush barriers
[pid 5094] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5094] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5094] chdir("./file0") = 0
[pid 5094] ioctl(4, LOOP_CLR_FD) = 0
[pid 5094] close(4) = 0
[pid 5094] mkdir("./file1", 000) = 0
[pid 5094] mkdir("./bus", 000) = 0
[pid 5094] mkdir("./file0", 000) = 0
[ 86.401540][ T5094] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 86.418180][ T5094] REISERFS (device loop0): checking transaction log (loop0)
[ 86.426310][ T5094] REISERFS (device loop0): Using r5 hash to sort names
[ 86.433358][ T5094] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 86.446181][ T5094] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5094] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5094] rename("./file1", "./file0/file0") = 0
[pid 5094] mkdir("./file1", 000) = 0
[pid 5094] rename("./file1", "./file0/file0") = 0
[pid 5094] exit_group(0) = ?
[pid 5094] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5094, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} ---
umount2("./28", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./28/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./28/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./28/binderfs") = 0
[ 86.461489][ T5094] overlayfs: upper fs needs to support d_type.
[ 86.468516][ T5094] overlayfs: upper fs does not support tmpfile.
[ 86.476218][ T5094] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./28/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./28/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./28") = 0
mkdir("./29", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5096
./strace-static-x86_64: Process 5096 attached
[pid 5096] set_robust_list(0x555556be0660, 24) = 0
[pid 5096] chdir("./29") = 0
[pid 5096] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5096] setpgid(0, 0) = 0
[pid 5096] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5096] write(3, "1000", 4) = 4
[pid 5096] close(3) = 0
[pid 5096] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5096] memfd_create("syzkaller", 0) = 3
[pid 5096] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5096] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5096] munmap(0x7f2010eff000, 138412032) = 0
[pid 5096] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5096] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5096] close(3) = 0
[pid 5096] mkdir("./file0", 0777) = 0
[ 86.617842][ T5096] loop0: detected capacity change from 0 to 8192
[ 86.627309][ T5096] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 86.640320][ T5096] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 86.649599][ T5096] REISERFS (device loop0): using ordered data mode
[ 86.656323][ T5096] reiserfs: using flush barriers
[pid 5096] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5096] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5096] chdir("./file0") = 0
[pid 5096] ioctl(4, LOOP_CLR_FD) = 0
[pid 5096] close(4) = 0
[pid 5096] mkdir("./file1", 000) = 0
[pid 5096] mkdir("./bus", 000) = 0
[pid 5096] mkdir("./file0", 000) = 0
[ 86.662659][ T5096] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 86.679297][ T5096] REISERFS (device loop0): checking transaction log (loop0)
[ 86.687562][ T5096] REISERFS (device loop0): Using r5 hash to sort names
[ 86.694770][ T5096] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 86.707777][ T5096] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5096] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5096] rename("./file1", "./file0/file0") = 0
[pid 5096] mkdir("./file1", 000) = 0
[pid 5096] rename("./file1", "./file0/file0") = 0
[pid 5096] exit_group(0) = ?
[pid 5096] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5096, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./29", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./29/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./29/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./29/binderfs") = 0
[ 86.728513][ T5096] overlayfs: upper fs needs to support d_type.
[ 86.735059][ T5096] overlayfs: upper fs does not support tmpfile.
[ 86.742207][ T5096] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./29/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./29/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./29") = 0
mkdir("./30", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5098 attached
, child_tidptr=0x555556be0650) = 5098
[pid 5098] set_robust_list(0x555556be0660, 24) = 0
[pid 5098] chdir("./30") = 0
[pid 5098] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5098] setpgid(0, 0) = 0
[pid 5098] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5098] write(3, "1000", 4) = 4
[pid 5098] close(3) = 0
[pid 5098] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5098] memfd_create("syzkaller", 0) = 3
[pid 5098] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5098] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5098] munmap(0x7f2010eff000, 138412032) = 0
[pid 5098] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5098] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5098] close(3) = 0
[pid 5098] mkdir("./file0", 0777) = 0
[ 86.887086][ T5098] loop0: detected capacity change from 0 to 8192
[ 86.897353][ T5098] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 86.910647][ T5098] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 86.920026][ T5098] REISERFS (device loop0): using ordered data mode
[ 86.926590][ T5098] reiserfs: using flush barriers
[pid 5098] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5098] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5098] chdir("./file0") = 0
[pid 5098] ioctl(4, LOOP_CLR_FD) = 0
[pid 5098] close(4) = 0
[pid 5098] mkdir("./file1", 000) = 0
[pid 5098] mkdir("./bus", 000) = 0
[pid 5098] mkdir("./file0", 000) = 0
[ 86.932782][ T5098] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 86.949416][ T5098] REISERFS (device loop0): checking transaction log (loop0)
[ 86.957628][ T5098] REISERFS (device loop0): Using r5 hash to sort names
[ 86.964839][ T5098] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 86.977674][ T5098] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5098] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5098] rename("./file1", "./file0/file0") = 0
[pid 5098] mkdir("./file1", 000) = 0
[pid 5098] rename("./file1", "./file0/file0") = 0
[pid 5098] exit_group(0) = ?
[pid 5098] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5098, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./30", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./30/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./30/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./30/binderfs") = 0
[ 86.994034][ T5098] overlayfs: upper fs needs to support d_type.
[ 87.000655][ T5098] overlayfs: upper fs does not support tmpfile.
[ 87.008167][ T5098] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./30/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./30/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./30") = 0
mkdir("./31", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5100 attached
[pid 5100] set_robust_list(0x555556be0660, 24) = 0
[pid 5036] <... clone resumed>, child_tidptr=0x555556be0650) = 5100
[pid 5100] chdir("./31") = 0
[pid 5100] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5100] setpgid(0, 0) = 0
[pid 5100] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5100] write(3, "1000", 4) = 4
[pid 5100] close(3) = 0
[pid 5100] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5100] memfd_create("syzkaller", 0) = 3
[pid 5100] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5100] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5100] munmap(0x7f2010eff000, 138412032) = 0
[pid 5100] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5100] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5100] close(3) = 0
[pid 5100] mkdir("./file0", 0777) = 0
[ 87.162428][ T5100] loop0: detected capacity change from 0 to 8192
[ 87.173222][ T5100] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 87.187590][ T7] cfg80211: failed to load regulatory.db
[ 87.193637][ T5100] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 87.202951][ T5100] REISERFS (device loop0): using ordered data mode
[ 87.209655][ T5100] reiserfs: using flush barriers
[ 87.215924][ T5100] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 87.232626][ T5100] REISERFS (device loop0): checking transaction log (loop0)
[ 87.240870][ T5100] REISERFS (device loop0): Using r5 hash to sort names
[ 87.248259][ T5100] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[pid 5100] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5100] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5100] chdir("./file0") = 0
[pid 5100] ioctl(4, LOOP_CLR_FD) = 0
[pid 5100] close(4) = 0
[pid 5100] mkdir("./file1", 000) = 0
[pid 5100] mkdir("./bus", 000) = 0
[pid 5100] mkdir("./file0", 000) = 0
[pid 5100] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5100] rename("./file1", "./file0/file0") = 0
[pid 5100] mkdir("./file1", 000) = 0
[pid 5100] rename("./file1", "./file0/file0") = 0
[pid 5100] exit_group(0) = ?
[pid 5100] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5100, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./31", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./31/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./31/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./31/binderfs") = 0
[ 87.261103][ T5100] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[ 87.289297][ T5100] overlayfs: upper fs needs to support d_type.
[ 87.296695][ T5100] overlayfs: upper fs does not support tmpfile.
[ 87.304048][ T5100] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./31/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./31/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./31") = 0
mkdir("./32", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5102
./strace-static-x86_64: Process 5102 attached
[pid 5102] set_robust_list(0x555556be0660, 24) = 0
[pid 5102] chdir("./32") = 0
[pid 5102] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5102] setpgid(0, 0) = 0
[pid 5102] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5102] write(3, "1000", 4) = 4
[pid 5102] close(3) = 0
[pid 5102] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5102] memfd_create("syzkaller", 0) = 3
[pid 5102] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5102] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5102] munmap(0x7f2010eff000, 138412032) = 0
[pid 5102] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5102] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5102] close(3) = 0
[pid 5102] mkdir("./file0", 0777) = 0
[ 87.441212][ T5102] loop0: detected capacity change from 0 to 8192
[ 87.452022][ T5102] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 87.465329][ T5102] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 87.474860][ T5102] REISERFS (device loop0): using ordered data mode
[ 87.481354][ T5102] reiserfs: using flush barriers
[ 87.488021][ T5102] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 87.504711][ T5102] REISERFS (device loop0): checking transaction log (loop0)
[ 87.513370][ T5102] REISERFS (device loop0): Using r5 hash to sort names
[ 87.520744][ T5102] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[pid 5102] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5102] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5102] chdir("./file0") = 0
[pid 5102] ioctl(4, LOOP_CLR_FD) = 0
[pid 5102] close(4) = 0
[pid 5102] mkdir("./file1", 000) = 0
[pid 5102] mkdir("./bus", 000) = 0
[pid 5102] mkdir("./file0", 000) = 0
[pid 5102] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5102] rename("./file1", "./file0/file0") = 0
[pid 5102] mkdir("./file1", 000) = 0
[pid 5102] rename("./file1", "./file0/file0") = 0
[pid 5102] exit_group(0) = ?
[pid 5102] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5102, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=13 /* 0.13 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./32", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./32/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./32/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./32/binderfs") = 0
[ 87.533962][ T5102] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[ 87.554764][ T5102] overlayfs: upper fs needs to support d_type.
[ 87.561173][ T5102] overlayfs: upper fs does not support tmpfile.
[ 87.568969][ T5102] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./32/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./32/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./32") = 0
mkdir("./33", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5104 attached
, child_tidptr=0x555556be0650) = 5104
[pid 5104] set_robust_list(0x555556be0660, 24) = 0
[pid 5104] chdir("./33") = 0
[pid 5104] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5104] setpgid(0, 0) = 0
[pid 5104] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5104] write(3, "1000", 4) = 4
[pid 5104] close(3) = 0
[pid 5104] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5104] memfd_create("syzkaller", 0) = 3
[pid 5104] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5104] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5104] munmap(0x7f2010eff000, 138412032) = 0
[pid 5104] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5104] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5104] close(3) = 0
[pid 5104] mkdir("./file0", 0777) = 0
[ 87.716230][ T5104] loop0: detected capacity change from 0 to 8192
[ 87.727328][ T5104] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 87.740380][ T5104] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 87.750018][ T5104] REISERFS (device loop0): using ordered data mode
[ 87.756946][ T5104] reiserfs: using flush barriers
[ 87.763220][ T5104] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 87.780804][ T5104] REISERFS (device loop0): checking transaction log (loop0)
[ 87.788925][ T5104] REISERFS (device loop0): Using r5 hash to sort names
[ 87.796168][ T5104] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[pid 5104] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5104] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5104] chdir("./file0") = 0
[pid 5104] ioctl(4, LOOP_CLR_FD) = 0
[pid 5104] close(4) = 0
[pid 5104] mkdir("./file1", 000) = 0
[pid 5104] mkdir("./bus", 000) = 0
[pid 5104] mkdir("./file0", 000) = 0
[ 87.809022][ T5104] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5104] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5104] rename("./file1", "./file0/file0") = 0
[pid 5104] mkdir("./file1", 000) = 0
[pid 5104] rename("./file1", "./file0/file0") = 0
[pid 5104] exit_group(0) = ?
[pid 5104] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5104, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} ---
umount2("./33", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./33/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./33/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./33/binderfs") = 0
[ 87.838728][ T5104] overlayfs: upper fs needs to support d_type.
[ 87.845260][ T5104] overlayfs: upper fs does not support tmpfile.
[ 87.852392][ T5104] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./33/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./33/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./33") = 0
mkdir("./34", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556be0650) = 5106
./strace-static-x86_64: Process 5106 attached
[pid 5106] set_robust_list(0x555556be0660, 24) = 0
[pid 5106] chdir("./34") = 0
[pid 5106] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5106] setpgid(0, 0) = 0
[pid 5106] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5106] write(3, "1000", 4) = 4
[pid 5106] close(3) = 0
[pid 5106] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5106] memfd_create("syzkaller", 0) = 3
[pid 5106] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000
[pid 5106] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
[pid 5106] munmap(0x7f2010eff000, 138412032) = 0
[pid 5106] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5106] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5106] close(3) = 0
[pid 5106] mkdir("./file0", 0777) = 0
[ 87.989086][ T5106] loop0: detected capacity change from 0 to 8192
[ 87.999509][ T5106] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 88.013234][ T5106] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 88.022713][ T5106] REISERFS (device loop0): using ordered data mode
[ 88.029440][ T5106] reiserfs: using flush barriers
[ 88.035911][ T5106] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 88.052938][ T5106] REISERFS (device loop0): checking transaction log (loop0)
[ 88.060816][ T5106] REISERFS (device loop0): Using r5 hash to sort names
[ 88.068075][ T5106] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[pid 5106] mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC|MS_POSIXACL, "") = 0
[pid 5106] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5106] chdir("./file0") = 0
[pid 5106] ioctl(4, LOOP_CLR_FD) = 0
[pid 5106] close(4) = 0
[pid 5106] mkdir("./file1", 000) = 0
[pid 5106] mkdir("./bus", 000) = 0
[pid 5106] mkdir("./file0", 000) = 0
[ 88.081080][ T5106] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[pid 5106] mount(NULL, "./bus", "overlay", 0, "workdir=./bus,lowerdir=./file0,upperdir=./file1,") = 0
[pid 5106] rename("./file1", "./file0/file0") = 0
[pid 5106] mkdir("./file1", 000) = 0
[pid 5106] rename("./file1", "./file0/file0") = 0
[pid 5106] exit_group(0) = ?
[pid 5106] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5106, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=14 /* 0.14 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./34", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x555556be16f0 /* 4 entries */, 32768) = 112
umount2("./34/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./34/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./34/binderfs") = 0
[ 88.119899][ T5106] overlayfs: upper fs needs to support d_type.
[ 88.126180][ T5106] overlayfs: upper fs does not support tmpfile.
[ 88.133040][ T5106] overlayfs: upper fs does not support RENAME_WHITEOUT.
umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./34/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x555556be9730 /* 2 entries */, 32768) = 48
getdents64(4, 0x555556be9730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./34/file0") = 0
getdents64(3, 0x555556be16f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./34") = 0
mkdir("./35", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5108 attached
, child_tidptr=0x555556be0650) = 5108
[pid 5108] set_robust_list(0x555556be0660, 24) = 0
[pid 5108] chdir("./35") = 0
[pid 5108] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5108] setpgid(0, 0) = 0
[pid 5108] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5108] write(3, "1000", 4) = 4
[pid 5108] close(3) = 0
[pid 5108] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5108] memfd_create("syzkaller", 0) = 3
[pid 5108] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2010eff000