./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor676477338 <...> ? gfs2_reconfigure+0xf90/0xf90 [ 222.726688][ T5674] ? snprintf+0xbf/0x100 [ 222.730987][ T5674] ? vsprintf+0x30/0x30 [ 222.735206][ T5674] ? wait_for_completion_io_timeout+0x20/0x20 [ 222.741345][ T5674] ? set_blocksize+0x2d8/0x370 [ 222.746169][ T5674] get_tree_bdev+0x43e/0x7d0 [ 222.750827][ T5674] ? gfs2_reconfigure+0xf90/0xf90 [ 222.755919][ T5674] gfs2_get_tree+0x4e/0x270 [ 222.760485][ T5674] vfs_get_tree+0x8d/0x350 [ 222.764961][ T5674] path_mount+0x136e/0x1e70 [ 222.769530][ T5674] ? putname+0x102/0x140 [ 222.773836][ T5674] ? lockdep_hardirqs_on+0x7d/0x100 [ 222.779106][ T5674] ? finish_automount+0xa30/0xa30 [ 222.784204][ T5674] ? putname+0x102/0x140 [ 222.788595][ T5674] __x64_sys_mount+0x283/0x300 [ 222.793508][ T5674] ? copy_mnt_ns+0xb30/0xb30 [ 222.798161][ T5674] ? lockdep_hardirqs_on+0x7d/0x100 [ 222.803422][ T5674] ? _raw_spin_unlock_irq+0x2e/0x50 [ 222.808701][ T5674] ? ptrace_notify+0xfe/0x140 [ 222.813550][ T5674] do_syscall_64+0x39/0xb0 [ 222.818030][ T5674] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 222.824013][ T5674] RIP: 0033:0x7f4f6dd11c5a [ 222.828488][ T5674] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 222.848157][ T5674] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 222.856659][ T5674] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 222.864675][ T5674] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5666] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5662] close(9) = -1 EBADF (Bad file descriptor) [pid 5666] <... clone3 resumed> => {parent_tid=[74]}, 88) = 74 [pid 5662] close(10 [pid 5666] rt_sigprocmask(SIG_SETMASK, [], [pid 5662] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5666] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5662] close(11 [pid 5666] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5662] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5666] <... futex resumed>) = 0 [pid 5662] close(12 [pid 5670] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5666] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5662] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5670] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5662] close(13 [pid 5670] <... futex resumed>) = 0 [pid 5662] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5670] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5662] close(14 [pid 5670] <... mmap resumed>) = 0x7f4f6607f000 [pid 5662] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5670] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5662] close(15 [pid 5670] <... mprotect resumed>) = 0 [pid 5662] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5670] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5662] close(16 [pid 5670] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5662] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5670] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5662] close(17) = -1 EBADF (Bad file descriptor) [pid 5670] <... clone3 resumed> => {parent_tid=[73]}, 88) = 73 [pid 5662] close(18 [pid 5670] rt_sigprocmask(SIG_SETMASK, [], [pid 5662] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5670] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5662] close(19 [pid 5670] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5662] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5670] <... futex resumed>) = 0 [pid 5662] close(20 [pid 5670] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5662] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5662] close(21) = -1 EBADF (Bad file descriptor) [pid 5662] close(22) = -1 EBADF (Bad file descriptor) [pid 5662] close(23) = -1 EBADF (Bad file descriptor) [pid 5662] close(24) = -1 EBADF (Bad file descriptor) [pid 5662] close(25) = -1 EBADF (Bad file descriptor) [pid 5662] close(26) = -1 EBADF (Bad file descriptor) [pid 5662] close(27) = -1 EBADF (Bad file descriptor) [pid 5662] close(28) = -1 EBADF (Bad file descriptor) [pid 5662] close(29) = -1 EBADF (Bad file descriptor) [pid 5662] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5666] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5662] <... write resumed>) = 156 [pid 5666] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5662] exit_group(0 [pid 5678] <... futex resumed>) = ? [pid 5666] <... futex resumed>) = 0 [pid 5663] <... futex resumed>) = ? [pid 5662] <... exit_group resumed>) = ? [pid 5678] +++ exited with 0 +++ [pid 5666] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5663] +++ exited with 0 +++ [pid 5662] +++ exited with 0 +++ [pid 5666] <... mmap resumed>) = 0x7f4f6605e000 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=69, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=66 /* 0.66 s */} --- [pid 5666] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 5666] <... mprotect resumed>) = 0 [pid 5031] <... restart_syscall resumed>) = 0 [pid 5666] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5666] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} [pid 5031] umount2("./23", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5672] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5672] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5666] <... clone3 resumed> => {parent_tid=[75]}, 88) = 75 [pid 5031] openat(AT_FDCWD, "./23", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5672] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5666] rt_sigprocmask(SIG_SETMASK, [], [pid 5031] <... openat resumed>) = 3 [pid 5672] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5670] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5666] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5031] newfstatat(3, "", [pid 5672] <... futex resumed>) = 0 [pid 5666] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5672] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5666] <... futex resumed>) = 0 [pid 5031] getdents64(3, [pid 5666] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5031] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5031] umount2("./23/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./23/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./23/cgroup.cpu") = 0 [pid 5031] umount2("./23/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./23/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./23/binderfs") = 0 [pid 5031] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5666] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5666] futex(0x7f4f6dda471c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5666] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6603d000 [pid 5666] mprotect(0x7f4f6603e000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5666] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5666] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6605d990, parent_tid=0x7f4f6605d990, exit_signal=0, stack=0x7f4f6603d000, stack_size=0x20300, tls=0x7f4f6605d6c0}./strace-static-x86_64: Process 5687 attached [pid 5687] rseq(0x7f4f6605dfe0, 0x20, 0, 0x53053053 [pid 5666] <... clone3 resumed> => {parent_tid=[76]}, 88) = 76 [pid 5687] <... rseq resumed>) = 0 [pid 5666] rt_sigprocmask(SIG_SETMASK, [], [pid 5687] set_robust_list(0x7f4f6605d9a0, 24 [pid 5666] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5687] <... set_robust_list resumed>) = 0 [pid 5666] futex(0x7f4f6dda4718, FUTEX_WAKE_PRIVATE, 1000000 [pid 5687] rt_sigprocmask(SIG_SETMASK, [], [pid 5666] <... futex resumed>) = 0 [pid 5687] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5666] futex(0x7f4f6dda471c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5687] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5666] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) ./strace-static-x86_64: Process 5686 attached ./strace-static-x86_64: Process 5685 attached ./strace-static-x86_64: Process 5684 attached [pid 5671] <... mount resumed>) = -1 EEXIST (File exists) [pid 5671] ioctl(4, LOOP_CLR_FD [pid 5687] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5686] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 5685] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5684] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5687] futex(0x7f4f6dda471c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 222.872698][ T5674] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 222.880729][ T5674] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 222.888760][ T5674] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 222.896792][ T5674] [ 222.911137][ T5674] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 5687] futex(0x7f4f6dda4718, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5686] <... rseq resumed>) = 0 [pid 5685] <... rseq resumed>) = 0 [pid 5684] <... rseq resumed>) = 0 [pid 5669] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5686] set_robust_list(0x7f4f6607e9a0, 24 [pid 5685] set_robust_list(0x7f4f6609f9a0, 24 [pid 5684] set_robust_list(0x7f4f6609f9a0, 24 [pid 5669] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5686] <... set_robust_list resumed>) = 0 [pid 5685] <... set_robust_list resumed>) = 0 [pid 5684] <... set_robust_list resumed>) = 0 [pid 5669] <... futex resumed>) = 0 [pid 5686] rt_sigprocmask(SIG_SETMASK, [], [pid 5685] rt_sigprocmask(SIG_SETMASK, [], [pid 5684] rt_sigprocmask(SIG_SETMASK, [], [pid 5669] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5686] <... rt_sigprocmask resumed>NULL, 8) = 0 [ 222.926525][ T5674] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 5685] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5684] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5669] <... mmap resumed>) = 0x7f4f6607f000 [pid 5685] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH) = -1 ENOENT (No such file or directory) [pid 5685] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5685] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5670] close(3) = 0 [pid 5670] close(4) = -1 EBADF (Bad file descriptor) [pid 5670] close(5) = -1 EBADF (Bad file descriptor) [pid 5670] close(6 [pid 5669] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5670] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5686] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5684] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5670] close(7 [pid 5669] <... mprotect resumed>) = 0 [pid 5670] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5674] <... mount resumed>) = -1 EEXIST (File exists) [pid 5670] close(8 [pid 5674] ioctl(4, LOOP_CLR_FD [pid 5670] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5670] close(9) = -1 EBADF (Bad file descriptor) [pid 5670] close(10) = -1 EBADF (Bad file descriptor) [pid 5670] close(11) = -1 EBADF (Bad file descriptor) [pid 5670] close(12) = -1 EBADF (Bad file descriptor) [pid 5670] close(13) = -1 EBADF (Bad file descriptor) [pid 5670] close(14) = -1 EBADF (Bad file descriptor) [pid 5670] close(15) = -1 EBADF (Bad file descriptor) [pid 5670] close(16) = -1 EBADF (Bad file descriptor) [pid 5670] close(17) = -1 EBADF (Bad file descriptor) [pid 5670] close(18) = -1 EBADF (Bad file descriptor) [pid 5670] close(19) = -1 EBADF (Bad file descriptor) [pid 5670] close(20) = -1 EBADF (Bad file descriptor) [pid 5670] close(21 [pid 5669] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5670] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5670] close(22) = -1 EBADF (Bad file descriptor) [pid 5670] close(23 [pid 5686] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5684] <... openat resumed>) = 3 [pid 5670] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5669] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5686] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5684] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5670] close(24 [pid 5686] <... futex resumed>) = 0 [pid 5684] <... futex resumed>) = 0 [pid 5670] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5670] close(25 [pid 5686] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5684] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5670] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5670] close(26) = -1 EBADF (Bad file descriptor) [pid 5670] close(27) = -1 EBADF (Bad file descriptor) [pid 5670] close(28) = -1 EBADF (Bad file descriptor) [pid 5669] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5682] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5670] close(29) = -1 EBADF (Bad file descriptor) [pid 5670] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory ./strace-static-x86_64: Process 5688 attached ) = 156 [pid 5669] <... clone3 resumed> => {parent_tid=[72]}, 88) = 72 [pid 5670] exit_group(0 [pid 5669] rt_sigprocmask(SIG_SETMASK, [], [pid 5670] <... exit_group resumed>) = ? [pid 5669] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5669] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5669] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5685] <... futex resumed>) = ? [pid 5672] <... futex resumed>) = ? [pid 5672] +++ exited with 0 +++ [pid 5685] +++ exited with 0 +++ [pid 5670] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=71, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=64 /* 0.64 s */} --- [pid 5033] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5688] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053) = 0 [pid 5688] set_robust_list(0x7f4f6609f9a0, 24) = 0 [pid 5688] rt_sigprocmask(SIG_SETMASK, [], [pid 5033] umount2("./25", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5688] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5688] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5688] <... openat resumed>) = 3 [pid 5033] openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5688] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] <... openat resumed>) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5033] umount2("./25/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./25/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./25/cgroup.cpu") = 0 [pid 5033] umount2("./25/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./25/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./25/binderfs") = 0 [pid 5033] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./25/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5688] <... futex resumed>) = 1 [pid 5669] <... futex resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5688] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5669] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5688] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5669] <... futex resumed>) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5688] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5669] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, [pid 5688] <... futex resumed>) = 0 [pid 5669] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5688] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5669] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] getdents64(4, [pid 5688] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5669] <... futex resumed>) = 0 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5688] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5669] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5033] close(4 [pid 5688] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5033] <... close resumed>) = 0 [pid 5688] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] rmdir("./25/file0" [pid 5688] <... futex resumed>) = 1 [pid 5669] <... futex resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5688] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5033] umount2("./25/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./25/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./25/cgroup") = 0 [pid 5033] umount2("./25/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./25/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./25/cgroup.net") = 0 [pid 5033] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./25") = 0 [pid 5033] mkdir("./26", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5689 attached [pid 5689] set_robust_list(0x55555654e6a0, 24 [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 74 [pid 5689] <... set_robust_list resumed>) = 0 [pid 5689] chdir("./26") = 0 [pid 5689] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5689] setpgid(0, 0) = 0 [pid 5689] symlink("/syzcgroup/unified/syz2", "./cgroup") = 0 [pid 5689] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu") = 0 [pid 5689] symlink("/syzcgroup/net/syz2", "./cgroup.net") = 0 [pid 5689] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5689] write(3, "1000", 4) = 4 [pid 5689] close(3) = 0 [pid 5689] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5689] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5689] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5689] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5689] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5689] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5690 attached [pid 5690] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5689] <... clone3 resumed> => {parent_tid=[75]}, 88) = 75 [pid 5690] <... rseq resumed>) = 0 [pid 5689] rt_sigprocmask(SIG_SETMASK, [], [pid 5690] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5689] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5690] <... set_robust_list resumed>) = 0 [pid 5689] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5690] rt_sigprocmask(SIG_SETMASK, [], [pid 5689] <... futex resumed>) = 0 [pid 5690] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5689] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5690] memfd_create("syzkaller", 0) = 3 [pid 5690] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5671] <... ioctl resumed>) = 0 [pid 5671] close(4) = 0 [pid 5671] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5669] close(3 [pid 5671] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5669] <... close resumed>) = 0 [pid 5669] close(4) = -1 EBADF (Bad file descriptor) [pid 5667] <... ioctl resumed>) = 0 [pid 5669] close(5) = -1 EBADF (Bad file descriptor) [pid 5669] close(6) = -1 EBADF (Bad file descriptor) [pid 5669] close(7) = -1 EBADF (Bad file descriptor) [pid 5669] close(8) = -1 EBADF (Bad file descriptor) [pid 5669] close(9) = -1 EBADF (Bad file descriptor) [pid 5669] close(10) = -1 EBADF (Bad file descriptor) [pid 5667] close(4 [pid 5674] <... ioctl resumed>) = 0 [pid 5669] close(11) = -1 EBADF (Bad file descriptor) [pid 5667] <... close resumed>) = 0 [pid 5034] kill(-72, SIGKILL [pid 5684] <... futex resumed>) = ? [pid 5669] close(12 [pid 5686] <... futex resumed>) = ? [pid 5034] <... kill resumed>) = 0 [pid 5687] <... futex resumed>) = ? [pid 5686] +++ killed by SIGKILL +++ [pid 5684] +++ killed by SIGKILL +++ [pid 5669] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5669] close(13 [pid 5687] +++ killed by SIGKILL +++ [pid 5669] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] kill(72, SIGKILL [pid 5669] close(14) = -1 EBADF (Bad file descriptor) [pid 5674] close(4 [pid 5669] close(15 [pid 5667] +++ killed by SIGKILL +++ [pid 5666] +++ killed by SIGKILL +++ [pid 5034] <... kill resumed>) = 0 [pid 5674] <... close resumed>) = 0 [pid 5669] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=72, si_uid=0, si_status=SIGKILL, si_utime=6 /* 0.06 s */, si_stime=60 /* 0.60 s */} --- [pid 5674] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5669] close(16 [pid 5673] <... futex resumed>) = 0 [pid 5674] <... futex resumed>) = 1 [pid 5669] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5674] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5673] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5669] close(17 [pid 5674] <... openat resumed>) = 3 [pid 5673] <... futex resumed>) = 0 [pid 5669] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] umount2("./24", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5669] close(18 [pid 5673] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5674] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5669] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5673] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5669] close(19 [pid 5674] <... futex resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5673] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5669] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5673] <... futex resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5674] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5669] close(20 [pid 5034] newfstatat(3, "", [pid 5673] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5674] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5669] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5674] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5669] close(21 [pid 5034] getdents64(3, [pid 5669] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5674] <... futex resumed>) = 1 [pid 5673] <... futex resumed>) = 0 [pid 5669] close(22 [pid 5673] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5674] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5673] <... futex resumed>) = 0 [pid 5669] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] umount2("./24/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5673] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5674] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5669] close(23 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5674] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5669] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] newfstatat(AT_FDCWD, "./24/cgroup.cpu", [pid 5674] <... futex resumed>) = 1 [pid 5673] <... futex resumed>) = 0 [pid 5669] close(24 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5674] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5673] close(3 [pid 5669] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] unlink("./24/cgroup.cpu" [pid 5673] <... close resumed>) = 0 [pid 5669] close(25 [pid 5034] <... unlink resumed>) = 0 [pid 5673] close(4) = -1 EBADF (Bad file descriptor) [pid 5669] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] umount2("./24/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5673] close(5 [pid 5669] close(26 [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5669] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5673] close(6 [pid 5669] close(27 [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5669] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] newfstatat(AT_FDCWD, "./24/binderfs", [pid 5673] close(7 [pid 5669] close(28 [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5669] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5673] close(8 [pid 5669] close(29 [pid 5034] unlink("./24/binderfs" [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5669] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5673] close(9 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5669] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5034] <... unlink resumed>) = 0 [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5669] <... write resumed>) = 156 [pid 5034] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5673] close(10 [pid 5669] exit_group(0 [pid 5688] <... futex resumed>) = ? [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5671] <... futex resumed>) = ? [pid 5669] <... exit_group resumed>) = ? [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5688] +++ exited with 0 +++ [pid 5673] close(11) = -1 EBADF (Bad file descriptor) [pid 5034] newfstatat(AT_FDCWD, "./24/file0", [pid 5673] close(12 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5671] +++ exited with 0 +++ [pid 5669] +++ exited with 0 +++ [pid 5034] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5673] close(13 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=70, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=63 /* 0.63 s */} --- [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5673] close(14) = -1 EBADF (Bad file descriptor) [pid 5034] newfstatat(4, "", [pid 5673] close(15 [pid 5032] umount2("./24", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5673] close(16 [pid 5034] getdents64(4, [pid 5032] openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... openat resumed>) = 3 [pid 5673] close(17) = -1 EBADF (Bad file descriptor) [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5673] close(18 [pid 5032] newfstatat(3, "", [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 5032] getdents64(3, [pid 5673] close(19 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5673] close(20 [pid 5034] close(4 [pid 5032] umount2("./24/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5673] close(21 [pid 5034] rmdir("./24/file0" [pid 5032] newfstatat(AT_FDCWD, "./24/cgroup.cpu", [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5673] close(22 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] umount2("./24/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] unlink("./24/cgroup.cpu" [pid 5673] close(23 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] newfstatat(AT_FDCWD, "./24/cgroup", [pid 5032] <... unlink resumed>) = 0 [pid 5673] close(24) = -1 EBADF (Bad file descriptor) [pid 5673] close(25 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] unlink("./24/cgroup" [pid 5032] umount2("./24/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5673] close(26 [pid 5034] <... unlink resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] umount2("./24/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(AT_FDCWD, "./24/binderfs", [pid 5673] close(27 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] newfstatat(AT_FDCWD, "./24/cgroup.net", [pid 5032] unlink("./24/binderfs" [pid 5673] close(28 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] unlink("./24/cgroup.net" [pid 5673] close(29 [pid 5034] <... unlink resumed>) = 0 [pid 5032] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5673] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5673] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5034] getdents64(3, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5673] <... write resumed>) = 156 [pid 5032] newfstatat(AT_FDCWD, "./24/file0", [pid 5034] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5673] exit_group(0 [pid 5034] close(3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5674] <... futex resumed>) = ? [pid 5673] <... exit_group resumed>) = ? [pid 5034] <... close resumed>) = 0 [pid 5032] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5674] +++ exited with 0 +++ [pid 5673] +++ exited with 0 +++ [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=68, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=62 /* 0.62 s */} --- [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] rmdir("./24" [pid 5032] openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./23", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./23", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... rmdir resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5034] mkdir("./25", 0777 [pid 5032] <... openat resumed>) = 4 [pid 5030] newfstatat(3, "", [pid 5032] newfstatat(4, "", [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] getdents64(4, [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5034] <... openat resumed>) = 3 [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] umount2("./23/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5032] getdents64(4, [pid 5030] newfstatat(AT_FDCWD, "./23/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./23/cgroup.cpu" [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5030] umount2("./23/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./23/binderfs", [pid 5034] close(3 [pid 5032] close(4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... close resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] rmdir("./24/file0" [pid 5031] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] unlink("./23/binderfs" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... unlink resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./23/file0", [pid 5030] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 5691 attached [pid 5031] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(AT_FDCWD, "./23/file0", [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 77 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5691] set_robust_list(0x55555654e6a0, 24 [pid 5032] umount2("./24/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./23/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5691] <... set_robust_list resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./24/cgroup", [pid 5031] <... openat resumed>) = 4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] newfstatat(4, "", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5691] chdir("./25" [pid 5032] unlink("./24/cgroup" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] openat(AT_FDCWD, "./23/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... unlink resumed>) = 0 [pid 5691] <... chdir resumed>) = 0 [pid 5031] getdents64(4, [pid 5030] <... openat resumed>) = 4 [pid 5691] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] umount2("./24/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] newfstatat(4, "", [pid 5691] <... prctl resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] getdents64(4, [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5691] setpgid(0, 0 [pid 5032] newfstatat(AT_FDCWD, "./24/cgroup.net", [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] getdents64(4, [pid 5691] <... setpgid resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] close(4 [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5031] <... close resumed>) = 0 [pid 5030] getdents64(4, [pid 5691] symlink("/syzcgroup/unified/syz5", "./cgroup" [pid 5032] unlink("./24/cgroup.net" [pid 5031] rmdir("./23/file0" [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5691] <... symlink resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] close(4 [pid 5691] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu" [pid 5032] getdents64(3, [pid 5031] umount2("./23/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] rmdir("./23/file0" [pid 5691] <... symlink resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5031] newfstatat(AT_FDCWD, "./23/cgroup", [pid 5030] <... rmdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./23/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5691] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 5032] close(3 [pid 5031] unlink("./23/cgroup" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5691] <... symlink resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./23/cgroup", [pid 5691] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] rmdir("./24" [pid 5031] umount2("./23/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5691] <... openat resumed>) = 3 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] unlink("./23/cgroup" [pid 5691] write(3, "1000", 4 [pid 5032] mkdir("./25", 0777 [pid 5031] newfstatat(AT_FDCWD, "./23/cgroup.net", [pid 5030] <... unlink resumed>) = 0 [pid 5691] <... write resumed>) = 4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./23/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... mkdir resumed>) = 0 [pid 5691] close(3 [pid 5031] unlink("./23/cgroup.net" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5691] <... close resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] <... unlink resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./23/cgroup.net", [pid 5691] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... openat resumed>) = 3 [pid 5031] getdents64(3, [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] unlink("./23/cgroup.net" [pid 5691] <... symlink resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] close(3 [pid 5030] <... unlink resumed>) = 0 [pid 5691] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... close resumed>) = 0 [pid 5030] getdents64(3, [pid 5691] <... futex resumed>) = 0 [pid 5032] close(3 [pid 5031] rmdir("./23" [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5691] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5032] <... close resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] close(3 [pid 5031] mkdir("./24", 0777 [pid 5030] <... close resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5030] rmdir("./23" [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] <... rmdir resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5030] mkdir("./24", 0777 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5030] <... mkdir resumed>) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5691] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] close(3 [pid 5030] <... openat resumed>) = 3 [pid 5691] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5031] <... close resumed>) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) ./strace-static-x86_64: Process 5693 attached ./strace-static-x86_64: Process 5692 attached [pid 5691] <... mprotect resumed>) = 0 [pid 5030] close(3 [pid 5693] set_robust_list(0x55555654e6a0, 24 [pid 5692] set_robust_list(0x55555654e6a0, 24 [pid 5691] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 73 [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 72 [pid 5030] <... close resumed>) = 0 [pid 5693] <... set_robust_list resumed>) = 0 [pid 5692] <... set_robust_list resumed>) = 0 [pid 5691] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5693] chdir("./24" [pid 5692] chdir("./25" [pid 5691] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5693] <... chdir resumed>) = 0 ./strace-static-x86_64: Process 5694 attached [pid 5693] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5692] <... chdir resumed>) = 0 [pid 5694] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5693] <... prctl resumed>) = 0 [pid 5692] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5691] <... clone3 resumed> => {parent_tid=[78]}, 88) = 78 [pid 5694] <... rseq resumed>) = 0 [pid 5693] setpgid(0, 0 [pid 5692] <... prctl resumed>) = 0 [pid 5691] rt_sigprocmask(SIG_SETMASK, [], ./strace-static-x86_64: Process 5695 attached [pid 5694] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5693] <... setpgid resumed>) = 0 [pid 5692] setpgid(0, 0 [pid 5691] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5695] set_robust_list(0x55555654e6a0, 24 [pid 5694] <... set_robust_list resumed>) = 0 [pid 5692] <... setpgid resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 70 [pid 5693] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 5695] <... set_robust_list resumed>) = 0 [pid 5694] rt_sigprocmask(SIG_SETMASK, [], [pid 5692] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 5691] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5695] chdir("./24" [pid 5694] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5693] <... symlink resumed>) = 0 [pid 5692] <... symlink resumed>) = 0 [pid 5695] <... chdir resumed>) = 0 [pid 5694] memfd_create("syzkaller", 0 [pid 5692] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 5695] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5694] <... memfd_create resumed>) = 3 [pid 5692] <... symlink resumed>) = 0 [pid 5691] <... futex resumed>) = 0 [pid 5695] <... prctl resumed>) = 0 [pid 5694] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5692] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 5691] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5695] setpgid(0, 0 [pid 5694] <... mmap resumed>) = 0x7f4f650a0000 [pid 5693] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 5692] <... symlink resumed>) = 0 [pid 5695] <... setpgid resumed>) = 0 [pid 5692] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5695] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 5693] <... symlink resumed>) = 0 [pid 5692] <... openat resumed>) = 3 [pid 5695] <... symlink resumed>) = 0 [pid 5693] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 5692] write(3, "1000", 4 [pid 5695] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu" [pid 5692] <... write resumed>) = 4 [pid 5695] <... symlink resumed>) = 0 [pid 5693] <... symlink resumed>) = 0 [pid 5692] close(3 [pid 5695] symlink("/syzcgroup/net/syz3", "./cgroup.net" [pid 5693] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5692] <... close resumed>) = 0 [pid 5695] <... symlink resumed>) = 0 [pid 5692] symlink("/dev/binderfs", "./binderfs" [pid 5695] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5693] <... openat resumed>) = 3 [pid 5692] <... symlink resumed>) = 0 [pid 5695] <... openat resumed>) = 3 [pid 5693] write(3, "1000", 4 [pid 5692] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5695] write(3, "1000", 4 [pid 5693] <... write resumed>) = 4 [pid 5692] <... futex resumed>) = 0 [pid 5695] <... write resumed>) = 4 [pid 5693] close(3 [pid 5692] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5695] close(3 [pid 5693] <... close resumed>) = 0 [pid 5692] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5695] <... close resumed>) = 0 [pid 5693] symlink("/dev/binderfs", "./binderfs" [pid 5692] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5695] symlink("/dev/binderfs", "./binderfs" [pid 5693] <... symlink resumed>) = 0 [pid 5692] <... mprotect resumed>) = 0 [pid 5695] <... symlink resumed>) = 0 [pid 5693] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5692] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5695] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5693] <... futex resumed>) = 0 [pid 5692] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5695] <... futex resumed>) = 0 [pid 5693] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5692] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5696 attached [pid 5695] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5693] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5696] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5695] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5693] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5692] <... clone3 resumed> => {parent_tid=[74]}, 88) = 74 [pid 5696] <... rseq resumed>) = 0 [pid 5695] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5692] rt_sigprocmask(SIG_SETMASK, [], [pid 5696] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5695] <... mprotect resumed>) = 0 [pid 5693] <... mprotect resumed>) = 0 [pid 5692] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5696] <... set_robust_list resumed>) = 0 [pid 5695] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5693] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5692] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5696] rt_sigprocmask(SIG_SETMASK, [], [pid 5695] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5693] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5692] <... futex resumed>) = 0 [pid 5696] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5695] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5693] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5692] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 5698 attached ./strace-static-x86_64: Process 5697 attached [pid 5696] memfd_create("syzkaller", 0 [pid 5698] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5697] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5696] <... memfd_create resumed>) = 3 [pid 5695] <... clone3 resumed> => {parent_tid=[71]}, 88) = 71 [pid 5693] <... clone3 resumed> => {parent_tid=[73]}, 88) = 73 [pid 5698] <... rseq resumed>) = 0 [pid 5697] <... rseq resumed>) = 0 [pid 5696] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5695] rt_sigprocmask(SIG_SETMASK, [], [pid 5693] rt_sigprocmask(SIG_SETMASK, [], [pid 5698] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5697] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5696] <... mmap resumed>) = 0x7f4f650a0000 [pid 5695] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5693] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5698] <... set_robust_list resumed>) = 0 [pid 5697] <... set_robust_list resumed>) = 0 [pid 5695] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5698] rt_sigprocmask(SIG_SETMASK, [], [pid 5697] rt_sigprocmask(SIG_SETMASK, [], [pid 5695] <... futex resumed>) = 0 [pid 5698] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5697] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5695] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5693] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5698] memfd_create("syzkaller", 0) = 3 [pid 5698] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5697] memfd_create("syzkaller", 0 [pid 5693] <... futex resumed>) = 0 [pid 5697] <... memfd_create resumed>) = 3 [pid 5697] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5693] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5682] <... write resumed>) = 16777216 [pid 5682] munmap(0x7f4f650a0000, 16777216 [pid 5690] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5682] <... munmap resumed>) = 0 [pid 5682] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5682] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5682] close(3) = 0 [pid 5682] mkdir("./file0", 0777) = 0 [ 224.264647][ T5682] loop0: detected capacity change from 0 to 32768 [ 224.329619][ T5682] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 224.366040][ T5682] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 224.431290][ T5682] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 224.465132][ T21] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 224.476179][ T21] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [pid 5682] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5694] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [ 224.697495][ T21] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 221ms [pid 5696] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5698] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [ 224.738039][ T21] gfs2: fsid=syz:syz.0: jid=0: Done [ 224.743364][ T5682] gfs2: fsid=syz:syz.0: first mount done, others may mount [pid 5697] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5682] <... mount resumed>) = 0 [pid 5682] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5682] chdir("./file0") = 0 [pid 5682] ioctl(4, LOOP_CLR_FD) = 0 [pid 5682] close(4) = 0 [pid 5682] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5681] <... futex resumed>) = 0 [pid 5682] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5681] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5682] <... futex resumed>) = 0 [pid 5682] openat(AT_FDCWD, "./file0", O_RDONLY [ 224.867258][ T5682] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [pid 5681] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 5681] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5681] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5681] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5681] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5681] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[78]}, 88) = 78 [pid 5681] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5681] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 224.911460][ T5682] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 224.911460][ T5682] inode = 12 2341 [ 224.911460][ T5682] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [pid 5681] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 5681] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5681] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6605e000 [pid 5681] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5681] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5681] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0}./strace-static-x86_64: Process 5701 attached => {parent_tid=[79]}, 88) = 79 [pid 5701] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 5681] rt_sigprocmask(SIG_SETMASK, [], [pid 5701] <... rseq resumed>) = 0 [pid 5701] set_robust_list(0x7f4f6607e9a0, 24 [pid 5681] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5681] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 5701] <... set_robust_list resumed>) = 0 [pid 5701] rt_sigprocmask(SIG_SETMASK, [], [pid 5681] <... futex resumed>) = 0 [pid 5701] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5681] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [ 225.019133][ T5701] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 225.026000][ T5682] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:4 m:20 p:1 [pid 5701] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH./strace-static-x86_64: Process 5700 attached [pid 5690] <... write resumed>) = 16777216 [pid 5681] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 225.080959][ T5682] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5682 [syz-executor676] __gfs2_lookup+0x83/0x280 [pid 5690] munmap(0x7f4f650a0000, 16777216 [pid 5700] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053) = 0 [pid 5700] set_robust_list(0x7f4f6609f9a0, 24) = 0 [pid 5700] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5700] ioctl(0, VFAT_IOCTL_READDIR_SHORT, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 5700] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 225.124033][ T5701] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 225.124033][ T5701] inode = 12 2341 [ 225.124033][ T5701] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 225.175540][ T5682] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5701 [syz-executor676] __gfs2_lookup+0x83/0x280 [pid 5700] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5690] <... munmap resumed>) = 0 [pid 5690] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [ 225.274604][ T5682] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 225.299218][ T5690] loop2: detected capacity change from 0 to 32768 [ 225.315975][ T5682] gfs2: fsid=syz:syz.0: about to withdraw this file system [pid 5690] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5690] close(3) = 0 [pid 5690] mkdir("./file0", 0777) = 0 [ 225.323238][ T5682] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 225.368892][ T5690] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 225.391808][ T5690] CPU: 1 PID: 5690 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 225.402397][ T5690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 225.405967][ T5701] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:4 m:20 p:1 [ 225.412496][ T5690] Call Trace: [ 225.412510][ T5690] [ 225.427786][ T5690] dump_stack_lvl+0x136/0x150 [ 225.432533][ T5690] sysfs_warn_dup+0x80/0xa0 [ 225.437090][ T5690] sysfs_create_dir_ns+0x237/0x290 [ 225.442256][ T5690] ? sysfs_create_mount_point+0xb0/0xb0 [ 225.447853][ T5690] ? spin_bug+0x1c0/0x1c0 [ 225.452261][ T5690] ? do_raw_spin_unlock+0x175/0x230 [ 225.457512][ T5690] kobject_add_internal+0x2c9/0x9c0 [ 225.462747][ T5690] ? kfree+0x11/0x150 [ 225.466787][ T5690] kobject_init_and_add+0x101/0x170 [ 225.472033][ T5690] ? kobject_create_and_add+0xf0/0xf0 [ 225.477456][ T5690] ? lockdep_init_map_type+0x21e/0x810 [ 225.477526][ T5682] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 225.482942][ T5690] ? lockdep_hardirqs_on+0x7d/0x100 [ 225.494596][ T5690] ? lockdep_init_map_type+0x21e/0x810 [ 225.500120][ T5690] gfs2_sys_fs_add+0x1d5/0x450 [ 225.504931][ T5690] ? recover_store+0x170/0x170 [ 225.509744][ T5690] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 225.515531][ T5690] gfs2_fill_super+0x1312/0x2aa0 [ 225.520522][ T5690] ? gfs2_reconfigure+0xf90/0xf90 [ 225.525599][ T5690] ? snprintf+0xbf/0x100 [ 225.529895][ T5690] ? vsprintf+0x30/0x30 [ 225.534126][ T5690] ? wait_for_completion_io_timeout+0x20/0x20 [ 225.535939][ T5701] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5682 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 225.540232][ T5690] ? set_blocksize+0x2d8/0x370 [ 225.555016][ T5690] get_tree_bdev+0x43e/0x7d0 [ 225.559680][ T5690] ? gfs2_reconfigure+0xf90/0xf90 [ 225.564769][ T5690] gfs2_get_tree+0x4e/0x270 [ 225.569352][ T5690] vfs_get_tree+0x8d/0x350 [ 225.573823][ T5690] path_mount+0x136e/0x1e70 [ 225.578398][ T5690] ? putname+0x102/0x140 [ 225.582691][ T5690] ? lockdep_hardirqs_on+0x7d/0x100 [ 225.587953][ T5690] ? finish_automount+0xa30/0xa30 [ 225.593041][ T5690] ? putname+0x102/0x140 [ 225.595255][ T5682] gfs2: fsid=syz:syz.0: File system withdrawn [ 225.597333][ T5690] __x64_sys_mount+0x283/0x300 [ 225.597380][ T5690] ? copy_mnt_ns+0xb30/0xb30 [ 225.597416][ T5690] ? lockdep_hardirqs_on+0x7d/0x100 [ 225.597455][ T5690] ? _raw_spin_unlock_irq+0x2e/0x50 [ 225.597498][ T5690] ? ptrace_notify+0xfe/0x140 [ 225.597547][ T5690] do_syscall_64+0x39/0xb0 [ 225.625906][ T5701] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5701 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 225.628074][ T5690] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 225.632498][ T5701] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 225.642469][ T5690] RIP: 0033:0x7f4f6dd11c5a [ 225.642497][ T5690] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 225.642527][ T5690] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 225.642558][ T5690] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 225.642592][ T5690] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 225.642612][ T5690] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 225.642632][ T5690] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 225.642653][ T5690] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 225.642678][ T5690] [ 225.706136][ T5682] CPU: 1 PID: 5682 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 225.734684][ T5690] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 225.744198][ T5682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 225.744219][ T5682] Call Trace: [ 225.744229][ T5682] [ 225.744240][ T5682] dump_stack_lvl+0x136/0x150 [ 225.744295][ T5682] gfs2_withdraw+0xb33/0x1060 [ 225.744331][ T5682] ? gfs2_consist_inode_i+0x104/0x150 [ 225.744367][ T5682] gfs2_dirent_scan+0x32a/0x3d0 [ 225.744416][ T5682] ? gfs2_dirent_prev+0x210/0x210 [ 225.799450][ T5682] ? gfs2_dirent_prev+0x210/0x210 [ 225.804546][ T5682] gfs2_dirent_search+0x47d/0x580 [ 225.809613][ T5682] ? get_first_leaf+0x190/0x190 [ 225.814506][ T5682] ? gfs2_permission+0x256/0x3e0 [ 225.819494][ T5682] gfs2_dir_search+0x8d/0x2d0 [ 225.824228][ T5682] ? gfs2_dir_read+0x14e0/0x14e0 [ 225.829216][ T5682] gfs2_lookupi+0x481/0x640 [ 225.833786][ T5682] ? gfs2_lookup_by_inum+0x100/0x100 [ 225.839153][ T5682] ? __gfs2_lookup+0x83/0x280 [ 225.843866][ T5682] ? d_alloc_parallel+0x693/0x1530 [ 225.849023][ T5682] __gfs2_lookup+0x83/0x280 [ 225.853587][ T5682] ? gfs2_lookupi+0x640/0x640 [ 225.858302][ T5682] ? __d_lookup_rcu+0x4e0/0x4e0 [ 225.863198][ T5682] ? __d_lookup+0x289/0x4c0 [ 225.867741][ T5682] gfs2_atomic_open+0xde/0x250 [ 225.872551][ T5682] ? __gfs2_lookup+0x280/0x280 [ 225.877360][ T5682] lookup_open.isra.0+0xce2/0x1400 [ 225.882682][ T5682] ? link_path_walk.part.0+0xd60/0xd60 [ 225.888178][ T5682] ? lookup_fast+0x14e/0x520 [ 225.892795][ T5682] path_openat+0x969/0x2710 [ 225.897332][ T5682] ? path_lookupat+0x840/0x840 [ 225.902138][ T5682] ? find_held_lock+0x2d/0x110 [ 225.907016][ T5682] do_filp_open+0x1ba/0x410 [ 225.911545][ T5682] ? may_open_dev+0xf0/0xf0 [ 225.916078][ T5682] ? find_held_lock+0x2d/0x110 [ 225.920876][ T5682] ? do_raw_spin_lock+0x124/0x2b0 [ 225.925935][ T5682] ? spin_bug+0x1c0/0x1c0 [ 225.930296][ T5682] ? _raw_spin_unlock+0x28/0x40 [ 225.935189][ T5682] ? alloc_fd+0x2e4/0x750 [ 225.939559][ T5682] do_sys_openat2+0x160/0x1c0 [ 225.944273][ T5682] ? build_open_flags+0x720/0x720 [ 225.949367][ T5682] ? ptrace_notify+0xfe/0x140 [ 225.954100][ T5682] ? lock_downgrade+0x690/0x690 [ 225.958986][ T5682] __x64_sys_openat+0x143/0x1f0 [ 225.963881][ T5682] ? __ia32_sys_open+0x1c0/0x1c0 [ 225.968856][ T5682] ? _raw_spin_unlock_irq+0x23/0x50 [ 225.974116][ T5682] ? lockdep_hardirqs_on+0x7d/0x100 [ 225.979349][ T5682] ? _raw_spin_unlock_irq+0x2e/0x50 [ 225.984581][ T5682] ? ptrace_notify+0xfe/0x140 [ 225.989296][ T5682] do_syscall_64+0x39/0xb0 [ 225.993747][ T5682] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 225.999682][ T5682] RIP: 0033:0x7f4f6dd107f9 [ 226.004115][ T5682] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 226.023747][ T5682] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 226.032281][ T5682] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 226.040282][ T5682] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [ 226.048279][ T5682] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 226.056363][ T5682] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [pid 5690] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5698] <... write resumed>) = 16777216 [pid 5697] <... write resumed>) = 16777216 [pid 5696] <... write resumed>) = 16777216 [pid 5697] munmap(0x7f4f650a0000, 16777216 [pid 5698] munmap(0x7f4f650a0000, 16777216 [ 226.064416][ T5682] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 226.072423][ T5682] [pid 5696] munmap(0x7f4f650a0000, 16777216 [pid 5701] <... openat resumed>) = -1 EIO (Input/output error) [pid 5682] <... openat resumed>) = -1 EIO (Input/output error) [pid 5701] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5682] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5701] <... futex resumed>) = 0 [pid 5682] <... futex resumed>) = 0 [pid 5701] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5682] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5681] close(3) = 0 [pid 5681] close(4) = -1 EBADF (Bad file descriptor) [pid 5681] close(5) = -1 EBADF (Bad file descriptor) [pid 5681] close(6) = -1 EBADF (Bad file descriptor) [pid 5681] close(7) = -1 EBADF (Bad file descriptor) [pid 5681] close(8) = -1 EBADF (Bad file descriptor) [pid 5681] close(9) = -1 EBADF (Bad file descriptor) [pid 5681] close(10) = -1 EBADF (Bad file descriptor) [pid 5681] close(11) = -1 EBADF (Bad file descriptor) [pid 5681] close(12) = -1 EBADF (Bad file descriptor) [pid 5681] close(13) = -1 EBADF (Bad file descriptor) [pid 5681] close(14) = -1 EBADF (Bad file descriptor) [pid 5681] close(15) = -1 EBADF (Bad file descriptor) [pid 5681] close(16) = -1 EBADF (Bad file descriptor) [pid 5681] close(17) = -1 EBADF (Bad file descriptor) [pid 5681] close(18) = -1 EBADF (Bad file descriptor) [pid 5681] close(19) = -1 EBADF (Bad file descriptor) [pid 5681] close(20) = -1 EBADF (Bad file descriptor) [pid 5681] close(21) = -1 EBADF (Bad file descriptor) [pid 5681] close(22) = -1 EBADF (Bad file descriptor) [pid 5681] close(23) = -1 EBADF (Bad file descriptor) [pid 5681] close(24) = -1 EBADF (Bad file descriptor) [pid 5681] close(25) = -1 EBADF (Bad file descriptor) [pid 5681] close(26) = -1 EBADF (Bad file descriptor) [pid 5681] close(27) = -1 EBADF (Bad file descriptor) [pid 5681] close(28) = -1 EBADF (Bad file descriptor) [pid 5681] close(29) = -1 EBADF (Bad file descriptor) [pid 5681] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory ) = 156 [pid 5681] exit_group(0 [pid 5701] <... futex resumed>) = ? [pid 5700] <... futex resumed>) = ? [pid 5682] <... futex resumed>) = ? [pid 5681] <... exit_group resumed>) = ? [pid 5701] +++ exited with 0 +++ [pid 5700] +++ exited with 0 +++ [pid 5682] +++ exited with 0 +++ [pid 5681] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=76, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=74 /* 0.74 s */} --- [pid 5029] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5029] umount2("./24", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5029] umount2("./24/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./24/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./24/cgroup.cpu") = 0 [pid 5029] umount2("./24/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./24/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./24/binderfs") = 0 [pid 5029] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5697] <... munmap resumed>) = 0 [pid 5697] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5697] ioctl(4, LOOP_SET_FD, 3 [pid 5698] <... munmap resumed>) = 0 [pid 5697] <... ioctl resumed>) = 0 [pid 5696] <... munmap resumed>) = 0 [pid 5694] <... write resumed>) = 16777216 [pid 5698] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5698] ioctl(4, LOOP_SET_FD, 3 [pid 5697] close(3 [pid 5696] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5694] munmap(0x7f4f650a0000, 16777216 [pid 5690] <... mount resumed>) = -1 EEXIST (File exists) [pid 5698] <... ioctl resumed>) = 0 [pid 5698] close(3) = 0 [pid 5698] mkdir("./file0", 0777) = 0 [pid 5698] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5697] <... close resumed>) = 0 [pid 5697] mkdir("./file0", 0777 [pid 5696] <... openat resumed>) = 4 [ 226.213856][ T5697] loop3: detected capacity change from 0 to 32768 [ 226.220667][ T5690] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 226.248523][ T5698] loop4: detected capacity change from 0 to 32768 [pid 5690] ioctl(4, LOOP_CLR_FD [pid 5697] <... mkdir resumed>) = 0 [pid 5696] ioctl(4, LOOP_SET_FD, 3 [ 226.263301][ T5698] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 226.271672][ T5696] loop1: detected capacity change from 0 to 32768 [ 226.272355][ T5698] CPU: 0 PID: 5698 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 226.288582][ T5698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 226.298681][ T5698] Call Trace: [ 226.301988][ T5698] [ 226.304953][ T5698] dump_stack_lvl+0x136/0x150 [ 226.309697][ T5698] sysfs_warn_dup+0x80/0xa0 [ 226.314251][ T5698] sysfs_create_dir_ns+0x237/0x290 [ 226.319415][ T5698] ? sysfs_create_mount_point+0xb0/0xb0 [ 226.325009][ T5698] ? spin_bug+0x1c0/0x1c0 [ 226.329396][ T5698] ? do_raw_spin_unlock+0x175/0x230 [ 226.334656][ T5698] kobject_add_internal+0x2c9/0x9c0 [ 226.339910][ T5698] ? kfree+0x11/0x150 [ 226.343946][ T5698] kobject_init_and_add+0x101/0x170 [ 226.349206][ T5698] ? kobject_create_and_add+0xf0/0xf0 [ 226.350427][ T5696] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 226.354697][ T5698] ? lockdep_init_map_type+0x21e/0x810 [ 226.354744][ T5698] ? lockdep_hardirqs_on+0x7d/0x100 [ 226.372832][ T5698] ? lockdep_init_map_type+0x21e/0x810 [ 226.378347][ T5698] gfs2_sys_fs_add+0x1d5/0x450 [ 226.383153][ T5698] ? recover_store+0x170/0x170 [ 226.387954][ T5698] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 226.393726][ T5698] gfs2_fill_super+0x1312/0x2aa0 [ 226.398806][ T5698] ? gfs2_reconfigure+0xf90/0xf90 [ 226.403869][ T5698] ? snprintf+0xbf/0x100 [ 226.408150][ T5698] ? vsprintf+0x30/0x30 [ 226.412339][ T5698] ? wait_for_completion_io_timeout+0x20/0x20 [ 226.418443][ T5698] ? set_blocksize+0x2d8/0x370 [ 226.423238][ T5698] get_tree_bdev+0x43e/0x7d0 [ 226.427865][ T5698] ? gfs2_reconfigure+0xf90/0xf90 [ 226.432920][ T5698] gfs2_get_tree+0x4e/0x270 [ 226.437458][ T5698] vfs_get_tree+0x8d/0x350 [ 226.441906][ T5698] path_mount+0x136e/0x1e70 [ 226.446447][ T5698] ? putname+0x102/0x140 [ 226.450717][ T5698] ? lockdep_hardirqs_on+0x7d/0x100 [ 226.455958][ T5698] ? finish_automount+0xa30/0xa30 [ 226.461025][ T5698] ? putname+0x102/0x140 [ 226.465303][ T5698] __x64_sys_mount+0x283/0x300 [ 226.470122][ T5698] ? copy_mnt_ns+0xb30/0xb30 [ 226.474755][ T5698] ? lockdep_hardirqs_on+0x7d/0x100 [ 226.480006][ T5698] ? _raw_spin_unlock_irq+0x2e/0x50 [ 226.485252][ T5698] ? ptrace_notify+0xfe/0x140 [ 226.489976][ T5698] do_syscall_64+0x39/0xb0 [ 226.494425][ T5698] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 226.500370][ T5698] RIP: 0033:0x7f4f6dd11c5a [ 226.504811][ T5698] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 226.524474][ T5698] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 226.532931][ T5698] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 226.540947][ T5698] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 226.548950][ T5698] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 226.556950][ T5698] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [pid 5697] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5696] <... ioctl resumed>) = 0 [pid 5696] close(3) = 0 [pid 5696] mkdir("./file0", 0777) = 0 [ 226.564944][ T5698] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 226.573032][ T5698] [ 226.589071][ T5697] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 226.592261][ T5696] CPU: 0 PID: 5696 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 226.606928][ T5696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 226.617030][ T5696] Call Trace: [ 226.620334][ T5696] [ 226.623281][ T5696] dump_stack_lvl+0x136/0x150 [ 226.628011][ T5696] sysfs_warn_dup+0x80/0xa0 [ 226.632570][ T5696] sysfs_create_dir_ns+0x237/0x290 [ 226.637739][ T5696] ? sysfs_create_mount_point+0xb0/0xb0 [ 226.643354][ T5696] ? spin_bug+0x1c0/0x1c0 [ 226.647747][ T5696] ? do_raw_spin_unlock+0x175/0x230 [ 226.653010][ T5696] kobject_add_internal+0x2c9/0x9c0 [ 226.658261][ T5696] ? kfree+0x11/0x150 [ 226.662292][ T5696] kobject_init_and_add+0x101/0x170 [ 226.667707][ T5696] ? kobject_create_and_add+0xf0/0xf0 [ 226.673126][ T5696] ? lockdep_init_map_type+0x21e/0x810 [ 226.678631][ T5696] ? lockdep_hardirqs_on+0x7d/0x100 [ 226.683883][ T5696] ? lockdep_init_map_type+0x21e/0x810 [ 226.689410][ T5696] gfs2_sys_fs_add+0x1d5/0x450 [ 226.694307][ T5696] ? recover_store+0x170/0x170 [ 226.699120][ T5696] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 226.704908][ T5696] gfs2_fill_super+0x1312/0x2aa0 [ 226.709909][ T5696] ? gfs2_reconfigure+0xf90/0xf90 [ 226.714990][ T5696] ? snprintf+0xbf/0x100 [ 226.719288][ T5696] ? vsprintf+0x30/0x30 [ 226.723490][ T5696] ? wait_for_completion_io_timeout+0x20/0x20 [ 226.729603][ T5696] ? set_blocksize+0x2d8/0x370 [ 226.734425][ T5696] get_tree_bdev+0x43e/0x7d0 [ 226.739070][ T5696] ? gfs2_reconfigure+0xf90/0xf90 [ 226.744131][ T5696] gfs2_get_tree+0x4e/0x270 [ 226.748678][ T5696] vfs_get_tree+0x8d/0x350 [ 226.753145][ T5696] path_mount+0x136e/0x1e70 [ 226.757703][ T5696] ? putname+0x102/0x140 [ 226.761999][ T5696] ? lockdep_hardirqs_on+0x7d/0x100 [ 226.767265][ T5696] ? finish_automount+0xa30/0xa30 [ 226.772368][ T5696] ? putname+0x102/0x140 [ 226.776668][ T5696] __x64_sys_mount+0x283/0x300 [ 226.781492][ T5696] ? copy_mnt_ns+0xb30/0xb30 [ 226.786148][ T5696] ? lockdep_hardirqs_on+0x7d/0x100 [ 226.791410][ T5696] ? _raw_spin_unlock_irq+0x2e/0x50 [ 226.796677][ T5696] ? ptrace_notify+0xfe/0x140 [ 226.801422][ T5696] do_syscall_64+0x39/0xb0 [ 226.805880][ T5696] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 226.811839][ T5696] RIP: 0033:0x7f4f6dd11c5a [ 226.816296][ T5696] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 226.835954][ T5696] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 226.844416][ T5696] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 226.852428][ T5696] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 226.860446][ T5696] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 226.868468][ T5696] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 226.876486][ T5696] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 226.884502][ T5696] [ 226.887543][ T5697] CPU: 1 PID: 5697 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 226.898008][ T5697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 226.908084][ T5697] Call Trace: [ 226.911379][ T5697] [ 226.914343][ T5697] dump_stack_lvl+0x136/0x150 [ 226.919065][ T5697] sysfs_warn_dup+0x80/0xa0 [ 226.923595][ T5697] sysfs_create_dir_ns+0x237/0x290 [ 226.928737][ T5697] ? sysfs_create_mount_point+0xb0/0xb0 [ 226.934313][ T5697] ? spin_bug+0x1c0/0x1c0 [ 226.938674][ T5697] ? do_raw_spin_unlock+0x175/0x230 [ 226.943906][ T5697] kobject_add_internal+0x2c9/0x9c0 [ 226.949130][ T5697] ? kfree+0x11/0x150 [ 226.953342][ T5697] kobject_init_and_add+0x101/0x170 [ 226.958571][ T5697] ? kobject_create_and_add+0xf0/0xf0 [ 226.963969][ T5697] ? lockdep_init_map_type+0x21e/0x810 [ 226.969457][ T5697] ? lockdep_hardirqs_on+0x7d/0x100 [ 226.974721][ T5697] ? lockdep_init_map_type+0x21e/0x810 [ 226.980217][ T5697] gfs2_sys_fs_add+0x1d5/0x450 [ 226.985011][ T5697] ? recover_store+0x170/0x170 [ 226.989796][ T5697] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 226.995550][ T5697] gfs2_fill_super+0x1312/0x2aa0 [ 227.000780][ T5697] ? gfs2_reconfigure+0xf90/0xf90 [ 227.005923][ T5697] ? snprintf+0xbf/0x100 [ 227.010196][ T5697] ? vsprintf+0x30/0x30 [ 227.014374][ T5697] ? wait_for_completion_io_timeout+0x20/0x20 [ 227.020479][ T5697] ? set_blocksize+0x2d8/0x370 [ 227.025274][ T5697] get_tree_bdev+0x43e/0x7d0 [ 227.029895][ T5697] ? gfs2_reconfigure+0xf90/0xf90 [ 227.034950][ T5697] gfs2_get_tree+0x4e/0x270 [ 227.039477][ T5697] vfs_get_tree+0x8d/0x350 [ 227.043921][ T5697] path_mount+0x136e/0x1e70 [ 227.048456][ T5697] ? putname+0x102/0x140 [ 227.052726][ T5697] ? lockdep_hardirqs_on+0x7d/0x100 [ 227.057958][ T5697] ? finish_automount+0xa30/0xa30 [ 227.063014][ T5697] ? putname+0x102/0x140 [ 227.067285][ T5697] __x64_sys_mount+0x283/0x300 [ 227.072078][ T5697] ? copy_mnt_ns+0xb30/0xb30 [ 227.076700][ T5697] ? lockdep_hardirqs_on+0x7d/0x100 [ 227.081925][ T5697] ? _raw_spin_unlock_irq+0x2e/0x50 [ 227.087188][ T5697] ? ptrace_notify+0xfe/0x140 [ 227.091915][ T5697] do_syscall_64+0x39/0xb0 [ 227.096357][ T5697] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 227.102296][ T5697] RIP: 0033:0x7f4f6dd11c5a [ 227.106731][ T5697] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 227.126363][ T5697] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 227.134797][ T5697] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 227.142796][ T5697] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 227.150796][ T5697] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 227.158831][ T5697] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 227.167017][ T5697] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 227.175012][ T5697] [ 227.189292][ T5698] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 5696] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5694] <... munmap resumed>) = 0 [pid 5694] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [ 227.215888][ T5696] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 5694] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5694] close(3) = 0 [pid 5694] mkdir("./file0", 0777) = 0 [ 227.264013][ T5694] loop5: detected capacity change from 0 to 32768 [ 227.275271][ T5698] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 5694] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5698] <... mount resumed>) = -1 EEXIST (File exists) [pid 5698] ioctl(4, LOOP_CLR_FD [pid 5696] <... mount resumed>) = -1 EEXIST (File exists) [ 227.311898][ T5696] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 227.327248][ T5694] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 227.335502][ T5694] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 227.338174][ T5697] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 5696] ioctl(4, LOOP_CLR_FD [pid 5689] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5689] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5697] <... mount resumed>) = -1 EEXIST (File exists) [pid 5697] ioctl(4, LOOP_CLR_FD [ 227.367009][ T5697] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 227.383908][ T5694] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [pid 5689] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [ 227.437565][ T5039] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 227.444406][ T5039] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [pid 5689] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5689] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5689] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5707 attached [pid 5707] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5689] <... clone3 resumed> => {parent_tid=[76]}, 88) = 76 [pid 5707] <... rseq resumed>) = 0 [pid 5707] set_robust_list(0x7f4f6609f9a0, 24 [pid 5689] rt_sigprocmask(SIG_SETMASK, [], [pid 5707] <... set_robust_list resumed>) = 0 [pid 5689] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5707] rt_sigprocmask(SIG_SETMASK, [], [pid 5689] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5707] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5689] <... futex resumed>) = 0 [pid 5707] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 5689] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5707] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5689] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5707] <... futex resumed>) = 0 [pid 5689] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5707] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5689] <... futex resumed>) = 0 [pid 5707] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5689] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5707] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5689] <... futex resumed>) = 0 [pid 5707] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5689] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5707] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5689] <... futex resumed>) = 0 [pid 5707] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5689] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5707] <... futex resumed>) = 0 [pid 5689] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5707] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5690] <... ioctl resumed>) = 0 [pid 5690] close(4) = 0 [pid 5690] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5689] close(3 [pid 5690] <... futex resumed>) = 0 [pid 5689] <... close resumed>) = 0 [pid 5690] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5689] close(4) = -1 EBADF (Bad file descriptor) [pid 5029] <... umount2 resumed>) = 0 [pid 5689] close(5) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5689] close(6) = -1 EBADF (Bad file descriptor) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5689] close(7 [pid 5029] newfstatat(AT_FDCWD, "./24/file0", [pid 5689] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5689] close(8) = -1 EBADF (Bad file descriptor) [pid 5689] close(9) = -1 EBADF (Bad file descriptor) [pid 5689] close(10) = -1 EBADF (Bad file descriptor) [pid 5689] close(11) = -1 EBADF (Bad file descriptor) [pid 5689] close(12) = -1 EBADF (Bad file descriptor) [pid 5689] close(13) = -1 EBADF (Bad file descriptor) [pid 5689] close(14) = -1 EBADF (Bad file descriptor) [pid 5689] close(15) = -1 EBADF (Bad file descriptor) [pid 5689] close(16) = -1 EBADF (Bad file descriptor) [pid 5689] close(17) = -1 EBADF (Bad file descriptor) [pid 5689] close(18) = -1 EBADF (Bad file descriptor) [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5689] close(19 [pid 5029] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5689] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5689] close(20 [pid 5029] openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5689] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5689] close(21 [pid 5029] <... openat resumed>) = 4 [pid 5689] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] newfstatat(4, "", [pid 5689] close(22) = -1 EBADF (Bad file descriptor) [pid 5689] close(23 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5689] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] getdents64(4, [pid 5689] close(24) = -1 EBADF (Bad file descriptor) [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5689] close(25) = -1 EBADF (Bad file descriptor) [pid 5029] getdents64(4, [pid 5689] close(26 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5689] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5689] close(27 [pid 5029] close(4 [pid 5689] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5689] close(28 [pid 5029] <... close resumed>) = 0 [pid 5689] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5689] close(29 [pid 5029] rmdir("./24/file0" [pid 5689] <... close resumed>) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5689] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5029] <... rmdir resumed>) = 0 [pid 5689] exit_group(0 [pid 5707] <... futex resumed>) = ? [pid 5690] <... futex resumed>) = ? [pid 5689] <... exit_group resumed>) = ? [pid 5029] umount2("./24/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5707] +++ exited with 0 +++ [pid 5690] +++ exited with 0 +++ [pid 5689] +++ exited with 0 +++ [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./24/cgroup", [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=74, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=59 /* 0.59 s */} --- [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5029] unlink("./24/cgroup" [pid 5033] <... restart_syscall resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5029] umount2("./24/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./26", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./24/cgroup.net", [pid 5033] openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5029] unlink("./24/cgroup.net" [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5033] getdents64(3, [pid 5029] getdents64(3, [pid 5033] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5029] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5033] umount2("./26/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] close(3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./26/cgroup.cpu", [pid 5029] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./26/cgroup.cpu" [pid 5029] rmdir("./24" [pid 5033] <... unlink resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5033] umount2("./26/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] mkdir("./25", 0777 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5696] <... ioctl resumed>) = 0 [pid 5691] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5033] newfstatat(AT_FDCWD, "./26/binderfs", [pid 5029] <... mkdir resumed>) = 0 [pid 5691] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5691] <... futex resumed>) = 0 [pid 5033] unlink("./26/binderfs" [pid 5697] <... ioctl resumed>) = 0 [pid 5696] close(4 [pid 5694] <... mount resumed>) = 0 [pid 5691] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5029] <... openat resumed>) = 3 [pid 5694] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5694] chdir("./file0") = 0 [pid 5694] ioctl(4, LOOP_CLR_FD) = 0 [ 227.818019][ T5039] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 373ms [ 227.833205][ T5039] gfs2: fsid=syz:syz.0: jid=0: Done [ 227.850861][ T5694] gfs2: fsid=syz:syz.0: first mount done, others may mount [pid 5694] close(4 [pid 5697] close(4 [pid 5696] <... close resumed>) = 0 [pid 5694] <... close resumed>) = 0 [pid 5691] <... mmap resumed>) = 0x7f4f6607f000 [pid 5033] <... unlink resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5697] <... close resumed>) = 0 [pid 5696] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5691] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5033] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5697] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5696] <... futex resumed>) = 1 [pid 5692] <... futex resumed>) = 0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5691] <... mprotect resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5692] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5697] <... futex resumed>) = 1 [pid 5696] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5695] <... futex resumed>) = 0 [pid 5691] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5029] close(3 [pid 5697] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5696] <... openat resumed>) = 3 [pid 5692] <... futex resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./26/file0", [pid 5029] <... close resumed>) = 0 [pid 5695] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5697] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5696] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5692] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5691] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5695] <... futex resumed>) = 0 [pid 5698] <... ioctl resumed>) = 0 [pid 5697] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5696] <... futex resumed>) = 0 [pid 5695] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5694] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5692] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5691] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5033] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5709 attached [pid 5698] close(4 [pid 5697] <... openat resumed>) = 3 [pid 5696] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5694] <... futex resumed>) = 0 [pid 5692] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 80 [pid 5709] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5698] <... close resumed>) = 0 [pid 5697] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5696] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5694] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5692] <... futex resumed>) = 0 [pid 5691] <... clone3 resumed> => {parent_tid=[79]}, 88) = 79 [pid 5033] openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5709] <... rseq resumed>) = 0 [pid 5698] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5697] <... futex resumed>) = 1 [pid 5696] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5695] <... futex resumed>) = 0 [pid 5692] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5691] rt_sigprocmask(SIG_SETMASK, [], [pid 5033] <... openat resumed>) = 4 [pid 5698] <... futex resumed>) = 1 [pid 5697] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5696] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5695] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5693] <... futex resumed>) = 0 [pid 5691] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5033] newfstatat(4, "", [pid 5698] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5697] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5696] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5695] <... futex resumed>) = 0 [pid 5693] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5691] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5698] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5697] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5696] <... futex resumed>) = 1 [pid 5695] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5693] <... futex resumed>) = 0 [pid 5692] <... futex resumed>) = 0 [pid 5691] <... futex resumed>) = 0 [pid 5033] getdents64(4, [pid 5709] set_robust_list(0x7f4f6609f9a0, 24 [pid 5698] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5697] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5696] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5693] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5692] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5691] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5709] <... set_robust_list resumed>) = 0 [pid 5698] <... openat resumed>) = 3 [pid 5697] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5696] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5692] <... futex resumed>) = 0 [pid 5033] getdents64(4, [pid 5709] rt_sigprocmask(SIG_SETMASK, [], [pid 5698] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5697] <... futex resumed>) = 1 [pid 5696] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5695] <... futex resumed>) = 0 [pid 5692] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5709] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5698] <... futex resumed>) = 1 [pid 5697] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5696] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5695] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5693] <... futex resumed>) = 0 [pid 5033] close(4 [pid 5709] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5698] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5697] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5696] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5695] <... futex resumed>) = 0 [pid 5693] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] <... close resumed>) = 0 [pid 5698] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5697] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5696] <... futex resumed>) = 1 [pid 5695] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5693] <... futex resumed>) = 0 [pid 5692] <... futex resumed>) = 0 [pid 5033] rmdir("./26/file0" [pid 5698] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5697] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5696] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5693] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5692] close(3 [pid 5033] <... rmdir resumed>) = 0 [pid 5698] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5697] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5692] <... close resumed>) = 0 [pid 5033] umount2("./26/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5698] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5697] <... futex resumed>) = 1 [pid 5695] <... futex resumed>) = 0 [pid 5692] close(4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5698] <... futex resumed>) = 1 [pid 5697] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5695] close(3 [pid 5693] <... futex resumed>) = 0 [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(AT_FDCWD, "./26/cgroup", [pid 5698] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5695] <... close resumed>) = 0 [pid 5693] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5692] close(5 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5698] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5695] close(4 [pid 5693] <... futex resumed>) = 0 [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] unlink("./26/cgroup" [pid 5698] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5692] close(6 [pid 5033] <... unlink resumed>) = 0 [pid 5698] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5695] close(5 [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./26/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5698] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] close(7 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5698] <... futex resumed>) = 1 [pid 5695] close(6 [pid 5693] <... futex resumed>) = 0 [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(AT_FDCWD, "./26/cgroup.net", [pid 5698] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(3 [pid 5692] close(8 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5695] close(7 [pid 5693] <... close resumed>) = 0 [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] unlink("./26/cgroup.net" [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(4 [pid 5692] close(9 [pid 5033] <... unlink resumed>) = 0 [pid 5695] close(8 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] getdents64(3, [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(5 [pid 5692] close(10 [pid 5033] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5695] close(9 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] close(3 [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(6 [pid 5692] close(11 [pid 5033] <... close resumed>) = 0 [pid 5695] close(10 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] rmdir("./26" [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(7 [pid 5692] close(12 [pid 5033] <... rmdir resumed>) = 0 [pid 5695] close(11 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] mkdir("./27", 0777 [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(8 [pid 5692] close(13 [pid 5033] <... mkdir resumed>) = 0 [pid 5695] close(12 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(9 [ 227.932200][ T5709] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 227.969587][ T5709] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 227.969587][ T5709] inode = 12 2341 [pid 5692] close(14 [pid 5033] <... openat resumed>) = 3 [pid 5695] close(13 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(10 [pid 5692] close(15 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5695] close(14 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5691] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5033] close(3 [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(11 [pid 5692] close(16 [pid 5691] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] <... close resumed>) = 0 [pid 5695] close(15 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5691] <... futex resumed>) = 1 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5710 attached [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(12 [pid 5692] close(17 [pid 5691] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5710] set_robust_list(0x55555654e6a0, 24 [pid 5695] close(16 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 77 [pid 5710] <... set_robust_list resumed>) = 0 [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(13 [pid 5692] close(18 [pid 5710] chdir("./27" [pid 5695] close(17 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5710] <... chdir resumed>) = 0 [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(14 [pid 5692] close(19 [pid 5710] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5695] close(18 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5710] <... prctl resumed>) = 0 [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(15 [pid 5692] close(20 [pid 5710] setpgid(0, 0 [pid 5695] close(19 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5710] <... setpgid resumed>) = 0 [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(16 [pid 5692] close(21 [pid 5710] symlink("/syzcgroup/unified/syz2", "./cgroup" [pid 5695] close(20 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5710] <... symlink resumed>) = 0 [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(17 [pid 5692] close(22 [pid 5710] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu" [pid 5695] close(21 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5710] <... symlink resumed>) = 0 [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5694] <... futex resumed>) = 0 [pid 5693] close(18 [pid 5692] close(23 [pid 5710] symlink("/syzcgroup/net/syz2", "./cgroup.net" [pid 5695] close(22 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5710] <... symlink resumed>) = 0 [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(19 [pid 5692] close(24 [pid 5710] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5695] close(23 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5710] <... openat resumed>) = 3 [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(20 [pid 5692] close(25 [pid 5710] write(3, "1000", 4 [pid 5695] close(24 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5710] <... write resumed>) = 4 [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(21 [pid 5692] close(26 [pid 5710] close(3 [pid 5695] close(25 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5710] <... close resumed>) = 0 [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(22 [pid 5692] close(27 [pid 5710] symlink("/dev/binderfs", "./binderfs" [pid 5695] close(26 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5710] <... symlink resumed>) = 0 [ 227.969587][ T5709] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 228.000029][ T5709] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(23 [pid 5692] close(28 [pid 5710] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5695] close(27 [pid 5694] ioctl(0, VFAT_IOCTL_READDIR_SHORT [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5710] <... futex resumed>) = 0 [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(24 [pid 5692] close(29 [pid 5710] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5695] close(28 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5710] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(25 [pid 5692] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5710] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5695] close(29 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... write resumed>) = 156 [pid 5710] <... mprotect resumed>) = 0 [pid 5695] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5693] close(26 [pid 5692] exit_group(0 [pid 5710] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5696] <... futex resumed>) = ? [pid 5695] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5692] <... exit_group resumed>) = ? [pid 5710] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5696] +++ exited with 0 +++ [pid 5695] <... write resumed>) = 156 [pid 5693] close(27 [pid 5692] +++ exited with 0 +++ [pid 5710] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5695] exit_group(0 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) ./strace-static-x86_64: Process 5711 attached [pid 5697] <... futex resumed>) = ? [pid 5695] <... exit_group resumed>) = ? [ 228.026235][ T5709] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5709 [syz-executor676] __gfs2_lookup+0x83/0x280 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5693] close(28 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=73, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=55 /* 0.55 s */} --- [pid 5711] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5710] <... clone3 resumed> => {parent_tid=[78]}, 88) = 78 [pid 5697] +++ exited with 0 +++ [pid 5695] +++ exited with 0 +++ [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./25", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5711] <... rseq resumed>) = 0 [pid 5710] rt_sigprocmask(SIG_SETMASK, [], [pid 5693] close(29 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=70, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=69 /* 0.69 s */} --- [pid 5711] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5710] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5693] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5711] <... set_robust_list resumed>) = 0 [pid 5710] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5693] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5032] <... openat resumed>) = 3 [pid 5711] rt_sigprocmask(SIG_SETMASK, [], [pid 5710] <... futex resumed>) = 0 [pid 5693] <... write resumed>) = 156 [pid 5032] newfstatat(3, "", [pid 5030] umount2("./24", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5711] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5710] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5693] exit_group(0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5711] memfd_create("syzkaller", 0 [pid 5698] <... futex resumed>) = ? [pid 5693] <... exit_group resumed>) = ? [pid 5032] getdents64(3, [pid 5030] openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5711] <... memfd_create resumed>) = 3 [pid 5698] +++ exited with 0 +++ [pid 5693] +++ exited with 0 +++ [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5030] <... openat resumed>) = 3 [pid 5711] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] umount2("./25/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(3, "", [pid 5711] <... mmap resumed>) = 0x7f4f650a0000 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=72, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=51 /* 0.51 s */} --- [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] newfstatat(AT_FDCWD, "./25/cgroup.cpu", [pid 5031] umount2("./24", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(3, [pid 5694] <... ioctl resumed>, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 5691] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5032] unlink("./25/cgroup.cpu" [pid 5031] openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./24/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... unlink resumed>) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./25/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(3, "", [pid 5030] newfstatat(AT_FDCWD, "./24/cgroup.cpu", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] newfstatat(AT_FDCWD, "./25/binderfs", [pid 5031] getdents64(3, [pid 5030] unlink("./24/cgroup.cpu" [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5030] <... unlink resumed>) = 0 [pid 5032] unlink("./25/binderfs" [pid 5031] umount2("./24/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./24/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... unlink resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(AT_FDCWD, "./24/cgroup.cpu", [pid 5030] newfstatat(AT_FDCWD, "./24/binderfs", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] newfstatat(AT_FDCWD, "./25/file0", [pid 5031] unlink("./24/cgroup.cpu" [pid 5030] unlink("./24/binderfs" [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5032] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./24/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] newfstatat(AT_FDCWD, "./24/binderfs", [pid 5030] newfstatat(AT_FDCWD, "./24/file0", [pid 5032] <... openat resumed>) = 4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] newfstatat(4, "", [pid 5031] unlink("./24/binderfs" [pid 5030] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] getdents64(4, [pid 5031] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... openat resumed>) = 4 [pid 5032] getdents64(4, [pid 5031] newfstatat(AT_FDCWD, "./24/file0", [pid 5030] newfstatat(4, "", [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 228.111603][ T5709] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [pid 5032] close(4 [pid 5031] umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, [pid 5694] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5691] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5032] rmdir("./25/file0" [pid 5031] openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] getdents64(4, [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5032] umount2("./25/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(4, "", [pid 5030] close(4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... close resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./25/cgroup", [pid 5031] getdents64(4, [pid 5030] rmdir("./24/file0" [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] <... rmdir resumed>) = 0 [pid 5032] unlink("./25/cgroup" [pid 5031] getdents64(4, [pid 5030] umount2("./24/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... unlink resumed>) = 0 [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./25/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] close(4 [pid 5030] newfstatat(AT_FDCWD, "./24/cgroup", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] newfstatat(AT_FDCWD, "./25/cgroup.net", [pid 5031] rmdir("./24/file0" [pid 5030] unlink("./24/cgroup" [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5032] unlink("./25/cgroup.net" [pid 5031] umount2("./24/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./24/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... unlink resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] getdents64(3, [pid 5031] newfstatat(AT_FDCWD, "./24/cgroup", [pid 5030] newfstatat(AT_FDCWD, "./24/cgroup.net", [pid 5032] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] close(3 [pid 5031] unlink("./24/cgroup" [pid 5030] unlink("./24/cgroup.net" [pid 5032] <... close resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [ 228.154731][ T5709] gfs2: fsid=syz:syz.0: about to withdraw this file system [pid 5032] rmdir("./25" [pid 5031] umount2("./24/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(3, ./strace-static-x86_64: Process 5708 attached [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5032] mkdir("./26", 0777 [pid 5031] newfstatat(AT_FDCWD, "./24/cgroup.net", [pid 5030] close(3 [pid 5694] <... futex resumed>) = 0 [pid 5691] <... futex resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... close resumed>) = 0 [pid 5694] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5691] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] unlink("./24/cgroup.net" [pid 5030] rmdir("./24" [pid 5694] <... openat resumed>) = -1 EIO (Input/output error) [pid 5032] <... openat resumed>) = 3 [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5694] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] getdents64(3, [pid 5030] mkdir("./25", 0777 [pid 5708] set_robust_list(0x55555654e6a0, 24 [pid 5694] <... futex resumed>) = 1 [pid 5691] <... futex resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5708] <... set_robust_list resumed>) = 0 [pid 5708] chdir("./25" [pid 5032] close(3 [pid 5031] close(3 [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5708] <... chdir resumed>) = 0 [pid 5708] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5708] setpgid(0, 0 [pid 5032] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5694] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5708] <... setpgid resumed>) = 0 [pid 5708] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] rmdir("./24" [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5708] <... symlink resumed>) = 0 [pid 5708] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5708] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0 [pid 5708] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5708] write(3, "1000", 4) = 4 ./strace-static-x86_64: Process 5712 attached [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 75 [pid 5708] close(3 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] mkdir("./25", 0777 [pid 5708] <... close resumed>) = 0 [pid 5708] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5708] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5708] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [ 228.196609][ T5709] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 228.207634][ T5709] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 228.214333][ T5709] gfs2: fsid=syz:syz.0: File system withdrawn [ 228.253986][ T5709] CPU: 1 PID: 5709 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 228.264516][ T5709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 228.274650][ T5709] Call Trace: [ 228.277967][ T5709] [ 228.280930][ T5709] dump_stack_lvl+0x136/0x150 [ 228.285672][ T5709] gfs2_withdraw+0xb33/0x1060 [ 228.290423][ T5709] ? gfs2_consist_inode_i+0x104/0x150 [ 228.295854][ T5709] gfs2_dirent_scan+0x32a/0x3d0 [ 228.300778][ T5709] ? gfs2_dirent_prev+0x210/0x210 [ 228.305851][ T5709] ? gfs2_dirent_prev+0x210/0x210 [ 228.310924][ T5709] gfs2_dirent_search+0x47d/0x580 [ 228.315987][ T5709] ? get_first_leaf+0x190/0x190 [ 228.320879][ T5709] ? gfs2_permission+0x256/0x3e0 [ 228.325850][ T5709] gfs2_dir_search+0x8d/0x2d0 [ 228.330571][ T5709] ? gfs2_dir_read+0x14e0/0x14e0 [ 228.335542][ T5709] gfs2_lookupi+0x481/0x640 [ 228.340071][ T5709] ? gfs2_lookup_by_inum+0x100/0x100 [ 228.345387][ T5709] ? __gfs2_lookup+0x83/0x280 [ 228.350269][ T5709] ? d_alloc_parallel+0x693/0x1530 [ 228.355417][ T5709] __gfs2_lookup+0x83/0x280 [ 228.359948][ T5709] ? gfs2_lookupi+0x640/0x640 [ 228.364654][ T5709] ? __d_lookup_rcu+0x4e0/0x4e0 [ 228.369551][ T5709] ? __d_lookup+0x289/0x4c0 [ 228.374081][ T5709] gfs2_atomic_open+0xde/0x250 [ 228.378870][ T5709] ? __gfs2_lookup+0x280/0x280 [ 228.383664][ T5709] lookup_open.isra.0+0xce2/0x1400 [ 228.388801][ T5709] ? link_path_walk.part.0+0xd60/0xd60 [ 228.394294][ T5709] ? lookup_fast+0x14e/0x520 [ 228.398910][ T5709] path_openat+0x969/0x2710 [ 228.403446][ T5709] ? path_lookupat+0x840/0x840 [ 228.408241][ T5709] ? find_held_lock+0x2d/0x110 [ 228.413047][ T5709] do_filp_open+0x1ba/0x410 [ 228.417586][ T5709] ? may_open_dev+0xf0/0xf0 [ 228.422122][ T5709] ? find_held_lock+0x2d/0x110 [ 228.426920][ T5709] ? do_raw_spin_lock+0x124/0x2b0 [ 228.431974][ T5709] ? spin_bug+0x1c0/0x1c0 [ 228.436684][ T5709] ? _raw_spin_unlock+0x28/0x40 [ 228.441574][ T5709] ? alloc_fd+0x2e4/0x750 [ 228.445945][ T5709] do_sys_openat2+0x160/0x1c0 [ 228.450655][ T5709] ? build_open_flags+0x720/0x720 [ 228.455712][ T5709] ? ptrace_notify+0xfe/0x140 [ 228.460430][ T5709] ? lock_downgrade+0x690/0x690 [ 228.465308][ T5709] __x64_sys_openat+0x143/0x1f0 [ 228.470212][ T5709] ? __ia32_sys_open+0x1c0/0x1c0 [ 228.475275][ T5709] ? _raw_spin_unlock_irq+0x23/0x50 [ 228.480508][ T5709] ? lockdep_hardirqs_on+0x7d/0x100 [ 228.485733][ T5709] ? _raw_spin_unlock_irq+0x2e/0x50 [ 228.490970][ T5709] ? ptrace_notify+0xfe/0x140 [ 228.495685][ T5709] do_syscall_64+0x39/0xb0 [ 228.500121][ T5709] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 228.506057][ T5709] RIP: 0033:0x7f4f6dd107f9 [ 228.510493][ T5709] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 228.530125][ T5709] RSP: 002b:00007f4f6609f228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 228.538571][ T5709] RAX: ffffffffffffffda RBX: 00007f4f6dda46f8 RCX: 00007f4f6dd107f9 [ 228.546564][ T5709] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [pid 5712] set_robust_list(0x55555654e6a0, 24 [pid 5031] <... mkdir resumed>) = 0 [pid 5030] close(3 [pid 5708] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5708] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5708] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5713 attached [pid 5713] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5708] <... clone3 resumed> => {parent_tid=[81]}, 88) = 81 [pid 5713] <... rseq resumed>) = 0 [pid 5708] rt_sigprocmask(SIG_SETMASK, [], [pid 5713] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5708] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5713] <... set_robust_list resumed>) = 0 [pid 5708] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5713] rt_sigprocmask(SIG_SETMASK, [], [pid 5708] <... futex resumed>) = 0 [pid 5713] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5708] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5713] memfd_create("syzkaller", 0) = 3 [pid 5713] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5712] <... set_robust_list resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] <... close resumed>) = 0 [pid 5712] chdir("./26" [pid 5031] <... openat resumed>) = 3 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5712] <... chdir resumed>) = 0 [pid 5709] <... openat resumed>) = -1 EIO (Input/output error) [pid 5712] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5709] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5714 attached [pid 5712] <... prctl resumed>) = 0 [pid 5709] <... futex resumed>) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5712] setpgid(0, 0 [pid 5709] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5712] <... setpgid resumed>) = 0 [pid 5712] symlink("/syzcgroup/unified/syz1", "./cgroup") = 0 [pid 5691] close(3 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5714] set_robust_list(0x55555654e6a0, 24 [pid 5712] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 5691] <... close resumed>) = 0 [pid 5031] close(3 [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 72 [pid 5712] <... symlink resumed>) = 0 [pid 5691] close(4 [pid 5031] <... close resumed>) = 0 [pid 5712] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5712] <... symlink resumed>) = 0 [pid 5691] close(5 [pid 5712] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5712] <... openat resumed>) = 3 [pid 5691] close(6 [pid 5712] write(3, "1000", 4 [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5712] <... write resumed>) = 4 [pid 5691] close(7./strace-static-x86_64: Process 5715 attached [pid 5712] close(3 [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5714] <... set_robust_list resumed>) = 0 [pid 5715] set_robust_list(0x55555654e6a0, 24 [pid 5712] <... close resumed>) = 0 [pid 5691] close(8 [pid 5715] <... set_robust_list resumed>) = 0 [pid 5712] symlink("/dev/binderfs", "./binderfs" [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5715] chdir("./25" [pid 5714] chdir("./25" [pid 5712] <... symlink resumed>) = 0 [pid 5691] close(9 [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 74 [pid 5715] <... chdir resumed>) = 0 [pid 5714] <... chdir resumed>) = 0 [ 228.554556][ T5709] RBP: 00007f4f6dda46f0 R08: 00007fffaa0db527 R09: 00007f4f6609f6c0 [ 228.562567][ T5709] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46fc [ 228.570572][ T5709] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 228.578656][ T5709] [pid 5712] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5715] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5714] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5712] <... futex resumed>) = 0 [pid 5691] close(10 [pid 5715] <... prctl resumed>) = 0 [pid 5714] <... prctl resumed>) = 0 [pid 5712] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5715] setpgid(0, 0 [pid 5714] setpgid(0, 0 [pid 5712] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5691] close(11 [pid 5715] <... setpgid resumed>) = 0 [pid 5714] <... setpgid resumed>) = 0 [pid 5712] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5715] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 5714] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 5712] <... mprotect resumed>) = 0 [pid 5691] close(12 [pid 5715] <... symlink resumed>) = 0 [pid 5714] <... symlink resumed>) = 0 [pid 5712] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5715] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 5714] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu" [pid 5712] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5691] close(13 [pid 5715] <... symlink resumed>) = 0 [pid 5712] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) ./strace-static-x86_64: Process 5716 attached [pid 5715] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 5691] close(14 [pid 5716] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5715] <... symlink resumed>) = 0 [pid 5712] <... clone3 resumed> => {parent_tid=[76]}, 88) = 76 [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5716] <... rseq resumed>) = 0 [pid 5715] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5714] <... symlink resumed>) = 0 [pid 5712] rt_sigprocmask(SIG_SETMASK, [], [pid 5691] close(15 [pid 5716] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5715] <... openat resumed>) = 3 [pid 5714] symlink("/syzcgroup/net/syz3", "./cgroup.net" [pid 5712] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5716] <... set_robust_list resumed>) = 0 [pid 5715] write(3, "1000", 4 [pid 5712] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5691] close(16 [pid 5714] <... symlink resumed>) = 0 [pid 5716] rt_sigprocmask(SIG_SETMASK, [], [pid 5715] <... write resumed>) = 4 [pid 5714] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5712] <... futex resumed>) = 0 [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5716] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5715] close(3 [pid 5712] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5691] close(17 [pid 5714] <... openat resumed>) = 3 [pid 5716] memfd_create("syzkaller", 0 [pid 5715] <... close resumed>) = 0 [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5716] <... memfd_create resumed>) = 3 [pid 5715] symlink("/dev/binderfs", "./binderfs" [pid 5714] write(3, "1000", 4 [pid 5691] close(18 [pid 5716] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5715] <... symlink resumed>) = 0 [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5716] <... mmap resumed>) = 0x7f4f650a0000 [pid 5715] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5691] close(19 [pid 5715] <... futex resumed>) = 0 [pid 5714] <... write resumed>) = 4 [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5715] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5691] close(20 [pid 5715] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5715] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5691] close(21 [pid 5715] <... mprotect resumed>) = 0 [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5715] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5691] close(22 [pid 5715] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5715] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5691] close(23 [pid 5714] close(3 [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5715] <... clone3 resumed> => {parent_tid=[75]}, 88) = 75 [pid 5691] close(24./strace-static-x86_64: Process 5717 attached [pid 5715] rt_sigprocmask(SIG_SETMASK, [], [pid 5714] <... close resumed>) = 0 [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5715] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5691] close(25 [pid 5717] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5715] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5714] symlink("/dev/binderfs", "./binderfs" [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5715] <... futex resumed>) = 0 [pid 5691] close(26 [pid 5717] <... rseq resumed>) = 0 [pid 5715] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5691] close(27) = -1 EBADF (Bad file descriptor) [pid 5691] close(28) = -1 EBADF (Bad file descriptor) [pid 5691] close(29 [pid 5717] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5714] <... symlink resumed>) = 0 [pid 5691] <... close resumed>) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5691] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5691] exit_group(0 [pid 5717] <... set_robust_list resumed>) = 0 [pid 5714] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5709] <... futex resumed>) = ? [pid 5691] <... exit_group resumed>) = ? [pid 5709] +++ exited with 0 +++ [pid 5717] rt_sigprocmask(SIG_SETMASK, [], [pid 5714] <... futex resumed>) = 0 [pid 5714] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5717] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5714] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5717] memfd_create("syzkaller", 0 [pid 5714] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5717] <... memfd_create resumed>) = 3 [pid 5714] <... mprotect resumed>) = 0 [pid 5717] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5714] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5717] <... mmap resumed>) = 0x7f4f650a0000 [pid 5714] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5714] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5718 attached => {parent_tid=[73]}, 88) = 73 [pid 5714] rt_sigprocmask(SIG_SETMASK, [], [pid 5718] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5714] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5718] <... rseq resumed>) = 0 [pid 5714] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5718] set_robust_list(0x7f4f6d4c09a0, 24) = 0 [pid 5714] <... futex resumed>) = 0 [pid 5714] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5718] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5718] memfd_create("syzkaller", 0) = 3 [pid 5718] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5694] <... futex resumed>) = ? [pid 5694] +++ exited with 0 +++ [pid 5691] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=77, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=62 /* 0.62 s */} --- [pid 5034] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5034] kill(-77, SIGKILL) = 0 [pid 5034] kill(77, SIGKILL) = 0 [pid 5034] umount2("./25", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5034] umount2("./25/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./25/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./25/cgroup.cpu") = 0 [pid 5034] umount2("./25/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./25/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./25/binderfs") = 0 [pid 5034] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5711] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5717] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./25/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5713] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 5716] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./25/file0") = 0 [pid 5034] umount2("./25/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./25/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./25/cgroup") = 0 [pid 5034] umount2("./25/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./25/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./25/cgroup.net") = 0 [pid 5034] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./25") = 0 [pid 5034] mkdir("./26", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5719 attached , child_tidptr=0x55555654e690) = 80 [pid 5719] set_robust_list(0x55555654e6a0, 24) = 0 [pid 5719] chdir("./26") = 0 [pid 5719] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5719] setpgid(0, 0) = 0 [pid 5719] symlink("/syzcgroup/unified/syz5", "./cgroup") = 0 [pid 5719] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu") = 0 [pid 5719] symlink("/syzcgroup/net/syz5", "./cgroup.net") = 0 [pid 5719] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5718] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5719] <... openat resumed>) = 3 [pid 5719] write(3, "1000", 4) = 4 [pid 5719] close(3) = 0 [pid 5719] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5719] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5719] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5719] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5719] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5719] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5720 attached [pid 5720] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5719] <... clone3 resumed> => {parent_tid=[81]}, 88) = 81 [pid 5720] <... rseq resumed>) = 0 [pid 5719] rt_sigprocmask(SIG_SETMASK, [], [pid 5720] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5719] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5720] <... set_robust_list resumed>) = 0 [pid 5719] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5720] rt_sigprocmask(SIG_SETMASK, [], [pid 5719] <... futex resumed>) = 0 [pid 5720] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5719] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5720] memfd_create("syzkaller", 0) = 3 [pid 5720] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5717] <... write resumed>) = 16777216 [pid 5717] munmap(0x7f4f650a0000, 16777216) = 0 [pid 5717] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5717] ioctl(4, LOOP_SET_FD, 3 [pid 5711] <... write resumed>) = 16777216 [pid 5716] <... write resumed>) = 16777216 [pid 5716] munmap(0x7f4f650a0000, 16777216 [pid 5711] munmap(0x7f4f650a0000, 16777216 [pid 5717] <... ioctl resumed>) = 0 [pid 5717] close(3) = 0 [pid 5717] mkdir("./file0", 0777) = 0 [ 230.359327][ T5717] loop4: detected capacity change from 0 to 32768 [pid 5717] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5713] <... write resumed>) = 16777216 [ 230.427741][ T5717] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 230.470485][ T5717] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [pid 5713] munmap(0x7f4f650a0000, 16777216 [pid 5716] <... munmap resumed>) = 0 [ 230.521677][ T5717] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [pid 5716] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5716] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5716] close(3) = 0 [pid 5716] mkdir("./file0", 0777) = 0 [pid 5716] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5711] <... munmap resumed>) = 0 [pid 5711] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [ 230.566625][ T5083] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 230.573567][ T5083] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 230.587731][ T5716] loop1: detected capacity change from 0 to 32768 [pid 5711] ioctl(4, LOOP_SET_FD, 3 [pid 5718] <... write resumed>) = 16777216 [pid 5718] munmap(0x7f4f650a0000, 16777216 [pid 5713] <... munmap resumed>) = 0 [pid 5713] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5713] ioctl(4, LOOP_SET_FD, 3 [pid 5711] <... ioctl resumed>) = 0 [ 230.619481][ T5711] loop2: detected capacity change from 0 to 32768 [ 230.626490][ T5716] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 230.640321][ T5716] CPU: 0 PID: 5716 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 230.650817][ T5716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 230.651698][ T5713] loop0: detected capacity change from 0 to 32768 [pid 5711] close(3) = 0 [pid 5711] mkdir("./file0", 0777) = 0 [ 230.660893][ T5716] Call Trace: [ 230.660905][ T5716] [ 230.660916][ T5716] dump_stack_lvl+0x136/0x150 [ 230.660968][ T5716] sysfs_warn_dup+0x80/0xa0 [ 230.682985][ T5716] sysfs_create_dir_ns+0x237/0x290 [ 230.688163][ T5716] ? sysfs_create_mount_point+0xb0/0xb0 [ 230.693784][ T5716] ? spin_bug+0x1c0/0x1c0 [ 230.698180][ T5716] ? do_raw_spin_unlock+0x175/0x230 [ 230.703438][ T5716] kobject_add_internal+0x2c9/0x9c0 [ 230.704647][ T5711] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 230.708661][ T5716] ? kfree+0x11/0x150 [pid 5711] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5713] <... ioctl resumed>) = 0 [pid 5713] close(3) = 0 [pid 5713] mkdir("./file0", 0777) = 0 [ 230.708696][ T5716] kobject_init_and_add+0x101/0x170 [ 230.708731][ T5716] ? kobject_create_and_add+0xf0/0xf0 [ 230.730714][ T5716] ? lockdep_init_map_type+0x21e/0x810 [ 230.736235][ T5716] ? lockdep_hardirqs_on+0x7d/0x100 [ 230.741502][ T5716] ? lockdep_init_map_type+0x21e/0x810 [ 230.747029][ T5716] gfs2_sys_fs_add+0x1d5/0x450 [ 230.751847][ T5716] ? recover_store+0x170/0x170 [ 230.756750][ T5716] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 230.762529][ T5716] gfs2_fill_super+0x1312/0x2aa0 [ 230.767540][ T5716] ? gfs2_reconfigure+0xf90/0xf90 [ 230.772625][ T5716] ? snprintf+0xbf/0x100 [ 230.776921][ T5716] ? vsprintf+0x30/0x30 [ 230.781140][ T5716] ? wait_for_completion_io_timeout+0x20/0x20 [ 230.787273][ T5716] ? set_blocksize+0x2d8/0x370 [ 230.792101][ T5716] get_tree_bdev+0x43e/0x7d0 [ 230.796754][ T5716] ? gfs2_reconfigure+0xf90/0xf90 [ 230.801827][ T5716] gfs2_get_tree+0x4e/0x270 [ 230.806382][ T5716] vfs_get_tree+0x8d/0x350 [ 230.810848][ T5716] path_mount+0x136e/0x1e70 [ 230.815406][ T5716] ? putname+0x102/0x140 [pid 5713] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5718] <... munmap resumed>) = 0 [pid 5718] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [ 230.819704][ T5716] ? lockdep_hardirqs_on+0x7d/0x100 [ 230.824964][ T5716] ? finish_automount+0xa30/0xa30 [ 230.830064][ T5716] ? putname+0x102/0x140 [ 230.834358][ T5716] __x64_sys_mount+0x283/0x300 [ 230.839173][ T5716] ? copy_mnt_ns+0xb30/0xb30 [ 230.843815][ T5716] ? lockdep_hardirqs_on+0x7d/0x100 [ 230.849082][ T5716] ? _raw_spin_unlock_irq+0x2e/0x50 [ 230.854349][ T5716] ? ptrace_notify+0xfe/0x140 [ 230.859125][ T5716] do_syscall_64+0x39/0xb0 [ 230.859671][ T5718] loop3: detected capacity change from 0 to 32768 [pid 5718] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5718] close(3) = 0 [pid 5718] mkdir("./file0", 0777) = 0 [ 230.863581][ T5716] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 230.876090][ T5716] RIP: 0033:0x7f4f6dd11c5a [ 230.880543][ T5716] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 230.900715][ T5716] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 230.909187][ T5716] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 230.917222][ T5716] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 230.925243][ T5716] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 230.933261][ T5716] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 230.941281][ T5716] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 230.949300][ T5716] [ 230.956995][ T5711] CPU: 1 PID: 5711 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 230.967486][ T5711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 230.977581][ T5711] Call Trace: [ 230.980887][ T5711] [ 230.983850][ T5711] dump_stack_lvl+0x136/0x150 [ 230.988600][ T5711] sysfs_warn_dup+0x80/0xa0 [ 230.993149][ T5711] sysfs_create_dir_ns+0x237/0x290 [ 230.998311][ T5711] ? sysfs_create_mount_point+0xb0/0xb0 [ 231.003916][ T5711] ? spin_bug+0x1c0/0x1c0 [ 231.008324][ T5711] ? do_raw_spin_unlock+0x175/0x230 [ 231.013584][ T5711] kobject_add_internal+0x2c9/0x9c0 [ 231.018847][ T5711] ? kfree+0x11/0x150 [ 231.022884][ T5711] kobject_init_and_add+0x101/0x170 [ 231.028155][ T5711] ? kobject_create_and_add+0xf0/0xf0 [ 231.033585][ T5711] ? lockdep_init_map_type+0x21e/0x810 [ 231.036388][ T5083] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 462ms [ 231.039075][ T5711] ? lockdep_hardirqs_on+0x7d/0x100 [ 231.051778][ T5711] ? lockdep_init_map_type+0x21e/0x810 [ 231.057295][ T5711] gfs2_sys_fs_add+0x1d5/0x450 [ 231.061006][ T5083] gfs2: fsid=syz:syz.0: jid=0: Done [ 231.062084][ T5711] ? recover_store+0x170/0x170 [ 231.072088][ T5711] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 231.076422][ T5718] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 231.077851][ T5711] gfs2_fill_super+0x1312/0x2aa0 [ 231.086153][ T5713] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 231.090143][ T5711] ? gfs2_reconfigure+0xf90/0xf90 [ 231.102598][ T5711] ? snprintf+0xbf/0x100 [ 231.105668][ T5717] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 231.106868][ T5711] ? vsprintf+0x30/0x30 [ 231.106905][ T5711] ? wait_for_completion_io_timeout+0x20/0x20 [ 231.106949][ T5711] ? set_blocksize+0x2d8/0x370 [ 231.106989][ T5711] get_tree_bdev+0x43e/0x7d0 [ 231.133826][ T5711] ? gfs2_reconfigure+0xf90/0xf90 [ 231.138897][ T5711] gfs2_get_tree+0x4e/0x270 [ 231.143449][ T5711] vfs_get_tree+0x8d/0x350 [ 231.147906][ T5711] path_mount+0x136e/0x1e70 [ 231.152470][ T5711] ? putname+0x102/0x140 [ 231.156873][ T5711] ? lockdep_hardirqs_on+0x7d/0x100 [ 231.162162][ T5711] ? finish_automount+0xa30/0xa30 [ 231.167230][ T5711] ? putname+0x102/0x140 [ 231.171503][ T5711] __x64_sys_mount+0x283/0x300 [ 231.176310][ T5711] ? copy_mnt_ns+0xb30/0xb30 [ 231.180951][ T5711] ? lockdep_hardirqs_on+0x7d/0x100 [ 231.186200][ T5711] ? _raw_spin_unlock_irq+0x2e/0x50 [ 231.191443][ T5711] ? ptrace_notify+0xfe/0x140 [ 231.196175][ T5711] do_syscall_64+0x39/0xb0 [ 231.200632][ T5711] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 231.206599][ T5711] RIP: 0033:0x7f4f6dd11c5a [ 231.211082][ T5711] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 231.230730][ T5711] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 231.239177][ T5711] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 231.247194][ T5711] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 231.255209][ T5711] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 231.263207][ T5711] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [pid 5718] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5717] <... mount resumed>) = 0 [ 231.271217][ T5711] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 231.279232][ T5711] [ 231.282357][ T5718] CPU: 0 PID: 5718 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 231.292825][ T5718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 231.302935][ T5718] Call Trace: [ 231.306256][ T5718] [ 231.309223][ T5718] dump_stack_lvl+0x136/0x150 [ 231.313968][ T5718] sysfs_warn_dup+0x80/0xa0 [ 231.318530][ T5718] sysfs_create_dir_ns+0x237/0x290 [ 231.323704][ T5718] ? sysfs_create_mount_point+0xb0/0xb0 [ 231.329310][ T5718] ? spin_bug+0x1c0/0x1c0 [ 231.333724][ T5718] ? do_raw_spin_unlock+0x175/0x230 [ 231.338987][ T5718] kobject_add_internal+0x2c9/0x9c0 [ 231.344244][ T5718] ? kfree+0x11/0x150 [ 231.348282][ T5718] kobject_init_and_add+0x101/0x170 [ 231.353539][ T5718] ? kobject_create_and_add+0xf0/0xf0 [ 231.358971][ T5718] ? lockdep_init_map_type+0x21e/0x810 [ 231.364494][ T5718] ? lockdep_hardirqs_on+0x7d/0x100 [ 231.369754][ T5718] ? lockdep_init_map_type+0x21e/0x810 [ 231.375290][ T5718] gfs2_sys_fs_add+0x1d5/0x450 [ 231.380194][ T5718] ? recover_store+0x170/0x170 [ 231.384993][ T5718] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 231.390759][ T5718] gfs2_fill_super+0x1312/0x2aa0 [ 231.395732][ T5718] ? gfs2_reconfigure+0xf90/0xf90 [ 231.400789][ T5718] ? snprintf+0xbf/0x100 [ 231.405062][ T5718] ? vsprintf+0x30/0x30 [ 231.409247][ T5718] ? wait_for_completion_io_timeout+0x20/0x20 [ 231.415366][ T5718] ? set_blocksize+0x2d8/0x370 [ 231.420161][ T5718] get_tree_bdev+0x43e/0x7d0 [ 231.424784][ T5718] ? gfs2_reconfigure+0xf90/0xf90 [ 231.429838][ T5718] gfs2_get_tree+0x4e/0x270 [ 231.434811][ T5718] vfs_get_tree+0x8d/0x350 [ 231.439269][ T5718] path_mount+0x136e/0x1e70 [ 231.443807][ T5718] ? putname+0x102/0x140 [ 231.448076][ T5718] ? lockdep_hardirqs_on+0x7d/0x100 [ 231.453306][ T5718] ? finish_automount+0xa30/0xa30 [ 231.458447][ T5718] ? putname+0x102/0x140 [ 231.462718][ T5718] __x64_sys_mount+0x283/0x300 [ 231.467511][ T5718] ? copy_mnt_ns+0xb30/0xb30 [ 231.472134][ T5718] ? lockdep_hardirqs_on+0x7d/0x100 [ 231.477373][ T5718] ? _raw_spin_unlock_irq+0x2e/0x50 [ 231.482629][ T5718] ? ptrace_notify+0xfe/0x140 [ 231.487366][ T5718] do_syscall_64+0x39/0xb0 [ 231.491803][ T5718] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 231.497745][ T5718] RIP: 0033:0x7f4f6dd11c5a [ 231.502182][ T5718] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [pid 5720] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [ 231.521924][ T5718] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 231.530391][ T5718] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 231.538404][ T5718] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 231.546398][ T5718] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 231.554398][ T5718] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 231.562415][ T5718] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 231.570421][ T5718] [pid 5717] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5717] chdir("./file0") = 0 [pid 5717] ioctl(4, LOOP_CLR_FD) = 0 [pid 5717] close(4) = 0 [pid 5717] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5715] <... futex resumed>) = 0 [pid 5717] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5715] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5717] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5715] <... futex resumed>) = 0 [pid 5717] openat(AT_FDCWD, "./file0", O_RDONLY [ 231.583496][ T5711] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 231.608655][ T5717] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 231.619025][ T5717] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 231.619025][ T5717] inode = 12 2341 [ 231.619025][ T5717] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 231.632218][ T5713] CPU: 0 PID: 5713 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 231.648112][ T5713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 231.658222][ T5713] Call Trace: [ 231.661544][ T5713] [ 231.664518][ T5713] dump_stack_lvl+0x136/0x150 [ 231.669270][ T5713] sysfs_warn_dup+0x80/0xa0 [ 231.674115][ T5713] sysfs_create_dir_ns+0x237/0x290 [pid 5715] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 5715] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5715] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [ 231.679289][ T5713] ? sysfs_create_mount_point+0xb0/0xb0 [ 231.682016][ T5717] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 231.684873][ T5713] ? spin_bug+0x1c0/0x1c0 [ 231.684922][ T5713] ? do_raw_spin_unlock+0x175/0x230 [ 231.703523][ T5713] kobject_add_internal+0x2c9/0x9c0 [ 231.708789][ T5713] ? kfree+0x11/0x150 [ 231.712821][ T5713] kobject_init_and_add+0x101/0x170 [ 231.718084][ T5713] ? kobject_create_and_add+0xf0/0xf0 [ 231.723515][ T5713] ? lockdep_init_map_type+0x21e/0x810 [ 231.729035][ T5713] ? lockdep_hardirqs_on+0x7d/0x100 [ 231.734300][ T5713] ? lockdep_init_map_type+0x21e/0x810 [ 231.739733][ T5717] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5717 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 231.739807][ T5717] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 231.749869][ T5713] gfs2_sys_fs_add+0x1d5/0x450 [ 231.749920][ T5713] ? recover_store+0x170/0x170 [ 231.749952][ T5713] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 231.749997][ T5713] gfs2_fill_super+0x1312/0x2aa0 [ 231.778710][ T5713] ? gfs2_reconfigure+0xf90/0xf90 [pid 5715] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [ 231.783804][ T5713] ? snprintf+0xbf/0x100 [ 231.788123][ T5713] ? vsprintf+0x30/0x30 [ 231.792340][ T5713] ? wait_for_completion_io_timeout+0x20/0x20 [ 231.798495][ T5713] ? set_blocksize+0x2d8/0x370 [ 231.803324][ T5713] get_tree_bdev+0x43e/0x7d0 [ 231.807980][ T5713] ? gfs2_reconfigure+0xf90/0xf90 [ 231.813072][ T5713] gfs2_get_tree+0x4e/0x270 [ 231.815393][ T5717] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 231.817610][ T5713] vfs_get_tree+0x8d/0x350 [ 231.817659][ T5713] path_mount+0x136e/0x1e70 [pid 5715] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 231.817702][ T5713] ? putname+0x102/0x140 [ 231.835596][ T5717] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 231.838077][ T5713] ? lockdep_hardirqs_on+0x7d/0x100 [ 231.838125][ T5713] ? finish_automount+0xa30/0xa30 [ 231.838169][ T5713] ? putname+0x102/0x140 [ 231.838203][ T5713] __x64_sys_mount+0x283/0x300 [ 231.838243][ T5713] ? copy_mnt_ns+0xb30/0xb30 [ 231.838283][ T5713] ? lockdep_hardirqs_on+0x7d/0x100 [ 231.838323][ T5713] ? _raw_spin_unlock_irq+0x2e/0x50 [ 231.838371][ T5713] ? ptrace_notify+0xfe/0x140 [ 231.838425][ T5713] do_syscall_64+0x39/0xb0 [ 231.838461][ T5713] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 231.895882][ T5717] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 231.896542][ T5713] RIP: 0033:0x7f4f6dd11c5a [ 231.907499][ T5713] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 231.923641][ T5717] gfs2: fsid=syz:syz.0: File system withdrawn [pid 5715] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5726 attached => {parent_tid=[76]}, 88) = 76 [pid 5726] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5715] rt_sigprocmask(SIG_SETMASK, [], [pid 5726] <... rseq resumed>) = 0 [pid 5715] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5726] set_robust_list(0x7f4f6609f9a0, 24 [pid 5715] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5726] <... set_robust_list resumed>) = 0 [pid 5715] <... futex resumed>) = 0 [pid 5726] rt_sigprocmask(SIG_SETMASK, [], [ 231.927229][ T5713] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 231.927268][ T5713] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 231.927291][ T5713] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 231.927313][ T5713] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 231.927336][ T5713] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 231.973836][ T5713] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 231.981869][ T5713] [ 231.984932][ T5717] CPU: 1 PID: 5717 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 231.995435][ T5717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 231.997222][ T5716] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 232.005507][ T5717] Call Trace: [ 232.005519][ T5717] [ 232.025674][ T5717] dump_stack_lvl+0x136/0x150 [ 232.025844][ T5716] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 232.030398][ T5717] gfs2_withdraw+0xb33/0x1060 [ 232.041618][ T5717] ? gfs2_consist_inode_i+0x104/0x150 [ 232.045052][ T5711] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 232.047025][ T5717] gfs2_dirent_scan+0x32a/0x3d0 [ 232.047078][ T5717] ? gfs2_dirent_prev+0x210/0x210 [ 232.047126][ T5717] ? gfs2_dirent_prev+0x210/0x210 [ 232.047179][ T5717] gfs2_dirent_search+0x47d/0x580 [ 232.047229][ T5717] ? get_first_leaf+0x190/0x190 [ 232.047276][ T5717] ? gfs2_permission+0x256/0x3e0 [ 232.047318][ T5717] gfs2_dir_search+0x8d/0x2d0 [ 232.047365][ T5717] ? gfs2_dir_read+0x14e0/0x14e0 [ 232.047414][ T5717] gfs2_lookupi+0x481/0x640 [ 232.084856][ T5718] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 232.088298][ T5717] ? gfs2_lookup_by_inum+0x100/0x100 [ 232.088345][ T5717] ? __gfs2_lookup+0x83/0x280 [ 232.088394][ T5717] ? d_alloc_parallel+0x693/0x1530 [ 232.093330][ T5718] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 232.097819][ T5717] __gfs2_lookup+0x83/0x280 [ 232.097858][ T5717] ? gfs2_lookupi+0x640/0x640 [ 232.097894][ T5717] ? __d_lookup_rcu+0x4e0/0x4e0 [ 232.097932][ T5717] ? __d_lookup+0x289/0x4c0 [ 232.097969][ T5717] gfs2_atomic_open+0xde/0x250 [ 232.098006][ T5717] ? __gfs2_lookup+0x280/0x280 [ 232.098042][ T5717] lookup_open.isra.0+0xce2/0x1400 [ 232.166844][ T5717] ? link_path_walk.part.0+0xd60/0xd60 [ 232.172459][ T5717] ? lookup_fast+0x14e/0x520 [ 232.177111][ T5717] path_openat+0x969/0x2710 [ 232.181707][ T5717] ? path_lookupat+0x840/0x840 [ 232.186536][ T5717] do_filp_open+0x1ba/0x410 [ 232.191112][ T5717] ? may_open_dev+0xf0/0xf0 [ 232.195706][ T5717] ? find_held_lock+0x2d/0x110 [ 232.200525][ T5717] ? do_raw_spin_lock+0x124/0x2b0 [ 232.205614][ T5717] ? spin_bug+0x1c0/0x1c0 [ 232.210039][ T5717] ? _raw_spin_unlock+0x28/0x40 [ 232.214977][ T5717] ? alloc_fd+0x2e4/0x750 [ 232.219376][ T5717] do_sys_openat2+0x160/0x1c0 [ 232.221840][ T5713] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 232.224127][ T5717] ? build_open_flags+0x720/0x720 [ 232.243103][ T5717] ? ptrace_notify+0xfe/0x140 [ 232.247849][ T5717] ? lock_downgrade+0x690/0x690 [ 232.252746][ T5717] __x64_sys_openat+0x143/0x1f0 [ 232.257675][ T5717] ? __ia32_sys_open+0x1c0/0x1c0 [ 232.262765][ T5717] ? _raw_spin_unlock_irq+0x23/0x50 [ 232.268034][ T5717] ? lockdep_hardirqs_on+0x7d/0x100 [ 232.273318][ T5717] ? _raw_spin_unlock_irq+0x2e/0x50 [ 232.278589][ T5717] ? ptrace_notify+0xfe/0x140 [pid 5715] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5726] <... rt_sigprocmask resumed>NULL, 8) = 0 [ 232.283338][ T5717] do_syscall_64+0x39/0xb0 [ 232.287806][ T5717] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 232.293776][ T5717] RIP: 0033:0x7f4f6dd107f9 [ 232.298230][ T5717] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 232.308133][ T5713] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 232.317862][ T5717] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [pid 5726] ioctl(0, VFAT_IOCTL_READDIR_SHORT [pid 5718] <... mount resumed>) = -1 EEXIST (File exists) [pid 5717] <... openat resumed>) = -1 EIO (Input/output error) [pid 5716] <... mount resumed>) = -1 EEXIST (File exists) [pid 5715] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5711] <... mount resumed>) = -1 EEXIST (File exists) [pid 5710] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5708] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5718] ioctl(4, LOOP_CLR_FD [pid 5716] ioctl(4, LOOP_CLR_FD [pid 5711] ioctl(4, LOOP_CLR_FD [pid 5726] <... ioctl resumed>, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 5717] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5715] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5710] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5708] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5713] <... mount resumed>) = -1 EEXIST (File exists) [pid 5713] ioctl(4, LOOP_CLR_FD [pid 5726] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5717] <... futex resumed>) = 0 [pid 5715] <... futex resumed>) = 0 [pid 5710] <... futex resumed>) = 0 [pid 5708] <... futex resumed>) = 0 [pid 5726] <... futex resumed>) = 0 [pid 5717] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5715] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5710] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5708] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5726] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5720] <... write resumed>) = 16777216 [pid 5715] <... mmap resumed>) = 0x7f4f6605e000 [pid 5710] <... mmap resumed>) = 0x7f4f6607f000 [pid 5708] <... mmap resumed>) = 0x7f4f6607f000 [pid 5710] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5715] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5710] <... mprotect resumed>) = 0 [pid 5708] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5720] munmap(0x7f4f650a0000, 16777216 [pid 5715] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5710] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5708] <... mprotect resumed>) = 0 [pid 5710] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5708] rt_sigprocmask(SIG_BLOCK, ~[], ./strace-static-x86_64: Process 5727 attached [pid 5715] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5708] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5727] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5715] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} [pid 5710] <... clone3 resumed> => {parent_tid=[79]}, 88) = 79 [pid 5708] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5728 attached [pid 5727] <... rseq resumed>) = 0 [pid 5710] rt_sigprocmask(SIG_SETMASK, [], ./strace-static-x86_64: Process 5729 attached [pid 5728] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [ 232.317898][ T5717] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 232.317921][ T5717] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [ 232.317942][ T5717] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 232.317963][ T5717] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 232.317985][ T5717] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 232.318012][ T5717] [pid 5727] set_robust_list(0x7f4f6609f9a0, 24 [pid 5715] <... clone3 resumed> => {parent_tid=[77]}, 88) = 77 [pid 5710] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5708] <... clone3 resumed> => {parent_tid=[82]}, 88) = 82 [pid 5729] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5728] <... rseq resumed>) = 0 [pid 5727] <... set_robust_list resumed>) = 0 [pid 5715] rt_sigprocmask(SIG_SETMASK, [], [pid 5710] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5708] rt_sigprocmask(SIG_SETMASK, [], [pid 5729] <... rseq resumed>) = 0 [pid 5728] set_robust_list(0x7f4f6607e9a0, 24 [pid 5727] rt_sigprocmask(SIG_SETMASK, [], [pid 5715] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5710] <... futex resumed>) = 0 [pid 5708] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5729] set_robust_list(0x7f4f6609f9a0, 24 [pid 5728] <... set_robust_list resumed>) = 0 [pid 5727] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5715] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 5710] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5708] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5729] <... set_robust_list resumed>) = 0 [pid 5727] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5708] <... futex resumed>) = 0 [pid 5727] <... openat resumed>) = 3 [pid 5708] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5727] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5710] <... futex resumed>) = 0 [pid 5727] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5710] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5727] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5710] <... futex resumed>) = 0 [pid 5727] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5710] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5727] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5727] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5710] <... futex resumed>) = 0 [pid 5728] rt_sigprocmask(SIG_SETMASK, [], [pid 5727] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5715] <... futex resumed>) = 0 [pid 5710] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5727] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5710] <... futex resumed>) = 0 [pid 5727] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5710] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5727] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5727] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5710] <... futex resumed>) = 0 [pid 5727] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5728] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5715] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5728] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5729] rt_sigprocmask(SIG_SETMASK, [], [pid 5728] <... openat resumed>) = -1 EIO (Input/output error) [pid 5728] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5729] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5728] <... futex resumed>) = 1 [pid 5715] <... futex resumed>) = 0 [pid 5708] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5729] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5728] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5715] close(3 [pid 5708] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5715] <... close resumed>) = 0 [pid 5708] <... futex resumed>) = 0 [pid 5729] <... openat resumed>) = 3 [pid 5715] close(4 [pid 5729] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5715] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5715] close(5) = -1 EBADF (Bad file descriptor) [pid 5729] <... futex resumed>) = 0 [pid 5715] close(6 [pid 5729] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5715] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5715] close(7) = -1 EBADF (Bad file descriptor) [pid 5715] close(8) = -1 EBADF (Bad file descriptor) [pid 5715] close(9) = -1 EBADF (Bad file descriptor) [pid 5715] close(10) = -1 EBADF (Bad file descriptor) [pid 5715] close(11) = -1 EBADF (Bad file descriptor) [pid 5715] close(12) = -1 EBADF (Bad file descriptor) [pid 5715] close(13) = -1 EBADF (Bad file descriptor) [pid 5715] close(14) = -1 EBADF (Bad file descriptor) [pid 5715] close(15) = -1 EBADF (Bad file descriptor) [pid 5715] close(16) = -1 EBADF (Bad file descriptor) [pid 5715] close(17) = -1 EBADF (Bad file descriptor) [pid 5715] close(18) = -1 EBADF (Bad file descriptor) [pid 5715] close(19) = -1 EBADF (Bad file descriptor) [pid 5715] close(20) = -1 EBADF (Bad file descriptor) [pid 5715] close(21) = -1 EBADF (Bad file descriptor) [pid 5708] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5715] close(22) = -1 EBADF (Bad file descriptor) [pid 5715] close(23) = -1 EBADF (Bad file descriptor) [pid 5708] <... mmap resumed>) = 0x7f4f6605e000 [pid 5715] close(24) = -1 EBADF (Bad file descriptor) [pid 5715] close(25) = -1 EBADF (Bad file descriptor) [pid 5715] close(26) = -1 EBADF (Bad file descriptor) [pid 5715] close(27) = -1 EBADF (Bad file descriptor) [pid 5715] close(28) = -1 EBADF (Bad file descriptor) [pid 5708] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE [pid 5715] close(29) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5715] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5715] exit_group(0 [pid 5728] <... futex resumed>) = ? [pid 5726] <... futex resumed>) = ? [pid 5717] <... futex resumed>) = ? [pid 5715] <... exit_group resumed>) = ? [pid 5728] +++ exited with 0 +++ [pid 5726] +++ exited with 0 +++ [pid 5717] +++ exited with 0 +++ [pid 5715] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=74, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=57 /* 0.57 s */} --- [pid 5031] umount2("./25", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5031] umount2("./25/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./25/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./25/cgroup.cpu") = 0 [pid 5031] umount2("./25/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./25/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./25/binderfs") = 0 [pid 5031] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5720] <... munmap resumed>) = 0 [pid 5720] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5720] ioctl(4, LOOP_SET_FD, 3 [pid 5708] <... mprotect resumed>) = 0 [pid 5708] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5708] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0}./strace-static-x86_64: Process 5730 attached => {parent_tid=[83]}, 88) = 83 [pid 5708] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5708] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5708] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5730] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053) = 0 [pid 5730] set_robust_list(0x7f4f6607e9a0, 24) = 0 [pid 5730] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5730] ioctl(-1, VFAT_IOCTL_READDIR_SHORT, 0) = -1 EBADF (Bad file descriptor) [pid 5730] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5708] <... futex resumed>) = 0 [pid 5730] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5708] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5729] <... futex resumed>) = 0 [pid 5708] <... futex resumed>) = 1 [pid 5729] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5708] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5729] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5729] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5708] <... futex resumed>) = 0 [pid 5729] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5720] <... ioctl resumed>) = 0 [pid 5720] close(3) = 0 [ 232.615407][ T5720] loop5: detected capacity change from 0 to 32768 [pid 5720] mkdir("./file0", 0777) = 0 [ 232.684925][ T5720] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [pid 5720] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5712] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5712] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5712] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5712] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5712] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5712] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5732 attached [pid 5716] <... ioctl resumed>) = 0 [pid 5712] <... clone3 resumed> => {parent_tid=[77]}, 88) = 77 [pid 5732] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5716] close(4 [pid 5732] <... rseq resumed>) = 0 [pid 5712] rt_sigprocmask(SIG_SETMASK, [], [ 232.795913][ T5720] CPU: 1 PID: 5720 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 232.806440][ T5720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 232.816538][ T5720] Call Trace: [ 232.819848][ T5720] [ 232.822812][ T5720] dump_stack_lvl+0x136/0x150 [ 232.827560][ T5720] sysfs_warn_dup+0x80/0xa0 [ 232.832114][ T5720] sysfs_create_dir_ns+0x237/0x290 [ 232.837289][ T5720] ? sysfs_create_mount_point+0xb0/0xb0 [pid 5732] set_robust_list(0x7f4f6609f9a0, 24 [pid 5716] <... close resumed>) = 0 [pid 5732] <... set_robust_list resumed>) = 0 [pid 5712] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5732] rt_sigprocmask(SIG_SETMASK, [], [pid 5716] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5732] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5712] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5732] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5716] <... futex resumed>) = 0 [pid 5732] <... openat resumed>) = 3 [pid 5712] <... futex resumed>) = 0 [pid 5732] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5716] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [ 232.842909][ T5720] ? spin_bug+0x1c0/0x1c0 [ 232.847366][ T5720] ? do_raw_spin_unlock+0x175/0x230 [ 232.852634][ T5720] kobject_add_internal+0x2c9/0x9c0 [ 232.857894][ T5720] ? kfree+0x11/0x150 [ 232.861953][ T5720] kobject_init_and_add+0x101/0x170 [ 232.867210][ T5720] ? kobject_create_and_add+0xf0/0xf0 [ 232.872643][ T5720] ? lockdep_init_map_type+0x21e/0x810 [ 232.878185][ T5720] ? lockdep_hardirqs_on+0x7d/0x100 [ 232.883440][ T5720] ? lockdep_init_map_type+0x21e/0x810 [ 232.888974][ T5720] gfs2_sys_fs_add+0x1d5/0x450 [ 232.893805][ T5720] ? recover_store+0x170/0x170 [ 232.898626][ T5720] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 232.904406][ T5720] gfs2_fill_super+0x1312/0x2aa0 [ 232.909410][ T5720] ? gfs2_reconfigure+0xf90/0xf90 [ 232.914504][ T5720] ? snprintf+0xbf/0x100 [ 232.918893][ T5720] ? vsprintf+0x30/0x30 [ 232.923107][ T5720] ? wait_for_completion_io_timeout+0x20/0x20 [ 232.929242][ T5720] ? set_blocksize+0x2d8/0x370 [ 232.934245][ T5720] get_tree_bdev+0x43e/0x7d0 [ 232.938901][ T5720] ? gfs2_reconfigure+0xf90/0xf90 [ 232.943987][ T5720] gfs2_get_tree+0x4e/0x270 [ 232.948548][ T5720] vfs_get_tree+0x8d/0x350 [ 232.953046][ T5720] path_mount+0x136e/0x1e70 [ 232.957609][ T5720] ? putname+0x102/0x140 [ 232.961898][ T5720] ? lockdep_hardirqs_on+0x7d/0x100 [ 232.967154][ T5720] ? finish_automount+0xa30/0xa30 [ 232.972242][ T5720] ? putname+0x102/0x140 [ 232.976541][ T5720] __x64_sys_mount+0x283/0x300 [ 232.981375][ T5720] ? copy_mnt_ns+0xb30/0xb30 [ 232.986022][ T5720] ? lockdep_hardirqs_on+0x7d/0x100 [ 232.991283][ T5720] ? _raw_spin_unlock_irq+0x2e/0x50 [ 232.996553][ T5720] ? ptrace_notify+0xfe/0x140 [ 233.001311][ T5720] do_syscall_64+0x39/0xb0 [ 233.005780][ T5720] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 233.011748][ T5720] RIP: 0033:0x7f4f6dd11c5a [ 233.016210][ T5720] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 233.035870][ T5720] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [pid 5732] <... futex resumed>) = 0 [pid 5718] <... ioctl resumed>) = 0 [pid 5712] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5732] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5712] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5712] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5716] <... futex resumed>) = 0 [pid 5712] <... futex resumed>) = 1 [pid 5716] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5712] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5716] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5716] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory ) = 1 [pid 5712] <... futex resumed>) = 0 [pid 5716] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5712] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5716] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5712] <... futex resumed>) = 0 [pid 5716] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5712] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5716] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5716] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5712] <... futex resumed>) = 0 [pid 5716] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5712] close(3) = 0 [pid 5712] close(4) = -1 EBADF (Bad file descriptor) [pid 5712] close(5) = -1 EBADF (Bad file descriptor) [pid 5712] close(6) = -1 EBADF (Bad file descriptor) [pid 5712] close(7) = -1 EBADF (Bad file descriptor) [pid 5712] close(8) = -1 EBADF (Bad file descriptor) [pid 5712] close(9) = -1 EBADF (Bad file descriptor) [pid 5712] close(10) = -1 EBADF (Bad file descriptor) [pid 5712] close(11) = -1 EBADF (Bad file descriptor) [pid 5712] close(12) = -1 EBADF (Bad file descriptor) [pid 5712] close(13) = -1 EBADF (Bad file descriptor) [pid 5712] close(14) = -1 EBADF (Bad file descriptor) [pid 5712] close(15) = -1 EBADF (Bad file descriptor) [pid 5712] close(16) = -1 EBADF (Bad file descriptor) [pid 5712] close(17) = -1 EBADF (Bad file descriptor) [pid 5712] close(18) = -1 EBADF (Bad file descriptor) [pid 5712] close(19) = -1 EBADF (Bad file descriptor) [pid 5712] close(20 [pid 5718] close(4 [pid 5712] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5718] <... close resumed>) = 0 [pid 5712] close(21 [pid 5718] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5712] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5718] <... futex resumed>) = 1 [pid 5712] close(22 [pid 5718] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5712] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5712] close(23) = -1 EBADF (Bad file descriptor) [pid 5712] close(24) = -1 EBADF (Bad file descriptor) [pid 5712] close(25) = -1 EBADF (Bad file descriptor) [pid 5712] close(26) = -1 EBADF (Bad file descriptor) [pid 5712] close(27) = -1 EBADF (Bad file descriptor) [pid 5712] close(28) = -1 EBADF (Bad file descriptor) [pid 5712] close(29) = -1 EBADF (Bad file descriptor) [pid 5712] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5712] exit_group(0 [pid 5732] <... futex resumed>) = ? [pid 5716] <... futex resumed>) = ? [pid 5712] <... exit_group resumed>) = ? [pid 5732] +++ exited with 0 +++ [pid 5716] +++ exited with 0 +++ [pid 5712] +++ exited with 0 +++ [pid 5029] kill(-80, SIGKILL [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=75, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=62 /* 0.62 s */} --- [pid 5730] <... futex resumed>) = ? [pid 5729] <... futex resumed>) = ? [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 5029] <... kill resumed>) = 0 [pid 5032] <... restart_syscall resumed>) = 0 [pid 5032] umount2("./26", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 5033] kill(-77, SIGKILL) = 0 [pid 5033] kill(77, SIGKILL) = 0 [pid 5730] +++ killed by SIGKILL +++ [pid 5729] +++ killed by SIGKILL +++ [pid 5029] kill(80, SIGKILL) = 0 [pid 5727] <... futex resumed>) = ? [pid 5714] <... futex resumed>) = 0 [pid 5727] +++ killed by SIGKILL +++ [pid 5714] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5718] <... futex resumed>) = 0 [pid 5714] <... futex resumed>) = 1 [pid 5718] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5714] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5718] <... openat resumed>) = 3 [pid 5718] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5714] <... futex resumed>) = 0 [pid 5718] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5714] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5718] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5714] <... futex resumed>) = 0 [pid 5713] <... ioctl resumed>) = ? [pid 5718] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5714] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5718] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5718] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5714] <... futex resumed>) = 0 [pid 5718] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5714] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5718] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5714] <... futex resumed>) = 0 [pid 5718] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5714] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5718] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5718] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] umount2("./26/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5718] <... futex resumed>) = 1 [pid 5714] <... futex resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5718] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5714] close(3 [pid 5032] newfstatat(AT_FDCWD, "./26/cgroup.cpu", [pid 5714] <... close resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5714] close(4 [pid 5032] unlink("./26/cgroup.cpu" [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5713] +++ killed by SIGKILL +++ [pid 5708] +++ killed by SIGKILL +++ [pid 5032] <... unlink resumed>) = 0 [pid 5714] close(5 [pid 5032] umount2("./26/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=80, si_uid=0, si_status=SIGKILL, si_utime=2 /* 0.02 s */, si_stime=75 /* 0.75 s */} --- [pid 5714] close(6 [pid 5032] newfstatat(AT_FDCWD, "./26/binderfs", [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5714] close(7 [pid 5032] unlink("./26/binderfs" [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... unlink resumed>) = 0 [pid 5714] close(8 [pid 5032] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [ 233.044341][ T5720] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 233.052375][ T5720] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 233.060399][ T5720] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 233.068425][ T5720] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 233.076443][ T5720] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 233.084461][ T5720] [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5714] close(9 [pid 5032] newfstatat(AT_FDCWD, "./26/file0", [pid 5029] umount2("./25", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5714] close(10 [pid 5032] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... openat resumed>) = 3 [pid 5714] close(11 [pid 5032] openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] newfstatat(3, "", [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5711] <... ioctl resumed>) = ? [pid 5032] <... openat resumed>) = 4 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5714] close(12 [pid 5032] newfstatat(4, "", [pid 5029] getdents64(3, [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5714] close(13 [pid 5711] +++ killed by SIGKILL +++ [pid 5710] +++ killed by SIGKILL +++ [pid 5032] getdents64(4, [pid 5029] umount2("./25/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=77, si_uid=0, si_status=SIGKILL, si_utime=8 /* 0.08 s */, si_stime=65 /* 0.65 s */} --- [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5714] close(14 [pid 5032] getdents64(4, [pid 5029] newfstatat(AT_FDCWD, "./25/cgroup.cpu", [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5714] close(15 [pid 5032] close(4 [pid 5029] unlink("./25/cgroup.cpu" [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... close resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5714] close(16 [pid 5032] rmdir("./26/file0" [pid 5029] umount2("./25/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./27", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... rmdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5714] close(17 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./26/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] newfstatat(AT_FDCWD, "./25/binderfs", [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5714] close(18 [pid 5033] <... openat resumed>) = 3 [pid 5032] newfstatat(AT_FDCWD, "./26/cgroup", [pid 5029] unlink("./25/binderfs" [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(3, "", [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... unlink resumed>) = 0 [ 233.146029][ T5720] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 5714] close(19 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] unlink("./26/cgroup" [pid 5029] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] getdents64(3, [pid 5032] <... unlink resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5714] close(20 [pid 5033] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5032] umount2("./26/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] newfstatat(AT_FDCWD, "./25/file0", [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./27/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5714] close(21 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./26/cgroup.net", [pid 5029] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(AT_FDCWD, "./27/cgroup.cpu", [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5714] close(22 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./26/cgroup.net" [pid 5029] openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] unlink("./27/cgroup.cpu" [pid 5032] <... unlink resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 5714] close(23 [pid 5033] <... unlink resumed>) = 0 [pid 5032] getdents64(3, [pid 5029] newfstatat(4, "", [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./27/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5714] close(24 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] close(3 [pid 5029] getdents64(4, [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(AT_FDCWD, "./27/binderfs", [pid 5032] <... close resumed>) = 0 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5714] close(25 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] rmdir("./26" [pid 5029] getdents64(4, [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] unlink("./27/binderfs" [pid 5032] <... rmdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5714] close(26 [pid 5033] <... unlink resumed>) = 0 [pid 5032] mkdir("./27", 0777 [pid 5029] close(4 [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... mkdir resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5714] close(27 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] rmdir("./25/file0" [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(AT_FDCWD, "./27/file0", [pid 5032] <... openat resumed>) = 3 [pid 5029] <... rmdir resumed>) = 0 [pid 5714] close(28 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5029] umount2("./25/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5714] close(29 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] close(3 [pid 5029] newfstatat(AT_FDCWD, "./25/cgroup", [pid 5714] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... close resumed>) = 0 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5714] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5033] <... openat resumed>) = 4 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] unlink("./25/cgroup"./strace-static-x86_64: Process 5733 attached [pid 5714] <... write resumed>) = 156 [pid 5033] newfstatat(4, "", [pid 5029] <... unlink resumed>) = 0 [pid 5733] set_robust_list(0x55555654e6a0, 24 [pid 5714] exit_group(0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 78 [pid 5029] umount2("./25/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5733] <... set_robust_list resumed>) = 0 [pid 5718] <... futex resumed>) = ? [pid 5714] <... exit_group resumed>) = ? [pid 5033] getdents64(4, [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5733] chdir("./27" [pid 5718] +++ exited with 0 +++ [pid 5714] +++ exited with 0 +++ [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5031] <... umount2 resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./25/cgroup.net", [pid 5033] getdents64(4, [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=72, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=63 /* 0.63 s */} --- [pid 5029] unlink("./25/cgroup.net" [pid 5733] <... chdir resumed>) = 0 [pid 5033] close(4 [pid 5031] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] restart_syscall(<... resuming interrupted clone ...> [pid 5029] <... unlink resumed>) = 0 [pid 5733] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... restart_syscall resumed>) = 0 [pid 5029] getdents64(3, [pid 5033] rmdir("./27/file0" [pid 5029] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5029] close(3 [pid 5033] umount2("./27/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./25", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 5733] <... prctl resumed>) = 0 [pid 5720] <... mount resumed>) = -1 EEXIST (File exists) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./25/file0", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] rmdir("./25" [pid 5733] setpgid(0, 0 [pid 5033] newfstatat(AT_FDCWD, "./27/cgroup", [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... rmdir resumed>) = 0 [pid 5733] <... setpgid resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... openat resumed>) = 3 [pid 5029] mkdir("./26", 0777 [pid 5733] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 5720] ioctl(4, LOOP_CLR_FD [pid 5033] unlink("./27/cgroup" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(3, "", [pid 5029] <... mkdir resumed>) = 0 [pid 5733] <... symlink resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5733] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 5033] umount2("./27/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... openat resumed>) = 4 [pid 5030] getdents64(3, [pid 5029] <... openat resumed>) = 3 [pid 5733] <... symlink resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(4, "", [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5733] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 5033] newfstatat(AT_FDCWD, "./27/cgroup.net", [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] umount2("./25/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5733] <... symlink resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] getdents64(4, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] close(3 [pid 5733] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] unlink("./27/cgroup.net" [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] newfstatat(AT_FDCWD, "./25/cgroup.cpu", [pid 5029] <... close resumed>) = 0 [pid 5733] <... openat resumed>) = 3 [pid 5033] <... unlink resumed>) = 0 [pid 5031] getdents64(4, [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5734 attached [pid 5733] write(3, "1000", 4 [pid 5033] getdents64(3, [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] unlink("./25/cgroup.cpu" [pid 5734] set_robust_list(0x55555654e6a0, 24 [pid 5733] <... write resumed>) = 4 [pid 5033] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 5030] <... unlink resumed>) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 84 [pid 5734] <... set_robust_list resumed>) = 0 [pid 5733] close(3 [pid 5033] close(3 [pid 5031] <... close resumed>) = 0 [pid 5030] umount2("./25/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5734] chdir("./26" [pid 5733] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5031] rmdir("./25/file0" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5734] <... chdir resumed>) = 0 [pid 5733] symlink("/dev/binderfs", "./binderfs" [pid 5033] rmdir("./27" [ 233.276312][ T5720] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 5030] newfstatat(AT_FDCWD, "./25/binderfs", [pid 5734] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5733] <... symlink resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5734] <... prctl resumed>) = 0 [pid 5733] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] mkdir("./28", 0777 [pid 5031] umount2("./25/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] unlink("./25/binderfs" [pid 5734] setpgid(0, 0 [pid 5733] <... futex resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... unlink resumed>) = 0 [pid 5734] <... setpgid resumed>) = 0 [pid 5733] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5031] newfstatat(AT_FDCWD, "./25/cgroup", [pid 5030] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5734] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 5733] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5033] <... openat resumed>) = 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5734] <... symlink resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5030] newfstatat(AT_FDCWD, "./25/file0", [pid 5734] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu" [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5734] <... symlink resumed>) = 0 [pid 5033] close(3 [pid 5030] umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5734] symlink("/syzcgroup/net/syz0", "./cgroup.net" [pid 5033] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5734] <... symlink resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 5735 attached [pid 5734] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5733] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5031] unlink("./25/cgroup" [pid 5030] <... openat resumed>) = 4 [pid 5735] set_robust_list(0x55555654e6a0, 24 [pid 5734] <... openat resumed>) = 3 [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 80 [pid 5030] newfstatat(4, "", [pid 5735] <... set_robust_list resumed>) = 0 [pid 5734] write(3, "1000", 4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5735] chdir("./28" [pid 5734] <... write resumed>) = 4 [pid 5030] getdents64(4, [pid 5735] <... chdir resumed>) = 0 [pid 5734] close(3 [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5735] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5734] <... close resumed>) = 0 [pid 5030] getdents64(4, [pid 5735] <... prctl resumed>) = 0 [pid 5734] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5735] setpgid(0, 0 [pid 5734] <... symlink resumed>) = 0 [pid 5030] close(4 [pid 5735] <... setpgid resumed>) = 0 [pid 5734] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] <... close resumed>) = 0 [pid 5735] symlink("/syzcgroup/unified/syz2", "./cgroup" [pid 5734] <... futex resumed>) = 0 [pid 5030] rmdir("./25/file0" [pid 5735] <... symlink resumed>) = 0 [pid 5734] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5733] <... mprotect resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5735] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu" [pid 5734] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5733] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5031] umount2("./25/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./25/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5735] <... symlink resumed>) = 0 [pid 5734] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5733] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5735] symlink("/syzcgroup/net/syz2", "./cgroup.net" [pid 5734] <... mprotect resumed>) = 0 [pid 5733] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5031] newfstatat(AT_FDCWD, "./25/cgroup.net", [pid 5030] newfstatat(AT_FDCWD, "./25/cgroup", ./strace-static-x86_64: Process 5736 attached [pid 5735] <... symlink resumed>) = 0 [pid 5734] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5736] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5735] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5734] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5733] <... clone3 resumed> => {parent_tid=[79]}, 88) = 79 [pid 5031] unlink("./25/cgroup.net" [pid 5030] unlink("./25/cgroup" [pid 5736] <... rseq resumed>) = 0 [pid 5735] <... openat resumed>) = 3 [pid 5734] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5733] rt_sigprocmask(SIG_SETMASK, [], [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 ./strace-static-x86_64: Process 5737 attached [pid 5736] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5735] write(3, "1000", 4 [pid 5733] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5031] getdents64(3, [pid 5030] umount2("./25/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5737] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5736] <... set_robust_list resumed>) = 0 [pid 5735] <... write resumed>) = 4 [pid 5734] <... clone3 resumed> => {parent_tid=[85]}, 88) = 85 [pid 5733] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5737] <... rseq resumed>) = 0 [pid 5735] close(3 [pid 5734] rt_sigprocmask(SIG_SETMASK, [], [pid 5030] newfstatat(AT_FDCWD, "./25/cgroup.net", [pid 5737] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5735] <... close resumed>) = 0 [pid 5734] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5736] rt_sigprocmask(SIG_SETMASK, [], [pid 5733] <... futex resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5737] <... set_robust_list resumed>) = 0 [pid 5736] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5735] symlink("/dev/binderfs", "./binderfs" [pid 5734] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5733] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5031] close(3 [pid 5030] unlink("./25/cgroup.net" [pid 5737] rt_sigprocmask(SIG_SETMASK, [], [pid 5735] <... symlink resumed>) = 0 [pid 5734] <... futex resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5737] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5736] memfd_create("syzkaller", 0 [pid 5735] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5734] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5031] rmdir("./25" [pid 5030] getdents64(3, [pid 5737] memfd_create("syzkaller", 0 [pid 5736] <... memfd_create resumed>) = 3 [pid 5735] <... futex resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5737] <... memfd_create resumed>) = 3 [pid 5736] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5735] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] close(3 [pid 5737] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5736] <... mmap resumed>) = 0x7f4f650a0000 [pid 5735] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5031] mkdir("./26", 0777 [pid 5030] <... close resumed>) = 0 [pid 5737] <... mmap resumed>) = 0x7f4f650a0000 [pid 5735] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5030] rmdir("./25" [pid 5735] <... mprotect resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5735] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] mkdir("./26", 0777 [pid 5735] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5030] <... mkdir resumed>) = 0 [pid 5735] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR./strace-static-x86_64: Process 5738 attached [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... openat resumed>) = 3 [pid 5738] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5735] <... clone3 resumed> => {parent_tid=[81]}, 88) = 81 [pid 5031] close(3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5738] <... rseq resumed>) = 0 [pid 5735] rt_sigprocmask(SIG_SETMASK, [], [pid 5031] <... close resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5735] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5030] close(3 [pid 5738] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5735] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5738] <... set_robust_list resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... close resumed>) = 0 [pid 5738] rt_sigprocmask(SIG_SETMASK, [], [pid 5735] <... futex resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5740 attached ./strace-static-x86_64: Process 5739 attached [pid 5738] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5735] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5740] set_robust_list(0x55555654e6a0, 24 [pid 5739] set_robust_list(0x55555654e6a0, 24 [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 74 [pid 5740] <... set_robust_list resumed>) = 0 [pid 5739] <... set_robust_list resumed>) = 0 [pid 5738] memfd_create("syzkaller", 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 78 [pid 5740] chdir("./26" [pid 5739] chdir("./26" [pid 5738] <... memfd_create resumed>) = 3 [pid 5740] <... chdir resumed>) = 0 [pid 5739] <... chdir resumed>) = 0 [pid 5738] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5740] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5739] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5738] <... mmap resumed>) = 0x7f4f650a0000 [pid 5740] <... prctl resumed>) = 0 [pid 5739] <... prctl resumed>) = 0 [pid 5740] setpgid(0, 0) = 0 [pid 5740] symlink("/syzcgroup/unified/syz3", "./cgroup") = 0 [pid 5739] setpgid(0, 0 [pid 5740] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu") = 0 [pid 5739] <... setpgid resumed>) = 0 [pid 5740] symlink("/syzcgroup/net/syz3", "./cgroup.net") = 0 [pid 5740] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5739] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 5740] <... openat resumed>) = 3 [pid 5739] <... symlink resumed>) = 0 [pid 5740] write(3, "1000", 4 [pid 5739] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 5740] <... write resumed>) = 4 [pid 5740] close(3 [pid 5739] <... symlink resumed>) = 0 [pid 5740] <... close resumed>) = 0 [pid 5739] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 5740] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5740] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5740] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5739] <... symlink resumed>) = 0 [pid 5740] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5739] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5740] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5739] <... openat resumed>) = 3 [pid 5740] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5739] write(3, "1000", 4 [pid 5740] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5739] <... write resumed>) = 4 [pid 5740] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5739] close(3./strace-static-x86_64: Process 5741 attached ) = 0 [pid 5741] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5740] <... clone3 resumed> => {parent_tid=[75]}, 88) = 75 [pid 5739] symlink("/dev/binderfs", "./binderfs" [pid 5741] <... rseq resumed>) = 0 [pid 5740] rt_sigprocmask(SIG_SETMASK, [], [pid 5741] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5740] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5739] <... symlink resumed>) = 0 [pid 5741] <... set_robust_list resumed>) = 0 [pid 5740] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5739] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5741] rt_sigprocmask(SIG_SETMASK, [], [pid 5740] <... futex resumed>) = 0 [pid 5739] <... futex resumed>) = 0 [pid 5741] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5740] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5739] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5741] memfd_create("syzkaller", 0) = 3 [pid 5741] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5739] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5739] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5739] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5739] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5742 attached [pid 5742] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5739] <... clone3 resumed> => {parent_tid=[79]}, 88) = 79 [pid 5742] <... rseq resumed>) = 0 [pid 5739] rt_sigprocmask(SIG_SETMASK, [], [pid 5742] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5739] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5742] <... set_robust_list resumed>) = 0 [pid 5739] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5742] rt_sigprocmask(SIG_SETMASK, [], [pid 5739] <... futex resumed>) = 0 [pid 5742] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5739] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5742] memfd_create("syzkaller", 0) = 3 [pid 5742] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5720] <... ioctl resumed>) = 0 [pid 5719] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5720] close(4 [pid 5719] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5720] <... close resumed>) = 0 [pid 5719] <... futex resumed>) = 0 [pid 5720] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5719] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5720] <... futex resumed>) = 0 [pid 5719] <... mmap resumed>) = 0x7f4f6607f000 [pid 5720] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5719] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5719] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5719] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5743 attached [pid 5743] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5719] <... clone3 resumed> => {parent_tid=[82]}, 88) = 82 [pid 5743] <... rseq resumed>) = 0 [pid 5719] rt_sigprocmask(SIG_SETMASK, [], [pid 5743] set_robust_list(0x7f4f6609f9a0, 24 [pid 5719] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5743] <... set_robust_list resumed>) = 0 [pid 5719] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5743] rt_sigprocmask(SIG_SETMASK, [], [pid 5719] <... futex resumed>) = 0 [pid 5743] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5719] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5743] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 5743] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5719] <... futex resumed>) = 0 [pid 5743] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5719] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5720] <... futex resumed>) = 0 [pid 5719] <... futex resumed>) = 1 [pid 5720] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5719] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5720] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5720] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5719] <... futex resumed>) = 0 [pid 5720] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5719] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5720] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5719] <... futex resumed>) = 0 [pid 5720] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5719] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5720] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5720] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5719] <... futex resumed>) = 0 [pid 5720] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5719] close(3) = 0 [pid 5719] close(4) = -1 EBADF (Bad file descriptor) [pid 5719] close(5) = -1 EBADF (Bad file descriptor) [pid 5719] close(6) = -1 EBADF (Bad file descriptor) [pid 5719] close(7) = -1 EBADF (Bad file descriptor) [pid 5719] close(8) = -1 EBADF (Bad file descriptor) [pid 5719] close(9) = -1 EBADF (Bad file descriptor) [pid 5719] close(10) = -1 EBADF (Bad file descriptor) [pid 5719] close(11) = -1 EBADF (Bad file descriptor) [pid 5719] close(12) = -1 EBADF (Bad file descriptor) [pid 5719] close(13) = -1 EBADF (Bad file descriptor) [pid 5719] close(14) = -1 EBADF (Bad file descriptor) [pid 5719] close(15) = -1 EBADF (Bad file descriptor) [pid 5719] close(16) = -1 EBADF (Bad file descriptor) [pid 5719] close(17) = -1 EBADF (Bad file descriptor) [pid 5719] close(18) = -1 EBADF (Bad file descriptor) [pid 5719] close(19) = -1 EBADF (Bad file descriptor) [pid 5719] close(20) = -1 EBADF (Bad file descriptor) [pid 5719] close(21) = -1 EBADF (Bad file descriptor) [pid 5719] close(22) = -1 EBADF (Bad file descriptor) [pid 5719] close(23) = -1 EBADF (Bad file descriptor) [pid 5719] close(24) = -1 EBADF (Bad file descriptor) [pid 5719] close(25) = -1 EBADF (Bad file descriptor) [pid 5719] close(26) = -1 EBADF (Bad file descriptor) [pid 5719] close(27) = -1 EBADF (Bad file descriptor) [pid 5719] close(28) = -1 EBADF (Bad file descriptor) [pid 5719] close(29) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5719] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5719] exit_group(0 [pid 5743] <... futex resumed>) = ? [pid 5720] <... futex resumed>) = ? [pid 5719] <... exit_group resumed>) = ? [pid 5743] +++ exited with 0 +++ [pid 5720] +++ exited with 0 +++ [pid 5719] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=80, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=61 /* 0.61 s */} --- [pid 5034] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5034] umount2("./26", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5034] umount2("./26/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./26/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./26/cgroup.cpu") = 0 [pid 5034] umount2("./26/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./26/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./26/binderfs") = 0 [pid 5034] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./26/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./26/file0") = 0 [pid 5034] umount2("./26/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./26/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./26/cgroup") = 0 [pid 5034] umount2("./26/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./26/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./26/cgroup.net") = 0 [pid 5034] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./26") = 0 [pid 5034] mkdir("./27", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5744 attached [pid 5744] set_robust_list(0x55555654e6a0, 24 [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 83 [pid 5744] <... set_robust_list resumed>) = 0 [pid 5744] chdir("./27") = 0 [pid 5744] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5744] setpgid(0, 0) = 0 [pid 5744] symlink("/syzcgroup/unified/syz5", "./cgroup") = 0 [pid 5744] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu") = 0 [pid 5744] symlink("/syzcgroup/net/syz5", "./cgroup.net") = 0 [pid 5744] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5744] write(3, "1000", 4) = 4 [pid 5744] close(3) = 0 [pid 5744] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5744] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5744] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5744] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5744] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5744] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5745 attached [pid 5745] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5744] <... clone3 resumed> => {parent_tid=[84]}, 88) = 84 [pid 5745] <... rseq resumed>) = 0 [pid 5744] rt_sigprocmask(SIG_SETMASK, [], [pid 5745] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5744] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5745] <... set_robust_list resumed>) = 0 [pid 5744] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5745] rt_sigprocmask(SIG_SETMASK, [], [pid 5744] <... futex resumed>) = 0 [pid 5745] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5744] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5745] memfd_create("syzkaller", 0) = 3 [pid 5745] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5736] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5738] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5737] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5741] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5742] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5745] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5736] <... write resumed>) = 16777216 [pid 5736] munmap(0x7f4f650a0000, 16777216 [pid 5738] <... write resumed>) = 16777216 [pid 5738] munmap(0x7f4f650a0000, 16777216 [pid 5742] <... write resumed>) = 16777216 [pid 5736] <... munmap resumed>) = 0 [pid 5742] munmap(0x7f4f650a0000, 16777216 [pid 5736] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5736] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5736] close(3) = 0 [pid 5736] mkdir("./file0", 0777) = 0 [ 235.308592][ T5736] loop1: detected capacity change from 0 to 32768 [pid 5736] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5741] <... write resumed>) = 16777216 [pid 5741] munmap(0x7f4f650a0000, 16777216 [pid 5737] <... write resumed>) = 16777216 [pid 5738] <... munmap resumed>) = 0 [pid 5738] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [ 235.376549][ T5736] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 235.384782][ T5736] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [pid 5738] ioctl(4, LOOP_SET_FD, 3 [pid 5737] munmap(0x7f4f650a0000, 16777216 [pid 5738] <... ioctl resumed>) = 0 [pid 5738] close(3 [pid 5742] <... munmap resumed>) = 0 [pid 5738] <... close resumed>) = 0 [pid 5742] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5738] mkdir("./file0", 0777 [ 235.429847][ T5736] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 235.442374][ T5738] loop2: detected capacity change from 0 to 32768 [ 235.458026][ T21] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 235.464855][ T21] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [pid 5742] <... openat resumed>) = 4 [pid 5738] <... mkdir resumed>) = 0 [pid 5742] ioctl(4, LOOP_SET_FD, 3 [pid 5738] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5742] <... ioctl resumed>) = 0 [pid 5742] close(3) = 0 [pid 5742] mkdir("./file0", 0777) = 0 [ 235.488677][ T5742] loop4: detected capacity change from 0 to 32768 [ 235.510338][ T5738] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 235.520917][ T5742] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 235.530221][ T5738] CPU: 0 PID: 5738 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 235.540709][ T5738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 235.550814][ T5738] Call Trace: [ 235.554139][ T5738] [ 235.557110][ T5738] dump_stack_lvl+0x136/0x150 [ 235.560271][ T21] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 95ms [ 235.561842][ T5738] sysfs_warn_dup+0x80/0xa0 [ 235.570389][ T21] gfs2: fsid=syz:syz.0: jid=0: Done [ 235.573732][ T5738] sysfs_create_dir_ns+0x237/0x290 [ 235.579096][ T5736] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 235.584046][ T5738] ? sysfs_create_mount_point+0xb0/0xb0 [ 235.596862][ T5738] ? spin_bug+0x1c0/0x1c0 [ 235.601229][ T5738] ? do_raw_spin_unlock+0x175/0x230 [ 235.606477][ T5738] kobject_add_internal+0x2c9/0x9c0 [ 235.611722][ T5738] ? kfree+0x11/0x150 [ 235.615762][ T5738] kobject_init_and_add+0x101/0x170 [ 235.621020][ T5738] ? kobject_create_and_add+0xf0/0xf0 [ 235.626455][ T5738] ? lockdep_init_map_type+0x21e/0x810 [ 235.631960][ T5738] ? lockdep_hardirqs_on+0x7d/0x100 [ 235.637205][ T5738] ? lockdep_init_map_type+0x21e/0x810 [ 235.642723][ T5738] gfs2_sys_fs_add+0x1d5/0x450 [ 235.647536][ T5738] ? recover_store+0x170/0x170 [ 235.652338][ T5738] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 235.658722][ T5738] gfs2_fill_super+0x1312/0x2aa0 [ 235.663703][ T5738] ? gfs2_reconfigure+0xf90/0xf90 [ 235.668770][ T5738] ? snprintf+0xbf/0x100 [ 235.673064][ T5738] ? vsprintf+0x30/0x30 [ 235.677282][ T5738] ? wait_for_completion_io_timeout+0x20/0x20 [ 235.683400][ T5738] ? set_blocksize+0x2d8/0x370 [ 235.688200][ T5738] get_tree_bdev+0x43e/0x7d0 [ 235.692831][ T5738] ? gfs2_reconfigure+0xf90/0xf90 [ 235.697891][ T5738] gfs2_get_tree+0x4e/0x270 [ 235.702426][ T5738] vfs_get_tree+0x8d/0x350 [ 235.706872][ T5738] path_mount+0x136e/0x1e70 [ 235.711406][ T5738] ? putname+0x102/0x140 [ 235.715679][ T5738] ? lockdep_hardirqs_on+0x7d/0x100 [ 235.720907][ T5738] ? finish_automount+0xa30/0xa30 [ 235.726047][ T5738] ? putname+0x102/0x140 [ 235.730317][ T5738] __x64_sys_mount+0x283/0x300 [ 235.735114][ T5738] ? copy_mnt_ns+0xb30/0xb30 [ 235.739738][ T5738] ? lockdep_hardirqs_on+0x7d/0x100 [ 235.744975][ T5738] ? _raw_spin_unlock_irq+0x2e/0x50 [ 235.750216][ T5738] ? ptrace_notify+0xfe/0x140 [ 235.754940][ T5738] do_syscall_64+0x39/0xb0 [ 235.759392][ T5738] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 235.765328][ T5738] RIP: 0033:0x7f4f6dd11c5a [ 235.769791][ T5738] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 235.789429][ T5738] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 235.797897][ T5738] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 235.805923][ T5738] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 235.814022][ T5738] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 235.822024][ T5738] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 235.830024][ T5738] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 235.838111][ T5738] [ 235.845886][ T5742] CPU: 0 PID: 5742 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 235.856376][ T5742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 235.866480][ T5742] Call Trace: [ 235.869799][ T5742] [ 235.872765][ T5742] dump_stack_lvl+0x136/0x150 [ 235.877523][ T5742] sysfs_warn_dup+0x80/0xa0 [ 235.882076][ T5742] sysfs_create_dir_ns+0x237/0x290 [ 235.887255][ T5742] ? sysfs_create_mount_point+0xb0/0xb0 [ 235.892939][ T5742] ? spin_bug+0x1c0/0x1c0 [ 235.897326][ T5742] ? do_raw_spin_unlock+0x175/0x230 [ 235.902615][ T5742] kobject_add_internal+0x2c9/0x9c0 [ 235.907875][ T5742] ? kfree+0x11/0x150 [ 235.911903][ T5742] kobject_init_and_add+0x101/0x170 [ 235.915902][ T5738] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 235.917131][ T5742] ? kobject_create_and_add+0xf0/0xf0 [pid 5742] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5741] <... munmap resumed>) = 0 [pid 5741] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5741] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5741] close(3) = 0 [pid 5741] mkdir("./file0", 0777) = 0 [ 235.936441][ T5742] ? lockdep_init_map_type+0x21e/0x810 [ 235.938672][ T5741] loop3: detected capacity change from 0 to 32768 [ 235.941934][ T5742] ? lockdep_hardirqs_on+0x7d/0x100 [ 235.953588][ T5742] ? lockdep_init_map_type+0x21e/0x810 [ 235.959105][ T5742] gfs2_sys_fs_add+0x1d5/0x450 [ 235.963919][ T5742] ? recover_store+0x170/0x170 [ 235.968729][ T5742] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 235.974517][ T5742] gfs2_fill_super+0x1312/0x2aa0 [ 235.979527][ T5742] ? gfs2_reconfigure+0xf90/0xf90 [ 235.984231][ T5738] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 235.984578][ T5742] ? snprintf+0xbf/0x100 [ 235.984618][ T5742] ? vsprintf+0x30/0x30 [ 235.999453][ T5741] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 235.999528][ T5742] ? wait_for_completion_io_timeout+0x20/0x20 [ 236.013049][ T5742] ? set_blocksize+0x2d8/0x370 [ 236.017872][ T5742] get_tree_bdev+0x43e/0x7d0 [ 236.022522][ T5742] ? gfs2_reconfigure+0xf90/0xf90 [ 236.027605][ T5742] gfs2_get_tree+0x4e/0x270 [ 236.032162][ T5742] vfs_get_tree+0x8d/0x350 [ 236.036660][ T5742] path_mount+0x136e/0x1e70 [pid 5741] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5737] <... munmap resumed>) = 0 [ 236.041215][ T5742] ? putname+0x102/0x140 [ 236.045502][ T5742] ? lockdep_hardirqs_on+0x7d/0x100 [ 236.050777][ T5742] ? finish_automount+0xa30/0xa30 [ 236.055855][ T5742] ? putname+0x102/0x140 [ 236.060147][ T5742] __x64_sys_mount+0x283/0x300 [ 236.064971][ T5742] ? copy_mnt_ns+0xb30/0xb30 [ 236.069613][ T5742] ? lockdep_hardirqs_on+0x7d/0x100 [ 236.074901][ T5742] ? _raw_spin_unlock_irq+0x2e/0x50 [ 236.080157][ T5742] ? ptrace_notify+0xfe/0x140 [ 236.084913][ T5742] do_syscall_64+0x39/0xb0 [pid 5737] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [ 236.089369][ T5742] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 236.095332][ T5742] RIP: 0033:0x7f4f6dd11c5a [ 236.099783][ T5742] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 236.102676][ T5737] loop0: detected capacity change from 0 to 32768 [ 236.119433][ T5742] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 236.119472][ T5742] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 236.119493][ T5742] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 236.119514][ T5742] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 236.119536][ T5742] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 236.119556][ T5742] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 236.119582][ T5742] [ 236.125949][ T5741] CPU: 0 PID: 5741 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [pid 5737] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5737] close(3) = 0 [pid 5737] mkdir("./file0", 0777) = 0 [pid 5736] <... mount resumed>) = 0 [pid 5737] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5736] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5736] chdir("./file0") = 0 [pid 5736] ioctl(4, LOOP_CLR_FD) = 0 [pid 5736] close(4) = 0 [pid 5736] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5733] <... futex resumed>) = 0 [pid 5736] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5733] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5736] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5733] <... futex resumed>) = 0 [ 236.136518][ T5742] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 236.142765][ T5741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 236.150816][ T5742] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 236.158725][ T5741] Call Trace: [ 236.158738][ T5741] [ 236.158749][ T5741] dump_stack_lvl+0x136/0x150 [ 236.229718][ T5741] sysfs_warn_dup+0x80/0xa0 [ 236.234290][ T5741] sysfs_create_dir_ns+0x237/0x290 [pid 5736] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5733] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5745] <... write resumed>) = 16777216 [ 236.239466][ T5741] ? sysfs_create_mount_point+0xb0/0xb0 [ 236.245101][ T5741] ? spin_bug+0x1c0/0x1c0 [ 236.247058][ T5736] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 236.249473][ T5741] ? do_raw_spin_unlock+0x175/0x230 [ 236.263076][ T5741] kobject_add_internal+0x2c9/0x9c0 [ 236.268331][ T5741] ? kfree+0x11/0x150 [ 236.272378][ T5741] kobject_init_and_add+0x101/0x170 [ 236.277635][ T5741] ? kobject_create_and_add+0xf0/0xf0 [ 236.283077][ T5741] ? lockdep_init_map_type+0x21e/0x810 [ 236.288597][ T5741] ? lockdep_hardirqs_on+0x7d/0x100 [ 236.293961][ T5741] ? lockdep_init_map_type+0x21e/0x810 [ 236.299489][ T5741] gfs2_sys_fs_add+0x1d5/0x450 [ 236.299727][ T5736] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 236.299727][ T5736] inode = 12 2341 [ 236.299727][ T5736] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 236.304286][ T5741] ? recover_store+0x170/0x170 [ 236.304323][ T5741] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 236.335262][ T5741] gfs2_fill_super+0x1312/0x2aa0 [pid 5745] munmap(0x7f4f650a0000, 16777216 [pid 5733] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5733] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5733] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [ 236.340263][ T5741] ? gfs2_reconfigure+0xf90/0xf90 [ 236.345357][ T5741] ? snprintf+0xbf/0x100 [ 236.349678][ T5741] ? vsprintf+0x30/0x30 [ 236.353887][ T5741] ? wait_for_completion_io_timeout+0x20/0x20 [ 236.360022][ T5741] ? set_blocksize+0x2d8/0x370 [ 236.364847][ T5741] get_tree_bdev+0x43e/0x7d0 [ 236.369496][ T5741] ? gfs2_reconfigure+0xf90/0xf90 [ 236.374589][ T5741] gfs2_get_tree+0x4e/0x270 [ 236.379153][ T5741] vfs_get_tree+0x8d/0x350 [ 236.383664][ T5741] path_mount+0x136e/0x1e70 [ 236.388426][ T5741] ? putname+0x102/0x140 [pid 5733] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [ 236.391808][ T5736] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 236.392699][ T5741] ? lockdep_hardirqs_on+0x7d/0x100 [ 236.392745][ T5741] ? finish_automount+0xa30/0xa30 [ 236.412096][ T5741] ? putname+0x102/0x140 [ 236.416395][ T5741] __x64_sys_mount+0x283/0x300 [ 236.421223][ T5741] ? copy_mnt_ns+0xb30/0xb30 [ 236.425876][ T5741] ? lockdep_hardirqs_on+0x7d/0x100 [ 236.431144][ T5741] ? _raw_spin_unlock_irq+0x2e/0x50 [pid 5733] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5733] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[80]}, 88) = 80 [pid 5733] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [ 236.432495][ T5736] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5736 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 236.436388][ T5741] ? ptrace_notify+0xfe/0x140 [ 236.436445][ T5741] do_syscall_64+0x39/0xb0 [ 236.436475][ T5741] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 236.436529][ T5741] RIP: 0033:0x7f4f6dd11c5a [ 236.436553][ T5741] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 236.436585][ T5741] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 236.436618][ T5741] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 236.436648][ T5741] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 236.436672][ T5741] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 236.486963][ T5736] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 236.494187][ T5741] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 236.494214][ T5741] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 ./strace-static-x86_64: Process 5751 attached [pid 5745] <... munmap resumed>) = 0 [pid 5742] <... mount resumed>) = -1 EEXIST (File exists) [pid 5738] <... mount resumed>) = -1 EEXIST (File exists) [pid 5733] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5751] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5745] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5738] ioctl(4, LOOP_CLR_FD [pid 5751] <... rseq resumed>) = 0 [pid 5745] <... openat resumed>) = 4 [pid 5751] set_robust_list(0x7f4f6609f9a0, 24 [pid 5745] ioctl(4, LOOP_SET_FD, 3 [pid 5742] ioctl(4, LOOP_CLR_FD [pid 5751] <... set_robust_list resumed>) = 0 [pid 5751] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5751] ioctl(0, VFAT_IOCTL_READDIR_SHORT, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 5751] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5745] <... ioctl resumed>) = 0 [pid 5751] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5745] close(3) = 0 [pid 5745] mkdir("./file0", 0777) = 0 [ 236.494242][ T5741] [ 236.535165][ T5741] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 236.546403][ T5737] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 236.555385][ T5741] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 236.583139][ T5745] loop5: detected capacity change from 0 to 32768 [pid 5745] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5741] <... mount resumed>) = -1 EEXIST (File exists) [ 236.595939][ T5736] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 236.604815][ T5736] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 236.614199][ T5745] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 236.614845][ T5736] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 236.627249][ T5737] CPU: 1 PID: 5737 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 236.638568][ T5737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 236.648671][ T5737] Call Trace: [ 236.651994][ T5737] [ 236.652738][ T5736] gfs2: fsid=syz:syz.0: File system withdrawn [ 236.654962][ T5737] dump_stack_lvl+0x136/0x150 [ 236.665816][ T5737] sysfs_warn_dup+0x80/0xa0 [ 236.670370][ T5737] sysfs_create_dir_ns+0x237/0x290 [ 236.675532][ T5737] ? sysfs_create_mount_point+0xb0/0xb0 [ 236.681132][ T5737] ? spin_bug+0x1c0/0x1c0 [ 236.685568][ T5737] ? do_raw_spin_unlock+0x175/0x230 [ 236.690836][ T5737] kobject_add_internal+0x2c9/0x9c0 [ 236.696086][ T5737] ? kfree+0x11/0x150 [ 236.700135][ T5737] kobject_init_and_add+0x101/0x170 [ 236.705397][ T5737] ? kobject_create_and_add+0xf0/0xf0 [ 236.710824][ T5737] ? lockdep_init_map_type+0x21e/0x810 [ 236.716349][ T5737] ? lockdep_hardirqs_on+0x7d/0x100 [ 236.721613][ T5737] ? lockdep_init_map_type+0x21e/0x810 [ 236.727141][ T5737] gfs2_sys_fs_add+0x1d5/0x450 [ 236.731953][ T5737] ? recover_store+0x170/0x170 [ 236.736769][ T5737] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 236.742552][ T5737] gfs2_fill_super+0x1312/0x2aa0 [ 236.747545][ T5737] ? gfs2_reconfigure+0xf90/0xf90 [ 236.752625][ T5737] ? snprintf+0xbf/0x100 [ 236.756929][ T5737] ? vsprintf+0x30/0x30 [ 236.761240][ T5737] ? wait_for_completion_io_timeout+0x20/0x20 [ 236.767408][ T5737] ? set_blocksize+0x2d8/0x370 [ 236.772234][ T5737] get_tree_bdev+0x43e/0x7d0 [ 236.776891][ T5737] ? gfs2_reconfigure+0xf90/0xf90 [ 236.781964][ T5737] gfs2_get_tree+0x4e/0x270 [ 236.786521][ T5737] vfs_get_tree+0x8d/0x350 [ 236.791003][ T5737] path_mount+0x136e/0x1e70 [pid 5741] ioctl(4, LOOP_CLR_FD [pid 5751] <... futex resumed>) = 0 [pid 5733] <... futex resumed>) = 1 [pid 5751] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5733] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 EAGAIN (Resource temporarily unavailable) [pid 5733] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5751] <... futex resumed>) = 0 [pid 5733] <... futex resumed>) = 1 [pid 5751] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [ 236.795570][ T5737] ? putname+0x102/0x140 [ 236.799876][ T5737] ? lockdep_hardirqs_on+0x7d/0x100 [ 236.805223][ T5737] ? finish_automount+0xa30/0xa30 [ 236.810308][ T5737] ? putname+0x102/0x140 [ 236.814612][ T5737] __x64_sys_mount+0x283/0x300 [ 236.819446][ T5737] ? copy_mnt_ns+0xb30/0xb30 [ 236.824119][ T5737] ? lockdep_hardirqs_on+0x7d/0x100 [ 236.829375][ T5737] ? _raw_spin_unlock_irq+0x2e/0x50 [ 236.834645][ T5737] ? ptrace_notify+0xfe/0x140 [ 236.839413][ T5737] do_syscall_64+0x39/0xb0 [pid 5733] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5751] <... openat resumed>) = -1 EIO (Input/output error) [pid 5751] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5751] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5733] <... futex resumed>) = 0 [ 236.843878][ T5737] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 236.849923][ T5737] RIP: 0033:0x7f4f6dd11c5a [ 236.854385][ T5737] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 236.874040][ T5737] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 236.882497][ T5737] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 236.890506][ T5737] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 236.898516][ T5737] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 236.906535][ T5737] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 236.914557][ T5737] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 236.922587][ T5737] [ 236.934486][ T5745] CPU: 1 PID: 5745 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 236.945007][ T5745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 236.955109][ T5745] Call Trace: [ 236.958432][ T5745] [ 236.961406][ T5745] dump_stack_lvl+0x136/0x150 [ 236.966156][ T5745] sysfs_warn_dup+0x80/0xa0 [ 236.970712][ T5745] sysfs_create_dir_ns+0x237/0x290 [ 236.975870][ T5745] ? sysfs_create_mount_point+0xb0/0xb0 [ 236.981468][ T5745] ? spin_bug+0x1c0/0x1c0 [ 236.985862][ T5745] ? do_raw_spin_unlock+0x175/0x230 [ 236.991123][ T5745] kobject_add_internal+0x2c9/0x9c0 [ 236.996376][ T5745] ? kfree+0x11/0x150 [ 237.000407][ T5745] kobject_init_and_add+0x101/0x170 [ 237.005654][ T5745] ? kobject_create_and_add+0xf0/0xf0 [ 237.011090][ T5745] ? lockdep_init_map_type+0x21e/0x810 [ 237.016610][ T5745] ? lockdep_hardirqs_on+0x7d/0x100 [ 237.021868][ T5745] ? lockdep_init_map_type+0x21e/0x810 [ 237.027406][ T5745] gfs2_sys_fs_add+0x1d5/0x450 [ 237.032227][ T5745] ? recover_store+0x170/0x170 [ 237.037049][ T5745] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 237.042835][ T5745] gfs2_fill_super+0x1312/0x2aa0 [ 237.047836][ T5745] ? gfs2_reconfigure+0xf90/0xf90 [ 237.052915][ T5745] ? snprintf+0xbf/0x100 [ 237.057213][ T5745] ? vsprintf+0x30/0x30 [ 237.061441][ T5745] ? wait_for_completion_io_timeout+0x20/0x20 [ 237.067606][ T5745] ? set_blocksize+0x2d8/0x370 [ 237.072426][ T5745] get_tree_bdev+0x43e/0x7d0 [ 237.077072][ T5745] ? gfs2_reconfigure+0xf90/0xf90 [ 237.082141][ T5745] gfs2_get_tree+0x4e/0x270 [ 237.086692][ T5745] vfs_get_tree+0x8d/0x350 [ 237.091160][ T5745] path_mount+0x136e/0x1e70 [ 237.095718][ T5745] ? putname+0x102/0x140 [ 237.100015][ T5745] ? lockdep_hardirqs_on+0x7d/0x100 [ 237.105281][ T5745] ? finish_automount+0xa30/0xa30 [ 237.110371][ T5745] ? putname+0x102/0x140 [ 237.114668][ T5745] __x64_sys_mount+0x283/0x300 [ 237.119487][ T5745] ? copy_mnt_ns+0xb30/0xb30 [ 237.124142][ T5745] ? lockdep_hardirqs_on+0x7d/0x100 [ 237.129415][ T5745] ? _raw_spin_unlock_irq+0x2e/0x50 [ 237.134694][ T5745] ? ptrace_notify+0xfe/0x140 [ 237.139452][ T5745] do_syscall_64+0x39/0xb0 [ 237.143918][ T5745] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 237.149882][ T5745] RIP: 0033:0x7f4f6dd11c5a [ 237.154341][ T5745] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 237.174015][ T5745] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 237.182501][ T5745] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 237.190608][ T5745] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 237.198647][ T5745] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 237.206677][ T5745] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 237.214704][ T5745] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 237.222733][ T5745] [ 237.226334][ T5736] CPU: 1 PID: 5736 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 237.236909][ T5736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 237.247110][ T5736] Call Trace: [ 237.250428][ T5736] [ 237.253397][ T5736] dump_stack_lvl+0x136/0x150 [ 237.258153][ T5736] gfs2_withdraw+0xb33/0x1060 [ 237.262887][ T5736] ? gfs2_consist_inode_i+0x104/0x150 [ 237.267121][ T5737] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 237.268289][ T5736] gfs2_dirent_scan+0x32a/0x3d0 [pid 5738] <... ioctl resumed>) = 0 [ 237.282353][ T5745] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 237.287020][ T5736] ? gfs2_dirent_prev+0x210/0x210 [ 237.287078][ T5736] ? gfs2_dirent_prev+0x210/0x210 [ 237.287125][ T5736] gfs2_dirent_search+0x47d/0x580 [ 237.316189][ T5736] ? get_first_leaf+0x190/0x190 [ 237.321129][ T5736] ? gfs2_permission+0x256/0x3e0 [ 237.326123][ T5736] gfs2_dir_search+0x8d/0x2d0 [ 237.330864][ T5736] ? gfs2_dir_read+0x14e0/0x14e0 [ 237.335870][ T5736] gfs2_lookupi+0x481/0x640 [ 237.340451][ T5736] ? gfs2_lookup_by_inum+0x100/0x100 [ 237.345794][ T5736] ? __gfs2_lookup+0x83/0x280 [ 237.350523][ T5736] ? d_alloc_parallel+0x693/0x1530 [ 237.355696][ T5736] __gfs2_lookup+0x83/0x280 [ 237.356230][ T5737] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 237.360330][ T5736] ? gfs2_lookupi+0x640/0x640 [ 237.360372][ T5736] ? __d_lookup_rcu+0x4e0/0x4e0 [ 237.376562][ T5736] ? __d_lookup+0x289/0x4c0 [ 237.381129][ T5736] gfs2_atomic_open+0xde/0x250 [ 237.385954][ T5736] ? __gfs2_lookup+0x280/0x280 [ 237.389757][ T5745] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 5738] close(4) = 0 [pid 5738] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5735] <... futex resumed>) = 0 [pid 5738] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5735] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5738] <... openat resumed>) = 3 [ 237.390751][ T5736] lookup_open.isra.0+0xce2/0x1400 [ 237.402458][ T5736] ? link_path_walk.part.0+0xd60/0xd60 [ 237.407989][ T5736] ? lookup_fast+0x14e/0x520 [ 237.412655][ T5736] path_openat+0x969/0x2710 [ 237.417230][ T5736] ? path_lookupat+0x840/0x840 [ 237.422068][ T5736] do_filp_open+0x1ba/0x410 [ 237.426635][ T5736] ? may_open_dev+0xf0/0xf0 [ 237.431198][ T5736] ? find_held_lock+0x2d/0x110 [ 237.436017][ T5736] ? do_raw_spin_lock+0x124/0x2b0 [ 237.441117][ T5736] ? spin_bug+0x1c0/0x1c0 [ 237.445516][ T5736] ? _raw_spin_unlock+0x28/0x40 [ 237.450437][ T5736] ? alloc_fd+0x2e4/0x750 [ 237.454842][ T5736] do_sys_openat2+0x160/0x1c0 [ 237.459595][ T5736] ? build_open_flags+0x720/0x720 [ 237.464696][ T5736] ? ptrace_notify+0xfe/0x140 [ 237.469442][ T5736] ? lock_downgrade+0x690/0x690 [ 237.474353][ T5736] __x64_sys_openat+0x143/0x1f0 [ 237.479292][ T5736] ? __ia32_sys_open+0x1c0/0x1c0 [ 237.484308][ T5736] ? _raw_spin_unlock_irq+0x23/0x50 [ 237.489582][ T5736] ? lockdep_hardirqs_on+0x7d/0x100 [ 237.494847][ T5736] ? _raw_spin_unlock_irq+0x2e/0x50 [ 237.500129][ T5736] ? ptrace_notify+0xfe/0x140 [ 237.504874][ T5736] do_syscall_64+0x39/0xb0 [ 237.509342][ T5736] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 237.515304][ T5736] RIP: 0033:0x7f4f6dd107f9 [ 237.519779][ T5736] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 237.539453][ T5736] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [pid 5735] <... futex resumed>) = 0 [pid 5738] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5735] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5738] <... futex resumed>) = 0 [pid 5735] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5738] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5735] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5738] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5735] <... futex resumed>) = 0 [pid 5738] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5735] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5738] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5738] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5735] <... futex resumed>) = 0 [pid 5738] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5735] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5738] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5735] <... futex resumed>) = 0 [pid 5738] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5735] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5738] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5738] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5735] <... futex resumed>) = 0 [pid 5738] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5735] close(3) = 0 [pid 5735] close(4) = -1 EBADF (Bad file descriptor) [pid 5735] close(5) = -1 EBADF (Bad file descriptor) [pid 5735] close(6) = -1 EBADF (Bad file descriptor) [pid 5735] close(7) = -1 EBADF (Bad file descriptor) [pid 5735] close(8) = -1 EBADF (Bad file descriptor) [pid 5735] close(9) = -1 EBADF (Bad file descriptor) [pid 5735] close(10) = -1 EBADF (Bad file descriptor) [pid 5735] close(11) = -1 EBADF (Bad file descriptor) [pid 5735] close(12) = -1 EBADF (Bad file descriptor) [pid 5735] close(13) = -1 EBADF (Bad file descriptor) [pid 5735] close(14) = -1 EBADF (Bad file descriptor) [pid 5735] close(15) = -1 EBADF (Bad file descriptor) [pid 5735] close(16) = -1 EBADF (Bad file descriptor) [pid 5735] close(17) = -1 EBADF (Bad file descriptor) [pid 5735] close(18) = -1 EBADF (Bad file descriptor) [pid 5735] close(19) = -1 EBADF (Bad file descriptor) [pid 5735] close(20) = -1 EBADF (Bad file descriptor) [pid 5734] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5735] close(21 [pid 5734] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5735] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5734] <... futex resumed>) = 0 [pid 5735] close(22 [pid 5734] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5735] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5734] <... mmap resumed>) = 0x7f4f6607f000 [pid 5735] close(23 [pid 5734] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5735] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5734] <... mprotect resumed>) = 0 [pid 5735] close(24 [pid 5734] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5735] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5734] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5735] close(25 [pid 5734] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5753 attached [pid 5735] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5753] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5735] close(26 [pid 5734] <... clone3 resumed> => {parent_tid=[86]}, 88) = 86 [pid 5753] <... rseq resumed>) = 0 [pid 5735] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5734] rt_sigprocmask(SIG_SETMASK, [], [pid 5753] set_robust_list(0x7f4f6609f9a0, 24 [pid 5735] close(27 [pid 5734] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5753] <... set_robust_list resumed>) = 0 [pid 5735] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5734] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5753] rt_sigprocmask(SIG_SETMASK, [], [pid 5735] close(28 [pid 5734] <... futex resumed>) = 0 [pid 5753] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5735] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5734] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5753] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5735] close(29 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5753] <... openat resumed>) = 3 [pid 5735] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5753] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5735] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5753] <... futex resumed>) = 1 [pid 5745] <... mount resumed>) = -1 EEXIST (File exists) [pid 5735] <... write resumed>) = 156 [pid 5734] <... futex resumed>) = 0 [pid 5753] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5745] ioctl(4, LOOP_CLR_FD [pid 5736] <... openat resumed>) = -1 EIO (Input/output error) [pid 5735] exit_group(0 [pid 5734] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5753] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5738] <... futex resumed>) = ? [pid 5736] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5735] <... exit_group resumed>) = ? [pid 5734] <... futex resumed>) = 0 [pid 5753] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5738] +++ exited with 0 +++ [pid 5736] <... futex resumed>) = 0 [pid 5735] +++ exited with 0 +++ [pid 5734] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5733] close(3 [pid 5753] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5736] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5733] <... close resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=80, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=65 /* 0.65 s */} --- [pid 5753] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5733] close(4 [pid 5753] <... futex resumed>) = 1 [pid 5734] <... futex resumed>) = 0 [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5753] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5734] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5733] close(5 [pid 5753] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5734] <... futex resumed>) = 0 [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [ 237.547938][ T5736] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 237.556052][ T5736] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [ 237.564080][ T5736] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 237.572104][ T5736] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 237.580128][ T5736] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 237.588162][ T5736] [pid 5753] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5734] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5733] close(6 [pid 5753] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5742] <... ioctl resumed>) = 0 [pid 5737] <... mount resumed>) = -1 EEXIST (File exists) [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./28", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5753] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5742] close(4 [pid 5737] ioctl(4, LOOP_CLR_FD [pid 5733] close(7 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5753] <... futex resumed>) = 1 [pid 5742] <... close resumed>) = 0 [pid 5734] <... futex resumed>) = 0 [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5753] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5742] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5733] close(8 [pid 5033] <... openat resumed>) = 3 [pid 5742] <... futex resumed>) = 1 [pid 5739] <... futex resumed>) = 0 [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5033] newfstatat(3, "", [pid 5742] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5740] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5739] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5733] close(9 [pid 5742] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5739] <... futex resumed>) = 0 [pid 5742] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5739] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5742] <... openat resumed>) = 3 [pid 5742] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5739] <... futex resumed>) = 0 [pid 5742] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5739] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5742] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5739] <... futex resumed>) = 0 [pid 5742] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5739] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5742] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5742] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] getdents64(3, [pid 5742] <... futex resumed>) = 1 [pid 5739] <... futex resumed>) = 0 [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5742] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5739] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5742] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5739] <... futex resumed>) = 0 [pid 5742] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5739] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5742] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5742] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5739] <... futex resumed>) = 0 [pid 5742] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5739] close(3 [pid 5733] close(10 [pid 5033] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5739] <... close resumed>) = 0 [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./28/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5739] close(4 [pid 5733] close(11 [pid 5739] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5739] close(5 [pid 5733] close(12 [pid 5033] newfstatat(AT_FDCWD, "./28/cgroup.cpu", [pid 5739] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5739] close(6 [pid 5733] close(13 [pid 5033] unlink("./28/cgroup.cpu" [pid 5739] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5739] close(7) = -1 EBADF (Bad file descriptor) [pid 5033] <... unlink resumed>) = 0 [pid 5739] close(8 [pid 5733] close(14 [pid 5033] umount2("./28/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5739] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5739] close(9 [pid 5733] close(15 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5739] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(AT_FDCWD, "./28/binderfs", [pid 5739] close(10 [pid 5733] close(16 [pid 5739] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5739] close(11) = -1 EBADF (Bad file descriptor) [pid 5739] close(12) = -1 EBADF (Bad file descriptor) [pid 5739] close(13) = -1 EBADF (Bad file descriptor) [pid 5739] close(14) = -1 EBADF (Bad file descriptor) [pid 5739] close(15) = -1 EBADF (Bad file descriptor) [pid 5739] close(16) = -1 EBADF (Bad file descriptor) [pid 5739] close(17) = -1 EBADF (Bad file descriptor) [pid 5739] close(18) = -1 EBADF (Bad file descriptor) [pid 5739] close(19) = -1 EBADF (Bad file descriptor) [pid 5739] close(20) = -1 EBADF (Bad file descriptor) [pid 5739] close(21) = -1 EBADF (Bad file descriptor) [pid 5739] close(22) = -1 EBADF (Bad file descriptor) [pid 5739] close(23) = -1 EBADF (Bad file descriptor) [pid 5739] close(24) = -1 EBADF (Bad file descriptor) [pid 5739] close(25) = -1 EBADF (Bad file descriptor) [pid 5739] close(26) = -1 EBADF (Bad file descriptor) [pid 5739] close(27) = -1 EBADF (Bad file descriptor) [pid 5739] close(28) = -1 EBADF (Bad file descriptor) [pid 5739] close(29) = -1 EBADF (Bad file descriptor) [pid 5739] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5739] exit_group(0 [pid 5742] <... futex resumed>) = ? [pid 5739] <... exit_group resumed>) = ? [pid 5742] +++ exited with 0 +++ [pid 5739] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=78, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=57 /* 0.57 s */} --- [pid 5031] umount2("./26", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5031] umount2("./26/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./26/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./26/cgroup.cpu") = 0 [pid 5031] umount2("./26/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./26/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./26/binderfs") = 0 [pid 5031] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./26/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./26/file0") = 0 [pid 5031] umount2("./26/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5733] close(17 [pid 5033] unlink("./28/binderfs" [pid 5031] newfstatat(AT_FDCWD, "./26/cgroup", [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5733] close(18 [pid 5033] <... unlink resumed>) = 0 [pid 5031] unlink("./26/cgroup" [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... unlink resumed>) = 0 [pid 5733] close(19 [pid 5033] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./26/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5733] close(20 [pid 5033] newfstatat(AT_FDCWD, "./28/file0", [pid 5031] newfstatat(AT_FDCWD, "./26/cgroup.net", [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5733] close(21 [pid 5033] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] unlink("./26/cgroup.net" [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... unlink resumed>) = 0 [pid 5733] close(22 [pid 5033] openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] getdents64(3, [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5733] close(23 [pid 5033] <... openat resumed>) = 4 [pid 5031] close(3 [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(4, "", [pid 5031] <... close resumed>) = 0 [pid 5733] close(24 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] rmdir("./26" [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] getdents64(4, [pid 5031] <... rmdir resumed>) = 0 [pid 5733] close(25 [pid 5031] mkdir("./27", 0777 [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5031] <... mkdir resumed>) = 0 [pid 5733] close(26 [pid 5033] getdents64(4, [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5733] close(27 [pid 5033] close(4 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... close resumed>) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5733] close(28 [pid 5033] rmdir("./28/file0" [pid 5031] close(3 [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... close resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5754 attached [pid 5733] close(29 [pid 5033] <... rmdir resumed>) = 0 [pid 5733] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./28/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 80 [pid 5733] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5754] set_robust_list(0x55555654e6a0, 24 [pid 5733] exit_group(0 [pid 5754] <... set_robust_list resumed>) = 0 [pid 5751] <... futex resumed>) = ? [pid 5733] <... exit_group resumed>) = ? [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5736] <... futex resumed>) = ? [pid 5754] chdir("./27" [pid 5751] +++ exited with 0 +++ [pid 5736] +++ exited with 0 +++ [pid 5733] +++ exited with 0 +++ [pid 5033] newfstatat(AT_FDCWD, "./28/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./28/cgroup") = 0 [pid 5754] <... chdir resumed>) = 0 [pid 5033] umount2("./28/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5754] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5754] <... prctl resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./28/cgroup.net", [pid 5754] setpgid(0, 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5754] <... setpgid resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=78, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=66 /* 0.66 s */} --- [pid 5033] unlink("./28/cgroup.net") = 0 [pid 5754] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 5033] getdents64(3, [pid 5754] <... symlink resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5033] close(3 [pid 5754] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 5032] umount2("./27", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 5033] rmdir("./28") = 0 [pid 5033] mkdir("./29", 0777 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5741] <... ioctl resumed>) = 0 [pid 5741] close(4) = 0 [pid 5741] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5741] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5740] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5740] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5741] <... futex resumed>) = 0 [pid 5741] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 5741] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5740] <... futex resumed>) = 0 [pid 5740] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5740] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5741] <... futex resumed>) = 1 [pid 5741] ioctl(-1, VFAT_IOCTL_READDIR_SHORT, 0) = -1 EBADF (Bad file descriptor) [pid 5741] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5740] <... futex resumed>) = 0 [pid 5740] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5740] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5741] <... futex resumed>) = 1 [pid 5741] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH) = -1 ENOENT (No such file or directory) [pid 5741] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5740] <... futex resumed>) = 0 [pid 5740] close(3) = 0 [pid 5740] close(4) = -1 EBADF (Bad file descriptor) [pid 5740] close(5) = -1 EBADF (Bad file descriptor) [pid 5740] close(6) = -1 EBADF (Bad file descriptor) [pid 5740] close(7) = -1 EBADF (Bad file descriptor) [pid 5033] <... mkdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5740] close(8) = -1 EBADF (Bad file descriptor) [pid 5740] close(9) = -1 EBADF (Bad file descriptor) [pid 5740] close(10) = -1 EBADF (Bad file descriptor) [pid 5740] close(11) = -1 EBADF (Bad file descriptor) [pid 5740] close(12) = -1 EBADF (Bad file descriptor) [pid 5032] <... openat resumed>) = 3 [pid 5740] close(13 [pid 5754] <... symlink resumed>) = 0 [pid 5741] <... futex resumed>) = 1 [pid 5740] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] newfstatat(3, "", [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5741] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5740] close(14write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory ) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5740] close(15) = -1 EBADF (Bad file descriptor) [pid 5033] <... openat resumed>) = 3 [pid 5032] getdents64(3, [pid 5740] close(16) = -1 EBADF (Bad file descriptor) [pid 5740] close(17) = -1 EBADF (Bad file descriptor) [pid 5740] close(18) = -1 EBADF (Bad file descriptor) [pid 5740] close(19) = -1 EBADF (Bad file descriptor) [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5740] close(20 [pid 5754] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 5032] umount2("./27/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5740] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5740] close(21) = -1 EBADF (Bad file descriptor) [pid 5740] close(22) = -1 EBADF (Bad file descriptor) [pid 5740] close(23) = -1 EBADF (Bad file descriptor) [pid 5740] close(24) = -1 EBADF (Bad file descriptor) [pid 5740] close(25) = -1 EBADF (Bad file descriptor) [pid 5740] close(26) = -1 EBADF (Bad file descriptor) [pid 5740] close(27) = -1 EBADF (Bad file descriptor) [pid 5740] close(28) = -1 EBADF (Bad file descriptor) [pid 5740] close(29) = -1 EBADF (Bad file descriptor) [pid 5740] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5740] exit_group(0 [pid 5741] <... futex resumed>) = ? [pid 5740] <... exit_group resumed>) = ? [pid 5741] +++ exited with 0 +++ [pid 5740] +++ exited with 0 +++ [pid 5754] <... symlink resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] close(3 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=74, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=67 /* 0.67 s */} --- [pid 5032] newfstatat(AT_FDCWD, "./27/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... close resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] unlink("./27/cgroup.cpu" [pid 5030] umount2("./26", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5755 attached [pid 5755] set_robust_list(0x55555654e6a0, 24 [pid 5032] <... unlink resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5754] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5755] <... set_robust_list resumed>) = 0 [pid 5755] chdir("./29" [pid 5032] umount2("./27/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5755] <... chdir resumed>) = 0 [pid 5754] <... openat resumed>) = 3 [pid 5030] <... openat resumed>) = 3 [pid 5754] write(3, "1000", 4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(3, "", [pid 5755] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5754] <... write resumed>) = 4 [pid 5032] newfstatat(AT_FDCWD, "./27/binderfs", [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5755] setpgid(0, 0) = 0 [pid 5755] symlink("/syzcgroup/unified/syz2", "./cgroup") = 0 [pid 5755] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu" [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5754] close(3 [pid 5032] unlink("./27/binderfs" [pid 5030] getdents64(3, [pid 5755] <... symlink resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5754] <... close resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 82 [pid 5030] umount2("./26/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5754] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5755] symlink("/syzcgroup/net/syz2", "./cgroup.net") = 0 [pid 5754] <... symlink resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./26/cgroup.cpu", [pid 5754] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5755] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5754] <... futex resumed>) = 0 [pid 5030] unlink("./26/cgroup.cpu" [pid 5755] <... openat resumed>) = 3 [pid 5754] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5755] write(3, "1000", 4 [pid 5754] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5030] <... unlink resumed>) = 0 [pid 5755] <... write resumed>) = 4 [pid 5030] umount2("./26/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5754] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5755] close(3) = 0 [pid 5755] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5755] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5755] <... futex resumed>) = 0 [pid 5755] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5754] <... mprotect resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./26/binderfs", [pid 5755] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5754] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5755] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5030] unlink("./26/binderfs" [pid 5755] <... mprotect resumed>) = 0 [pid 5754] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5755] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5754] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5030] <... unlink resumed>) = 0 [pid 5755] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5030] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5755] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5756 attached [pid 5754] <... clone3 resumed> => {parent_tid=[81]}, 88) = 81 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5756] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5754] rt_sigprocmask(SIG_SETMASK, [], [pid 5030] newfstatat(AT_FDCWD, "./26/file0", ./strace-static-x86_64: Process 5757 attached [pid 5756] <... rseq resumed>) = 0 [pid 5754] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5757] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5756] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5755] <... clone3 resumed> => {parent_tid=[83]}, 88) = 83 [pid 5754] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5757] <... rseq resumed>) = 0 [pid 5756] <... set_robust_list resumed>) = 0 [pid 5755] rt_sigprocmask(SIG_SETMASK, [], [pid 5754] <... futex resumed>) = 0 [pid 5030] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5757] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5756] rt_sigprocmask(SIG_SETMASK, [], [pid 5755] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5754] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5757] <... set_robust_list resumed>) = 0 [pid 5756] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5755] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5757] rt_sigprocmask(SIG_SETMASK, [], [pid 5755] <... futex resumed>) = 0 [pid 5757] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5755] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5757] memfd_create("syzkaller", 0 [pid 5756] memfd_create("syzkaller", 0 [pid 5030] <... openat resumed>) = 4 [pid 5757] <... memfd_create resumed>) = 3 [pid 5756] <... memfd_create resumed>) = 3 [pid 5030] newfstatat(4, "", [pid 5757] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5756] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5757] <... mmap resumed>) = 0x7f4f650a0000 [pid 5756] <... mmap resumed>) = 0x7f4f650a0000 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./26/file0") = 0 [pid 5030] umount2("./26/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./26/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./26/cgroup") = 0 [pid 5030] umount2("./26/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./26/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./26/cgroup.net") = 0 [pid 5030] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./26") = 0 [pid 5030] mkdir("./27", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5758 attached [pid 5758] set_robust_list(0x55555654e6a0, 24) = 0 [pid 5758] chdir("./27") = 0 [pid 5758] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5758] setpgid(0, 0) = 0 [pid 5758] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 76 [pid 5758] <... symlink resumed>) = 0 [pid 5758] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu") = 0 [pid 5758] symlink("/syzcgroup/net/syz3", "./cgroup.net") = 0 [pid 5758] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5758] write(3, "1000", 4) = 4 [pid 5758] close(3) = 0 [pid 5758] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5758] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5758] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5758] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5758] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5758] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5759 attached [pid 5759] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5758] <... clone3 resumed> => {parent_tid=[77]}, 88) = 77 [pid 5759] <... rseq resumed>) = 0 [pid 5758] rt_sigprocmask(SIG_SETMASK, [], [pid 5759] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5758] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5759] <... set_robust_list resumed>) = 0 [pid 5758] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5759] rt_sigprocmask(SIG_SETMASK, [], [pid 5758] <... futex resumed>) = 0 [pid 5759] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5758] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5759] memfd_create("syzkaller", 0) = 3 [pid 5759] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5745] <... ioctl resumed>) = 0 [pid 5745] close(4) = 0 [pid 5745] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5744] <... futex resumed>) = 0 [pid 5745] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5744] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5745] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5744] <... futex resumed>) = 0 [pid 5744] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5745] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 5745] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5744] <... futex resumed>) = 0 [pid 5745] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5744] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5745] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5744] <... futex resumed>) = 0 [pid 5745] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5744] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5745] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5745] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5744] <... futex resumed>) = 0 [pid 5745] <... futex resumed>) = 1 [pid 5744] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5745] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5744] <... futex resumed>) = 0 [pid 5745] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5744] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5745] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5744] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5745] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5744] close(3) = 0 [pid 5744] close(4) = -1 EBADF (Bad file descriptor) [pid 5744] close(5) = -1 EBADF (Bad file descriptor) [pid 5744] close(6) = -1 EBADF (Bad file descriptor) [pid 5744] close(7) = -1 EBADF (Bad file descriptor) [pid 5744] close(8) = -1 EBADF (Bad file descriptor) [pid 5744] close(9) = -1 EBADF (Bad file descriptor) [pid 5744] close(10) = -1 EBADF (Bad file descriptor) [pid 5744] close(11) = -1 EBADF (Bad file descriptor) [pid 5744] close(12) = -1 EBADF (Bad file descriptor) [pid 5744] close(13) = -1 EBADF (Bad file descriptor) [pid 5744] close(14) = -1 EBADF (Bad file descriptor) [pid 5744] close(15) = -1 EBADF (Bad file descriptor) [pid 5744] close(16) = -1 EBADF (Bad file descriptor) [pid 5744] close(17) = -1 EBADF (Bad file descriptor) [pid 5744] close(18) = -1 EBADF (Bad file descriptor) [pid 5744] close(19) = -1 EBADF (Bad file descriptor) [pid 5744] close(20) = -1 EBADF (Bad file descriptor) [pid 5744] close(21) = -1 EBADF (Bad file descriptor) [pid 5744] close(22) = -1 EBADF (Bad file descriptor) [pid 5744] close(23) = -1 EBADF (Bad file descriptor) [pid 5744] close(24) = -1 EBADF (Bad file descriptor) [pid 5744] close(25) = -1 EBADF (Bad file descriptor) [pid 5744] close(26) = -1 EBADF (Bad file descriptor) [pid 5744] close(27) = -1 EBADF (Bad file descriptor) [pid 5744] close(28) = -1 EBADF (Bad file descriptor) [pid 5744] close(29) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5744] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5744] exit_group(0 [pid 5745] <... futex resumed>) = ? [pid 5744] <... exit_group resumed>) = ? [pid 5745] +++ exited with 0 +++ [pid 5744] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=83, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=73 /* 0.73 s */} --- [pid 5034] umount2("./27", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5034] umount2("./27/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./27/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./27/cgroup.cpu") = 0 [pid 5034] umount2("./27/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./27/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./27/binderfs") = 0 [pid 5034] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./27/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./27/file0") = 0 [pid 5034] umount2("./27/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./27/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./27/cgroup") = 0 [pid 5034] umount2("./27/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./27/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./27/cgroup.net" [pid 5737] <... ioctl resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5034] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5737] close(4 [pid 5034] close(3 [pid 5737] <... close resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./27" [pid 5737] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] <... rmdir resumed>) = 0 [pid 5737] <... futex resumed>) = 0 [pid 5034] mkdir("./28", 0777 [pid 5737] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5034] <... mkdir resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5760 attached , child_tidptr=0x55555654e690) = 85 [pid 5760] set_robust_list(0x55555654e6a0, 24) = 0 [pid 5760] chdir("./28") = 0 [pid 5760] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5760] setpgid(0, 0) = 0 [pid 5760] symlink("/syzcgroup/unified/syz5", "./cgroup") = 0 [pid 5760] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu") = 0 [pid 5760] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 5734] close(3 [pid 5760] <... symlink resumed>) = 0 [pid 5734] <... close resumed>) = 0 [pid 5760] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5734] close(4 [pid 5760] <... openat resumed>) = 3 [pid 5734] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] kill(-84, SIGKILL [pid 5760] write(3, "1000", 4 [pid 5734] close(5 [pid 5760] <... write resumed>) = 4 [pid 5753] <... futex resumed>) = ? [pid 5737] <... futex resumed>) = ? [pid 5734] <... close resumed>) = ? [pid 5029] <... kill resumed>) = 0 [pid 5760] close(3 [pid 5753] +++ killed by SIGKILL +++ [pid 5737] +++ killed by SIGKILL +++ [pid 5734] +++ killed by SIGKILL +++ [pid 5760] <... close resumed>) = 0 [pid 5760] symlink("/dev/binderfs", "./binderfs" [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=84, si_uid=0, si_status=SIGKILL, si_utime=10 /* 0.10 s */, si_stime=57 /* 0.57 s */} --- [pid 5760] <... symlink resumed>) = 0 [pid 5760] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5760] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5029] kill(84, SIGKILL [pid 5760] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5760] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5029] <... kill resumed>) = 0 [pid 5760] <... mprotect resumed>) = 0 [pid 5760] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5760] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5029] umount2("./26", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5761 attached ) = -1 EINVAL (Invalid argument) [pid 5761] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5760] <... clone3 resumed> => {parent_tid=[86]}, 88) = 86 [pid 5761] <... rseq resumed>) = 0 [pid 5760] rt_sigprocmask(SIG_SETMASK, [], [pid 5029] openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5761] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5760] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5761] <... set_robust_list resumed>) = 0 [pid 5760] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] newfstatat(3, "", [pid 5761] rt_sigprocmask(SIG_SETMASK, [], [pid 5760] <... futex resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5761] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5760] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5029] getdents64(3, [pid 5761] memfd_create("syzkaller", 0 [pid 5029] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5761] <... memfd_create resumed>) = 3 [pid 5029] umount2("./26/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5761] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5761] <... mmap resumed>) = 0x7f4f650a0000 [pid 5029] newfstatat(AT_FDCWD, "./26/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./26/cgroup.cpu") = 0 [pid 5029] umount2("./26/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./26/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./26/binderfs") = 0 [pid 5029] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./26/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./26/file0") = 0 [pid 5029] umount2("./26/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./26/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./26/cgroup") = 0 [pid 5029] umount2("./26/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./26/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./26/cgroup.net") = 0 [pid 5029] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./26") = 0 [pid 5029] mkdir("./27", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5762 attached [pid 5762] set_robust_list(0x55555654e6a0, 24 [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 87 [pid 5762] <... set_robust_list resumed>) = 0 [pid 5762] chdir("./27") = 0 [pid 5762] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5762] setpgid(0, 0) = 0 [pid 5762] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0 [pid 5762] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0 [pid 5762] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0 [pid 5762] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5762] write(3, "1000", 4) = 4 [pid 5762] close(3) = 0 [pid 5762] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5762] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5762] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5762] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5762] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5762] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5032] <... umount2 resumed>) = 0 ./strace-static-x86_64: Process 5763 attached [pid 5763] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5762] <... clone3 resumed> => {parent_tid=[88]}, 88) = 88 [pid 5763] <... rseq resumed>) = 0 [pid 5762] rt_sigprocmask(SIG_SETMASK, [], [pid 5763] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5762] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5032] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5763] <... set_robust_list resumed>) = 0 [pid 5762] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5763] rt_sigprocmask(SIG_SETMASK, [], [pid 5762] <... futex resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./27/file0", [pid 5763] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5762] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5763] memfd_create("syzkaller", 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5763] <... memfd_create resumed>) = 3 [pid 5032] openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5763] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... openat resumed>) = 4 [pid 5763] <... mmap resumed>) = 0x7f4f650a0000 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./27/file0") = 0 [pid 5032] umount2("./27/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./27/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./27/cgroup") = 0 [pid 5032] umount2("./27/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./27/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./27/cgroup.net") = 0 [pid 5032] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5032] rmdir("./27") = 0 [pid 5032] mkdir("./28", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5764 attached [pid 5764] set_robust_list(0x55555654e6a0, 24 [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 81 [pid 5764] <... set_robust_list resumed>) = 0 [pid 5764] chdir("./28") = 0 [pid 5764] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5764] setpgid(0, 0) = 0 [pid 5764] symlink("/syzcgroup/unified/syz1", "./cgroup") = 0 [pid 5764] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu") = 0 [pid 5764] symlink("/syzcgroup/net/syz1", "./cgroup.net") = 0 [pid 5764] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5764] write(3, "1000", 4) = 4 [pid 5764] close(3) = 0 [pid 5764] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5764] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5764] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5764] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5764] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5764] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5765 attached [pid 5765] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5764] <... clone3 resumed> => {parent_tid=[82]}, 88) = 82 [pid 5765] <... rseq resumed>) = 0 [pid 5764] rt_sigprocmask(SIG_SETMASK, [], [pid 5765] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5764] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5765] <... set_robust_list resumed>) = 0 [pid 5764] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5765] rt_sigprocmask(SIG_SETMASK, [], [pid 5764] <... futex resumed>) = 0 [pid 5765] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5764] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5765] memfd_create("syzkaller", 0) = 3 [pid 5765] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5757] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5756] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5759] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5761] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5763] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5765] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5757] <... write resumed>) = 16777216 [pid 5757] munmap(0x7f4f650a0000, 16777216 [pid 5759] <... write resumed>) = 16777216 [pid 5759] munmap(0x7f4f650a0000, 16777216 [pid 5756] <... write resumed>) = 16777216 [pid 5756] munmap(0x7f4f650a0000, 16777216 [pid 5757] <... munmap resumed>) = 0 [pid 5757] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5757] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5757] close(3) = 0 [pid 5757] mkdir("./file0", 0777) = 0 [ 239.872635][ T5757] loop2: detected capacity change from 0 to 32768 [pid 5757] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5759] <... munmap resumed>) = 0 [pid 5759] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [ 239.961721][ T5757] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [pid 5759] ioctl(4, LOOP_SET_FD, 3 [pid 5756] <... munmap resumed>) = 0 [pid 5756] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5756] ioctl(4, LOOP_SET_FD, 3 [pid 5759] <... ioctl resumed>) = 0 [pid 5759] close(3) = 0 [pid 5765] <... write resumed>) = 16777216 [pid 5759] mkdir("./file0", 0777) = 0 [pid 5759] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [ 240.022558][ T5757] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 240.031410][ T5759] loop3: detected capacity change from 0 to 32768 [ 240.055666][ T5756] loop4: detected capacity change from 0 to 32768 [pid 5765] munmap(0x7f4f650a0000, 16777216 [pid 5756] <... ioctl resumed>) = 0 [pid 5756] close(3) = 0 [pid 5756] mkdir("./file0", 0777) = 0 [ 240.120739][ T5757] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 240.128285][ T5759] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 240.139561][ T5759] CPU: 0 PID: 5759 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 240.150050][ T5759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 240.160152][ T5759] Call Trace: [ 240.163473][ T5759] [ 240.166468][ T5759] dump_stack_lvl+0x136/0x150 [ 240.171220][ T5759] sysfs_warn_dup+0x80/0xa0 [ 240.175776][ T5759] sysfs_create_dir_ns+0x237/0x290 [ 240.180944][ T5759] ? sysfs_create_mount_point+0xb0/0xb0 [ 240.186558][ T5759] ? spin_bug+0x1c0/0x1c0 [ 240.190956][ T5759] ? do_raw_spin_unlock+0x175/0x230 [ 240.196228][ T5759] kobject_add_internal+0x2c9/0x9c0 [ 240.201508][ T5759] ? kfree+0x11/0x150 [ 240.205544][ T5759] kobject_init_and_add+0x101/0x170 [ 240.210801][ T5759] ? kobject_create_and_add+0xf0/0xf0 [ 240.216231][ T5759] ? lockdep_init_map_type+0x21e/0x810 [ 240.221762][ T5759] ? lockdep_hardirqs_on+0x7d/0x100 [ 240.227022][ T5759] ? lockdep_init_map_type+0x21e/0x810 [ 240.227659][ T3750] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 240.232519][ T5759] gfs2_sys_fs_add+0x1d5/0x450 [ 240.240999][ T3750] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 240.244059][ T5759] ? recover_store+0x170/0x170 [ 240.255576][ T5759] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 240.261380][ T5759] gfs2_fill_super+0x1312/0x2aa0 [ 240.266432][ T5759] ? gfs2_reconfigure+0xf90/0xf90 [ 240.271518][ T5759] ? snprintf+0xbf/0x100 [ 240.275823][ T5759] ? vsprintf+0x30/0x30 [ 240.280031][ T5759] ? wait_for_completion_io_timeout+0x20/0x20 [ 240.286163][ T5759] ? set_blocksize+0x2d8/0x370 [ 240.291001][ T5759] get_tree_bdev+0x43e/0x7d0 [ 240.295657][ T5759] ? gfs2_reconfigure+0xf90/0xf90 [ 240.300736][ T5759] gfs2_get_tree+0x4e/0x270 [ 240.305292][ T5759] vfs_get_tree+0x8d/0x350 [ 240.309770][ T5759] path_mount+0x136e/0x1e70 [ 240.314339][ T5759] ? putname+0x102/0x140 [pid 5756] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [ 240.315598][ T3750] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 74ms [ 240.318642][ T5759] ? lockdep_hardirqs_on+0x7d/0x100 [ 240.318685][ T5759] ? finish_automount+0xa30/0xa30 [ 240.326348][ T3750] gfs2: fsid=syz:syz.0: jid=0: Done [ 240.331265][ T5759] ? putname+0x102/0x140 [ 240.345812][ T5759] __x64_sys_mount+0x283/0x300 [ 240.352287][ T5759] ? copy_mnt_ns+0xb30/0xb30 [ 240.354183][ T5757] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 240.356962][ T5759] ? lockdep_hardirqs_on+0x7d/0x100 [pid 5765] <... munmap resumed>) = 0 [pid 5763] <... write resumed>) = 16777216 [pid 5761] <... write resumed>) = 16777216 [pid 5757] <... mount resumed>) = 0 [pid 5765] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5763] munmap(0x7f4f650a0000, 16777216 [pid 5761] munmap(0x7f4f650a0000, 16777216 [pid 5765] <... openat resumed>) = 4 [pid 5757] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5765] ioctl(4, LOOP_SET_FD, 3 [pid 5757] <... openat resumed>) = 3 [ 240.357009][ T5759] ? _raw_spin_unlock_irq+0x2e/0x50 [ 240.357054][ T5759] ? ptrace_notify+0xfe/0x140 [ 240.379430][ T5759] do_syscall_64+0x39/0xb0 [ 240.383899][ T5759] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 240.389869][ T5759] RIP: 0033:0x7f4f6dd11c5a [ 240.394329][ T5759] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 240.398091][ T5765] loop1: detected capacity change from 0 to 32768 [pid 5757] chdir("./file0") = 0 [pid 5757] ioctl(4, LOOP_CLR_FD) = 0 [pid 5757] close(4) = 0 [pid 5757] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5755] <... futex resumed>) = 0 [pid 5757] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5755] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5757] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5755] <... futex resumed>) = 0 [ 240.413985][ T5759] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 240.414023][ T5759] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 240.414046][ T5759] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 240.414067][ T5759] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 240.414089][ T5759] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 240.414110][ T5759] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [pid 5757] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5755] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5765] <... ioctl resumed>) = 0 [ 240.457776][ T5757] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 240.460899][ T5759] [ 240.481964][ T5756] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 240.497123][ T5756] CPU: 1 PID: 5756 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 240.507617][ T5756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 240.517840][ T5756] Call Trace: [ 240.519004][ T5759] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 240.521139][ T5756] [ 240.521152][ T5756] dump_stack_lvl+0x136/0x150 [ 240.535131][ T5759] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 240.537965][ T5756] sysfs_warn_dup+0x80/0xa0 [ 240.538003][ T5756] sysfs_create_dir_ns+0x237/0x290 [ 240.538040][ T5756] ? sysfs_create_mount_point+0xb0/0xb0 [ 240.548551][ T5757] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 240.548551][ T5757] inode = 12 2341 [ 240.548551][ T5757] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 240.549227][ T5756] ? spin_bug+0x1c0/0x1c0 [ 240.553732][ T5757] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 240.558829][ T5756] ? do_raw_spin_unlock+0x175/0x230 [ 240.558893][ T5756] kobject_add_internal+0x2c9/0x9c0 [ 240.558931][ T5756] ? kfree+0x11/0x150 [ 240.564475][ T5757] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5757 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 240.583038][ T5756] kobject_init_and_add+0x101/0x170 [ 240.583078][ T5756] ? kobject_create_and_add+0xf0/0xf0 [ 240.583113][ T5756] ? lockdep_init_map_type+0x21e/0x810 [ 240.583152][ T5756] ? lockdep_hardirqs_on+0x7d/0x100 [ 240.583193][ T5756] ? lockdep_init_map_type+0x21e/0x810 [ 240.583237][ T5756] gfs2_sys_fs_add+0x1d5/0x450 [ 240.588558][ T5757] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 240.596603][ T5756] ? recover_store+0x170/0x170 [ 240.596639][ T5756] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 240.596701][ T5756] gfs2_fill_super+0x1312/0x2aa0 [ 240.602003][ T5757] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 240.607202][ T5756] ? gfs2_reconfigure+0xf90/0xf90 [ 240.607244][ T5756] ? snprintf+0xbf/0x100 [ 240.607283][ T5756] ? vsprintf+0x30/0x30 [ 240.611250][ T5757] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 240.621213][ T5756] ? wait_for_completion_io_timeout+0x20/0x20 [ 240.621263][ T5756] ? set_blocksize+0x2d8/0x370 [ 240.621302][ T5756] get_tree_bdev+0x43e/0x7d0 [ 240.626548][ T5757] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 240.631852][ T5756] ? gfs2_reconfigure+0xf90/0xf90 [ 240.640431][ T5757] gfs2: fsid=syz:syz.0: File system withdrawn [ 240.642493][ T5756] gfs2_get_tree+0x4e/0x270 [ 240.743604][ T5756] vfs_get_tree+0x8d/0x350 [ 240.748064][ T5756] path_mount+0x136e/0x1e70 [ 240.752602][ T5756] ? putname+0x102/0x140 [ 240.756878][ T5756] ? lockdep_hardirqs_on+0x7d/0x100 [ 240.762109][ T5756] ? finish_automount+0xa30/0xa30 [ 240.767170][ T5756] ? putname+0x102/0x140 [ 240.771438][ T5756] __x64_sys_mount+0x283/0x300 [ 240.776235][ T5756] ? copy_mnt_ns+0xb30/0xb30 [ 240.780865][ T5756] ? lockdep_hardirqs_on+0x7d/0x100 [ 240.786098][ T5756] ? _raw_spin_unlock_irq+0x2e/0x50 [ 240.791352][ T5756] ? ptrace_notify+0xfe/0x140 [ 240.796098][ T5756] do_syscall_64+0x39/0xb0 [ 240.800550][ T5756] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 240.806497][ T5756] RIP: 0033:0x7f4f6dd11c5a [ 240.810936][ T5756] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 240.830570][ T5756] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 240.839013][ T5756] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 240.847015][ T5756] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 240.855009][ T5756] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 240.863004][ T5756] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [pid 5765] close(3 [pid 5763] <... munmap resumed>) = 0 [pid 5755] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5765] <... close resumed>) = 0 [pid 5763] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5759] <... mount resumed>) = -1 EEXIST (File exists) [ 240.870996][ T5756] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 240.878992][ T5756] [ 240.894014][ T5757] CPU: 0 PID: 5757 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 240.904623][ T5757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 240.914819][ T5757] Call Trace: [ 240.918137][ T5757] [pid 5755] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5765] mkdir("./file0", 0777 [pid 5763] <... openat resumed>) = 4 [pid 5759] ioctl(4, LOOP_CLR_FD [pid 5755] <... futex resumed>) = 0 [pid 5765] <... mkdir resumed>) = 0 [pid 5763] ioctl(4, LOOP_SET_FD, 3 [pid 5755] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5765] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5755] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5755] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5755] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[84]}, 88) = 84 [pid 5755] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5755] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5755] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5763] <... ioctl resumed>) = 0 [pid 5763] close(3) = 0 [ 240.921115][ T5757] dump_stack_lvl+0x136/0x150 [ 240.925870][ T5757] gfs2_withdraw+0xb33/0x1060 [ 240.930608][ T5757] ? gfs2_consist_inode_i+0x104/0x150 [ 240.936033][ T5757] gfs2_dirent_scan+0x32a/0x3d0 [ 240.940373][ T5763] loop0: detected capacity change from 0 to 32768 [ 240.940919][ T5757] ? gfs2_dirent_prev+0x210/0x210 [ 240.952622][ T5757] ? gfs2_dirent_prev+0x210/0x210 [ 240.957708][ T5757] gfs2_dirent_search+0x47d/0x580 [ 240.962800][ T5757] ? get_first_leaf+0x190/0x190 [ 240.967719][ T5757] ? gfs2_permission+0x256/0x3e0 [pid 5763] mkdir("./file0", 0777 [pid 5761] <... munmap resumed>) = 0 [pid 5763] <... mkdir resumed>) = 0 [pid 5763] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5761] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5761] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5761] close(3) = 0 [pid 5761] mkdir("./file0", 0777 [pid 5755] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5755] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5755] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6605e000 [pid 5755] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5755] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 240.972736][ T5757] gfs2_dir_search+0x8d/0x2d0 [ 240.977476][ T5757] ? gfs2_dir_read+0x14e0/0x14e0 [ 240.982487][ T5757] gfs2_lookupi+0x481/0x640 [ 240.987056][ T5757] ? gfs2_lookup_by_inum+0x100/0x100 [ 240.992494][ T5757] ? __gfs2_lookup+0x83/0x280 [ 240.996572][ T5761] loop5: detected capacity change from 0 to 32768 [ 240.997201][ T5757] ? d_alloc_parallel+0x693/0x1530 [ 241.008775][ T5757] __gfs2_lookup+0x83/0x280 [ 241.013347][ T5757] ? gfs2_lookupi+0x640/0x640 [ 241.018107][ T5757] ? __d_lookup_rcu+0x4e0/0x4e0 [pid 5755] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} => {parent_tid=[85]}, 88) = 85 [pid 5755] rt_sigprocmask(SIG_SETMASK, [], [pid 5761] <... mkdir resumed>) = 0 [pid 5755] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5761] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5755] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 241.023027][ T5757] ? __d_lookup+0x289/0x4c0 [ 241.027600][ T5757] gfs2_atomic_open+0xde/0x250 [ 241.032437][ T5757] ? __gfs2_lookup+0x280/0x280 [ 241.037266][ T5757] lookup_open.isra.0+0xce2/0x1400 [ 241.041321][ T5756] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 241.042420][ T5757] ? link_path_walk.part.0+0xd60/0xd60 [ 241.042476][ T5757] ? lookup_fast+0x14e/0x520 [ 241.058433][ T5756] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 241.061826][ T5757] path_openat+0x969/0x2710 [ 241.061877][ T5757] ? path_lookupat+0x840/0x840 [ 241.061919][ T5757] ? find_held_lock+0x2d/0x110 [ 241.087112][ T5757] do_filp_open+0x1ba/0x410 [ 241.091654][ T5757] ? may_open_dev+0xf0/0xf0 [ 241.096192][ T5757] ? find_held_lock+0x2d/0x110 [ 241.100979][ T5757] ? do_raw_spin_lock+0x124/0x2b0 [ 241.106032][ T5757] ? spin_bug+0x1c0/0x1c0 [ 241.110404][ T5757] ? _raw_spin_unlock+0x28/0x40 [ 241.115300][ T5757] ? alloc_fd+0x2e4/0x750 [ 241.119666][ T5757] do_sys_openat2+0x160/0x1c0 [ 241.124379][ T5757] ? build_open_flags+0x720/0x720 [ 241.129443][ T5757] ? ptrace_notify+0xfe/0x140 [ 241.134159][ T5757] ? lock_downgrade+0x690/0x690 [ 241.139044][ T5757] __x64_sys_openat+0x143/0x1f0 [ 241.143929][ T5757] ? __ia32_sys_open+0x1c0/0x1c0 [ 241.148907][ T5757] ? _raw_spin_unlock_irq+0x23/0x50 [ 241.154150][ T5757] ? lockdep_hardirqs_on+0x7d/0x100 [ 241.159377][ T5757] ? _raw_spin_unlock_irq+0x2e/0x50 [ 241.164630][ T5757] ? ptrace_notify+0xfe/0x140 [ 241.169434][ T5757] do_syscall_64+0x39/0xb0 [ 241.173872][ T5757] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 241.179811][ T5757] RIP: 0033:0x7f4f6dd107f9 [ 241.184254][ T5757] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 241.203891][ T5757] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 241.212328][ T5757] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 241.220336][ T5757] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [ 241.228337][ T5757] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 241.236350][ T5757] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 241.244375][ T5757] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 241.252381][ T5757] [ 241.270347][ T5761] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 241.278100][ T5763] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 241.285596][ T5763] CPU: 1 PID: 5763 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 241.296065][ T5763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 241.306160][ T5763] Call Trace: [ 241.309469][ T5763] [ 241.312416][ T5763] dump_stack_lvl+0x136/0x150 [ 241.317144][ T5763] sysfs_warn_dup+0x80/0xa0 [ 241.321678][ T5763] sysfs_create_dir_ns+0x237/0x290 [ 241.326818][ T5763] ? sysfs_create_mount_point+0xb0/0xb0 [ 241.332391][ T5763] ? spin_bug+0x1c0/0x1c0 [ 241.336750][ T5763] ? do_raw_spin_unlock+0x175/0x230 [ 241.341986][ T5763] kobject_add_internal+0x2c9/0x9c0 [ 241.347213][ T5763] ? kfree+0x11/0x150 [ 241.351222][ T5763] kobject_init_and_add+0x101/0x170 [ 241.356446][ T5763] ? kobject_create_and_add+0xf0/0xf0 [ 241.361846][ T5763] ? lockdep_init_map_type+0x21e/0x810 [ 241.367339][ T5763] ? lockdep_hardirqs_on+0x7d/0x100 [ 241.372567][ T5763] ? lockdep_init_map_type+0x21e/0x810 [ 241.378063][ T5763] gfs2_sys_fs_add+0x1d5/0x450 [ 241.382862][ T5763] ? recover_store+0x170/0x170 [ 241.387650][ T5763] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 241.393404][ T5763] gfs2_fill_super+0x1312/0x2aa0 [ 241.398376][ T5763] ? gfs2_reconfigure+0xf90/0xf90 [ 241.403430][ T5763] ? snprintf+0xbf/0x100 [ 241.407701][ T5763] ? vsprintf+0x30/0x30 [ 241.411883][ T5763] ? wait_for_completion_io_timeout+0x20/0x20 [ 241.417999][ T5763] ? set_blocksize+0x2d8/0x370 [ 241.422801][ T5763] get_tree_bdev+0x43e/0x7d0 [ 241.427421][ T5763] ? gfs2_reconfigure+0xf90/0xf90 [ 241.432470][ T5763] gfs2_get_tree+0x4e/0x270 [ 241.437003][ T5763] vfs_get_tree+0x8d/0x350 [ 241.441469][ T5763] path_mount+0x136e/0x1e70 [ 241.445998][ T5763] ? putname+0x102/0x140 [ 241.450260][ T5763] ? lockdep_hardirqs_on+0x7d/0x100 [ 241.455489][ T5763] ? finish_automount+0xa30/0xa30 [ 241.460549][ T5763] ? putname+0x102/0x140 [ 241.464815][ T5763] __x64_sys_mount+0x283/0x300 [ 241.469609][ T5763] ? copy_mnt_ns+0xb30/0xb30 [ 241.474233][ T5763] ? lockdep_hardirqs_on+0x7d/0x100 [ 241.479461][ T5763] ? _raw_spin_unlock_irq+0x2e/0x50 [ 241.484692][ T5763] ? ptrace_notify+0xfe/0x140 [ 241.489403][ T5763] do_syscall_64+0x39/0xb0 [ 241.493841][ T5763] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 241.499782][ T5763] RIP: 0033:0x7f4f6dd11c5a [ 241.504214][ T5763] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [pid 5755] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5770 attached ./strace-static-x86_64: Process 5769 attached [pid 5757] <... openat resumed>) = -1 EIO (Input/output error) [pid 5755] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5770] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 5769] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5757] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5770] <... rseq resumed>) = 0 [pid 5769] <... rseq resumed>) = 0 [pid 5757] <... futex resumed>) = 0 [pid 5770] set_robust_list(0x7f4f6607e9a0, 24 [pid 5769] set_robust_list(0x7f4f6609f9a0, 24 [pid 5757] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5770] <... set_robust_list resumed>) = 0 [pid 5769] <... set_robust_list resumed>) = 0 [pid 5770] rt_sigprocmask(SIG_SETMASK, [], [pid 5769] rt_sigprocmask(SIG_SETMASK, [], [pid 5770] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5769] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5770] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5769] ioctl(0, VFAT_IOCTL_READDIR_SHORT [pid 5770] <... openat resumed>) = -1 EIO (Input/output error) [pid 5770] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5769] <... ioctl resumed>, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 5770] <... futex resumed>) = 0 [pid 5769] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5770] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5769] <... futex resumed>) = 0 [ 241.523844][ T5763] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 241.532288][ T5763] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 241.540295][ T5763] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 241.548288][ T5763] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 241.556304][ T5763] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 241.564298][ T5763] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 241.572386][ T5763] [pid 5769] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5755] close(3) = 0 [pid 5755] close(4) = -1 EBADF (Bad file descriptor) [pid 5755] close(5) = -1 EBADF (Bad file descriptor) [pid 5755] close(6) = -1 EBADF (Bad file descriptor) [pid 5755] close(7) = -1 EBADF (Bad file descriptor) [pid 5755] close(8) = -1 EBADF (Bad file descriptor) [pid 5755] close(9) = -1 EBADF (Bad file descriptor) [pid 5755] close(10) = -1 EBADF (Bad file descriptor) [pid 5755] close(11) = -1 EBADF (Bad file descriptor) [pid 5755] close(12) = -1 EBADF (Bad file descriptor) [pid 5755] close(13) = -1 EBADF (Bad file descriptor) [pid 5755] close(14) = -1 EBADF (Bad file descriptor) [pid 5755] close(15) = -1 EBADF (Bad file descriptor) [pid 5755] close(16) = -1 EBADF (Bad file descriptor) [pid 5755] close(17) = -1 EBADF (Bad file descriptor) [pid 5755] close(18) = -1 EBADF (Bad file descriptor) [pid 5755] close(19) = -1 EBADF (Bad file descriptor) [pid 5755] close(20) = -1 EBADF (Bad file descriptor) [pid 5755] close(21) = -1 EBADF (Bad file descriptor) [pid 5755] close(22) = -1 EBADF (Bad file descriptor) [pid 5755] close(23) = -1 EBADF (Bad file descriptor) [pid 5755] close(24) = -1 EBADF (Bad file descriptor) [pid 5755] close(25) = -1 EBADF (Bad file descriptor) [ 241.584607][ T5765] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 241.619359][ T5761] CPU: 1 PID: 5761 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 241.629858][ T5761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 241.639964][ T5761] Call Trace: [ 241.643298][ T5761] [ 241.646275][ T5761] dump_stack_lvl+0x136/0x150 [ 241.651014][ T5761] sysfs_warn_dup+0x80/0xa0 [ 241.655548][ T5761] sysfs_create_dir_ns+0x237/0x290 [ 241.660689][ T5761] ? sysfs_create_mount_point+0xb0/0xb0 [ 241.666266][ T5761] ? spin_bug+0x1c0/0x1c0 [ 241.670629][ T5761] ? do_raw_spin_unlock+0x175/0x230 [ 241.675862][ T5761] kobject_add_internal+0x2c9/0x9c0 [ 241.681086][ T5761] ? kfree+0x11/0x150 [ 241.685094][ T5761] kobject_init_and_add+0x101/0x170 [ 241.690332][ T5761] ? kobject_create_and_add+0xf0/0xf0 [ 241.695730][ T5761] ? lockdep_init_map_type+0x21e/0x810 [ 241.701221][ T5761] ? lockdep_hardirqs_on+0x7d/0x100 [ 241.706456][ T5761] ? lockdep_init_map_type+0x21e/0x810 [ 241.711949][ T5761] gfs2_sys_fs_add+0x1d5/0x450 [ 241.716741][ T5761] ? recover_store+0x170/0x170 [ 241.721531][ T5761] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 241.727475][ T5761] gfs2_fill_super+0x1312/0x2aa0 [ 241.732444][ T5761] ? gfs2_reconfigure+0xf90/0xf90 [ 241.737493][ T5761] ? snprintf+0xbf/0x100 [ 241.741767][ T5761] ? vsprintf+0x30/0x30 [ 241.745948][ T5761] ? wait_for_completion_io_timeout+0x20/0x20 [ 241.752077][ T5761] ? set_blocksize+0x2d8/0x370 [ 241.756903][ T5761] get_tree_bdev+0x43e/0x7d0 [ 241.761532][ T5761] ? gfs2_reconfigure+0xf90/0xf90 [ 241.766588][ T5761] gfs2_get_tree+0x4e/0x270 [ 241.771123][ T5761] vfs_get_tree+0x8d/0x350 [ 241.775569][ T5761] path_mount+0x136e/0x1e70 [ 241.780108][ T5761] ? putname+0x102/0x140 [ 241.784381][ T5761] ? lockdep_hardirqs_on+0x7d/0x100 [ 241.789612][ T5761] ? finish_automount+0xa30/0xa30 [ 241.794669][ T5761] ? putname+0x102/0x140 [ 241.798938][ T5761] __x64_sys_mount+0x283/0x300 [ 241.803734][ T5761] ? copy_mnt_ns+0xb30/0xb30 [ 241.808360][ T5761] ? lockdep_hardirqs_on+0x7d/0x100 [ 241.813590][ T5761] ? _raw_spin_unlock_irq+0x2e/0x50 [ 241.818845][ T5761] ? ptrace_notify+0xfe/0x140 [ 241.823575][ T5761] do_syscall_64+0x39/0xb0 [ 241.828021][ T5761] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 241.833967][ T5761] RIP: 0033:0x7f4f6dd11c5a [ 241.838411][ T5761] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 241.858060][ T5761] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 241.866507][ T5761] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 241.874501][ T5761] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [pid 5755] close(26) = -1 EBADF (Bad file descriptor) [ 241.882507][ T5761] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 241.890523][ T5761] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 241.898519][ T5761] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 241.906514][ T5761] [ 241.915767][ T5763] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 241.930087][ T5765] CPU: 0 PID: 5765 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 241.940545][ T5765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 241.950635][ T5765] Call Trace: [ 241.953946][ T5765] [ 241.956917][ T5765] dump_stack_lvl+0x136/0x150 [ 241.961666][ T5765] sysfs_warn_dup+0x80/0xa0 [ 241.966211][ T5765] sysfs_create_dir_ns+0x237/0x290 [ 241.971371][ T5765] ? sysfs_create_mount_point+0xb0/0xb0 [ 241.976985][ T5765] ? spin_bug+0x1c0/0x1c0 [ 241.981373][ T5765] ? do_raw_spin_unlock+0x175/0x230 [pid 5756] <... mount resumed>) = -1 EEXIST (File exists) [pid 5755] close(27 [pid 5754] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5756] ioctl(4, LOOP_CLR_FD [pid 5755] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5754] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5755] close(28 [pid 5754] <... futex resumed>) = 0 [pid 5755] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5754] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5755] close(29 [pid 5754] <... mmap resumed>) = 0x7f4f6607f000 [pid 5755] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5754] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITEwrite to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5755] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5754] <... mprotect resumed>) = 0 [pid 5755] <... write resumed>) = 156 [pid 5754] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5755] exit_group(0 [pid 5754] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5755] <... exit_group resumed>) = ? [pid 5754] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[82]}, 88) = 82 [pid 5754] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5754] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 241.986641][ T5765] kobject_add_internal+0x2c9/0x9c0 [ 241.991886][ T5765] ? kfree+0x11/0x150 [ 241.995919][ T5765] kobject_init_and_add+0x101/0x170 [ 241.996398][ T5763] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 242.001143][ T5765] ? kobject_create_and_add+0xf0/0xf0 [ 242.001183][ T5765] ? lockdep_init_map_type+0x21e/0x810 [ 242.018579][ T5765] ? lockdep_hardirqs_on+0x7d/0x100 [ 242.023837][ T5765] ? lockdep_init_map_type+0x21e/0x810 [ 242.029361][ T5765] gfs2_sys_fs_add+0x1d5/0x450 [pid 5754] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 5754] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5754] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6605e000 [pid 5754] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5754] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 242.034195][ T5765] ? recover_store+0x170/0x170 [ 242.039019][ T5765] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 242.044806][ T5765] gfs2_fill_super+0x1312/0x2aa0 [ 242.049801][ T5765] ? gfs2_reconfigure+0xf90/0xf90 [ 242.054894][ T5765] ? snprintf+0xbf/0x100 [ 242.059193][ T5765] ? vsprintf+0x30/0x30 [ 242.063411][ T5765] ? wait_for_completion_io_timeout+0x20/0x20 [ 242.069540][ T5765] ? set_blocksize+0x2d8/0x370 [ 242.074428][ T5765] get_tree_bdev+0x43e/0x7d0 [ 242.079081][ T5765] ? gfs2_reconfigure+0xf90/0xf90 [pid 5754] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0}./strace-static-x86_64: Process 5775 attached [pid 5775] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 5754] <... clone3 resumed> => {parent_tid=[83]}, 88) = 83 [pid 5775] <... rseq resumed>) = 0 [pid 5754] rt_sigprocmask(SIG_SETMASK, [], [pid 5775] set_robust_list(0x7f4f6607e9a0, 24) = 0 [pid 5754] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5775] rt_sigprocmask(SIG_SETMASK, [], [pid 5754] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 5775] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5754] <... futex resumed>) = 0 [pid 5775] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5754] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5775] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5775] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5754] <... futex resumed>) = 0 [pid 5775] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5754] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 5775] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5754] <... futex resumed>) = 0 [pid 5775] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5754] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5775] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5775] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5754] <... futex resumed>) = 0 [ 242.084177][ T5765] gfs2_get_tree+0x4e/0x270 [ 242.088735][ T5765] vfs_get_tree+0x8d/0x350 [ 242.093207][ T5765] path_mount+0x136e/0x1e70 [ 242.097772][ T5765] ? putname+0x102/0x140 [ 242.102075][ T5765] ? lockdep_hardirqs_on+0x7d/0x100 [ 242.107339][ T5765] ? finish_automount+0xa30/0xa30 [ 242.112434][ T5765] ? putname+0x102/0x140 [ 242.116735][ T5765] __x64_sys_mount+0x283/0x300 [ 242.121563][ T5765] ? copy_mnt_ns+0xb30/0xb30 [ 242.126220][ T5765] ? lockdep_hardirqs_on+0x7d/0x100 [ 242.131476][ T5765] ? _raw_spin_unlock_irq+0x2e/0x50 [pid 5775] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 5774 attached [pid 5770] <... futex resumed>) = ? [pid 5769] <... futex resumed>) = ? [pid 5757] <... futex resumed>) = ? [pid 5774] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5770] +++ exited with 0 +++ [pid 5769] +++ exited with 0 +++ [pid 5757] +++ exited with 0 +++ [pid 5755] +++ exited with 0 +++ [pid 5774] <... rseq resumed>) = 0 [ 242.136736][ T5765] ? ptrace_notify+0xfe/0x140 [ 242.141483][ T5765] do_syscall_64+0x39/0xb0 [ 242.141924][ T5761] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 242.145915][ T5765] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 242.145974][ T5765] RIP: 0033:0x7f4f6dd11c5a [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=82, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=73 /* 0.73 s */} --- [pid 5774] set_robust_list(0x7f4f6609f9a0, 24) = 0 [pid 5774] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5774] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 5774] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] umount2("./29", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5774] <... futex resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5774] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5033] openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5033] umount2("./29/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./29/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./29/cgroup.cpu") = 0 [pid 5033] umount2("./29/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./29/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./29/binderfs") = 0 [ 242.170203][ T5765] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 242.189872][ T5765] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 242.198349][ T5765] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 242.206376][ T5765] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 242.214403][ T5765] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 242.222433][ T5765] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [pid 5033] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5763] <... mount resumed>) = -1 EEXIST (File exists) [pid 5759] <... ioctl resumed>) = 0 [pid 5758] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5763] ioctl(4, LOOP_CLR_FD [pid 5759] close(4 [pid 5758] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5759] <... close resumed>) = 0 [pid 5759] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5758] <... futex resumed>) = 0 [pid 5765] <... mount resumed>) = -1 EEXIST (File exists) [pid 5761] <... mount resumed>) = -1 EEXIST (File exists) [pid 5759] <... futex resumed>) = 0 [ 242.230464][ T5765] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 242.232430][ T5761] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 242.238465][ T5765] [ 242.252219][ T5765] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 242.268573][ T5765] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 5765] ioctl(4, LOOP_CLR_FD [pid 5759] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5758] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5761] ioctl(4, LOOP_CLR_FD [pid 5758] <... mmap resumed>) = 0x7f4f6607f000 [pid 5758] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5758] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5758] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5776 attached [pid 5776] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5758] <... clone3 resumed> => {parent_tid=[78]}, 88) = 78 [pid 5776] <... rseq resumed>) = 0 [pid 5758] rt_sigprocmask(SIG_SETMASK, [], [pid 5776] set_robust_list(0x7f4f6609f9a0, 24 [pid 5758] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5776] <... set_robust_list resumed>) = 0 [pid 5758] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5776] rt_sigprocmask(SIG_SETMASK, [], [pid 5758] <... futex resumed>) = 0 [pid 5776] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5758] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5776] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 5776] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5758] <... futex resumed>) = 0 [pid 5776] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5758] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5759] <... futex resumed>) = 0 [pid 5758] <... futex resumed>) = 1 [pid 5759] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5758] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5759] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5759] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5758] <... futex resumed>) = 0 [pid 5759] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5758] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5759] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5758] <... futex resumed>) = 0 [pid 5759] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5758] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5759] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5759] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5758] <... futex resumed>) = 0 [pid 5759] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5758] close(3) = 0 [pid 5758] close(4) = -1 EBADF (Bad file descriptor) [pid 5758] close(5) = -1 EBADF (Bad file descriptor) [pid 5758] close(6) = -1 EBADF (Bad file descriptor) [pid 5758] close(7) = -1 EBADF (Bad file descriptor) [pid 5758] close(8) = -1 EBADF (Bad file descriptor) [pid 5758] close(9) = -1 EBADF (Bad file descriptor) [pid 5758] close(10) = -1 EBADF (Bad file descriptor) [pid 5758] close(11) = -1 EBADF (Bad file descriptor) [pid 5760] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5758] close(12 [pid 5760] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5758] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5760] <... futex resumed>) = 0 [pid 5758] close(13 [pid 5760] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5758] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5760] <... mmap resumed>) = 0x7f4f6607f000 [pid 5758] close(14 [pid 5760] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5758] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5760] <... mprotect resumed>) = 0 [pid 5758] close(15 [pid 5760] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5758] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5760] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5758] close(16) = -1 EBADF (Bad file descriptor) [pid 5758] close(17) = -1 EBADF (Bad file descriptor) [pid 5758] close(18 [pid 5760] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5758] <... close resumed>) = -1 EBADF (Bad file descriptor) ./strace-static-x86_64: Process 5778 attached [pid 5758] close(19 [pid 5778] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5760] <... clone3 resumed> => {parent_tid=[87]}, 88) = 87 [pid 5758] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5778] <... rseq resumed>) = 0 [pid 5760] rt_sigprocmask(SIG_SETMASK, [], [pid 5758] close(20 [pid 5778] set_robust_list(0x7f4f6609f9a0, 24 [pid 5760] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5758] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5778] <... set_robust_list resumed>) = 0 [pid 5760] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5758] close(21 [pid 5778] rt_sigprocmask(SIG_SETMASK, [], [pid 5760] <... futex resumed>) = 0 [pid 5758] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5778] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5760] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5758] close(22 [pid 5778] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5758] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5778] <... openat resumed>) = 3 [pid 5758] close(23 [pid 5778] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5758] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5778] <... futex resumed>) = 1 [pid 5760] <... futex resumed>) = 0 [pid 5758] close(24 [pid 5778] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5760] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5758] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5778] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5760] <... futex resumed>) = 0 [pid 5758] close(25 [pid 5778] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5760] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5758] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5778] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5758] close(26 [pid 5778] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5758] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5778] <... futex resumed>) = 1 [pid 5760] <... futex resumed>) = 0 [pid 5758] close(27 [pid 5778] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5760] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5758] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5758] close(28 [pid 5778] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5760] <... futex resumed>) = 0 [pid 5758] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5778] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5760] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5758] close(29) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5758] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5758] exit_group(0 [pid 5776] <... futex resumed>) = ? [pid 5759] <... futex resumed>) = ? [pid 5758] <... exit_group resumed>) = ? [pid 5776] +++ exited with 0 +++ [pid 5759] +++ exited with 0 +++ [pid 5758] +++ exited with 0 +++ [pid 5778] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=76, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=66 /* 0.66 s */} --- [pid 5030] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5030] umount2("./27", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5778] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] getdents64(3, [pid 5778] <... futex resumed>) = 1 [pid 5760] <... futex resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5778] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5030] umount2("./27/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./27/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./27/cgroup.cpu") = 0 [pid 5030] umount2("./27/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./27/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./27/binderfs") = 0 [pid 5030] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./27/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./27/file0") = 0 [pid 5756] <... ioctl resumed>) = 0 [pid 5030] umount2("./27/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./27/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./27/cgroup") = 0 [pid 5030] umount2("./27/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./27/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./27/cgroup.net") = 0 [pid 5756] close(4 [pid 5030] getdents64(3, [pid 5762] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5756] <... close resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5762] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5756] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5754] close(3 [pid 5030] close(3 [pid 5762] <... futex resumed>) = 0 [pid 5756] <... futex resumed>) = 0 [pid 5754] <... close resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5762] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5756] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5754] close(4 [pid 5030] rmdir("./27" [pid 5762] <... mmap resumed>) = 0x7f4f6607f000 [pid 5754] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] <... rmdir resumed>) = 0 [pid 5762] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5754] close(5 [pid 5030] mkdir("./28", 0777 [pid 5762] <... mprotect resumed>) = 0 [pid 5754] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] <... mkdir resumed>) = 0 [pid 5762] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5754] close(6 [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5762] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5754] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] <... openat resumed>) = 3 [pid 5762] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5754] close(7 [pid 5030] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 5780 attached [pid 5754] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5780] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5762] <... clone3 resumed> => {parent_tid=[89]}, 88) = 89 [pid 5754] close(8 [pid 5030] close(3 [pid 5780] <... rseq resumed>) = 0 [pid 5762] rt_sigprocmask(SIG_SETMASK, [], [pid 5754] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] <... close resumed>) = 0 [pid 5780] set_robust_list(0x7f4f6609f9a0, 24 [pid 5762] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5754] close(9 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5781 attached [pid 5780] <... set_robust_list resumed>) = 0 [pid 5762] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5754] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5781] set_robust_list(0x55555654e6a0, 24 [pid 5780] rt_sigprocmask(SIG_SETMASK, [], [pid 5762] <... futex resumed>) = 0 [pid 5754] close(10 [pid 5031] kill(-80, SIGKILL [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 79 [pid 5781] <... set_robust_list resumed>) = 0 [pid 5780] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5775] <... futex resumed>) = ? [pid 5774] <... futex resumed>) = ? [pid 5762] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5756] <... futex resumed>) = ? [pid 5754] <... close resumed>) = ? [pid 5031] <... kill resumed>) = 0 [pid 5781] chdir("./28" [pid 5780] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5775] +++ killed by SIGKILL +++ [pid 5774] +++ killed by SIGKILL +++ [pid 5756] +++ killed by SIGKILL +++ [pid 5754] +++ killed by SIGKILL +++ [pid 5031] kill(80, SIGKILL [pid 5781] <... chdir resumed>) = 0 [pid 5780] <... openat resumed>) = 3 [pid 5031] <... kill resumed>) = 0 [pid 5781] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5780] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=80, si_uid=0, si_status=SIGKILL, si_utime=4 /* 0.04 s */, si_stime=60 /* 0.60 s */} --- [pid 5781] <... prctl resumed>) = 0 [pid 5780] <... futex resumed>) = 1 [pid 5762] <... futex resumed>) = 0 [pid 5781] setpgid(0, 0 [pid 5780] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5762] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5781] <... setpgid resumed>) = 0 [pid 5780] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5762] <... futex resumed>) = 0 [pid 5781] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 5780] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5762] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5031] umount2("./27", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5781] <... symlink resumed>) = 0 [pid 5780] <... futex resumed>) = 0 [pid 5762] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5781] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu" [pid 5780] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5762] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5781] <... symlink resumed>) = 0 [pid 5780] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5762] <... futex resumed>) = 0 [pid 5781] symlink("/syzcgroup/net/syz3", "./cgroup.net" [pid 5780] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5762] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5031] <... openat resumed>) = 3 [pid 5781] <... symlink resumed>) = 0 [pid 5780] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5031] newfstatat(3, "", [pid 5781] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5780] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5781] <... openat resumed>) = 3 [pid 5780] <... futex resumed>) = 1 [pid 5762] <... futex resumed>) = 0 [pid 5031] getdents64(3, [pid 5781] write(3, "1000", 4 [pid 5780] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5031] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5781] <... write resumed>) = 4 [pid 5031] umount2("./27/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5781] close(3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5781] <... close resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./27/cgroup.cpu", [pid 5781] symlink("/dev/binderfs", "./binderfs" [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5781] <... symlink resumed>) = 0 [pid 5031] unlink("./27/cgroup.cpu" [pid 5781] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5781] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5031] umount2("./27/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5781] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5781] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5031] newfstatat(AT_FDCWD, "./27/binderfs", [pid 5781] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5781] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5031] unlink("./27/binderfs" [pid 5781] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5764] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5764] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5764] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 ./strace-static-x86_64: Process 5782 attached [pid 5031] <... unlink resumed>) = 0 [pid 5764] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5782] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5781] <... clone3 resumed> => {parent_tid=[80]}, 88) = 80 [pid 5764] <... mprotect resumed>) = 0 [pid 5782] <... rseq resumed>) = 0 [pid 5781] rt_sigprocmask(SIG_SETMASK, [], [pid 5764] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5782] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5781] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5764] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5782] <... set_robust_list resumed>) = 0 [pid 5781] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5764] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5031] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5782] rt_sigprocmask(SIG_SETMASK, [], [pid 5781] <... futex resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 5783 attached [pid 5782] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5781] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5031] newfstatat(AT_FDCWD, "./27/file0", [pid 5783] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5782] memfd_create("syzkaller", 0 [pid 5764] <... clone3 resumed> => {parent_tid=[83]}, 88) = 83 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5783] <... rseq resumed>) = 0 [pid 5782] <... memfd_create resumed>) = 3 [pid 5764] rt_sigprocmask(SIG_SETMASK, [], [pid 5031] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5783] set_robust_list(0x7f4f6609f9a0, 24 [pid 5782] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5764] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5783] <... set_robust_list resumed>) = 0 [pid 5782] <... mmap resumed>) = 0x7f4f650a0000 [pid 5764] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5783] rt_sigprocmask(SIG_SETMASK, [], [pid 5765] <... ioctl resumed>) = 0 [pid 5764] <... futex resumed>) = 0 [pid 5783] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5764] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5031] <... openat resumed>) = 4 [pid 5783] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 5031] newfstatat(4, "", [pid 5783] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5764] <... futex resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5783] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5764] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] getdents64(4, [pid 5783] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5764] <... futex resumed>) = 0 [pid 5783] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5764] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5783] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5031] getdents64(4, [pid 5783] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5764] <... futex resumed>) = 0 [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5783] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5765] close(4 [pid 5764] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] close(4 [pid 5783] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5765] <... close resumed>) = 0 [pid 5764] <... futex resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5783] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5765] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5764] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5031] rmdir("./27/file0" [pid 5783] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5765] <... futex resumed>) = 0 [pid 5783] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] <... rmdir resumed>) = 0 [pid 5783] <... futex resumed>) = 1 [pid 5765] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5764] <... futex resumed>) = 0 [pid 5033] <... umount2 resumed>) = 0 [pid 5783] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5764] close(3 [pid 5031] umount2("./27/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5764] <... close resumed>) = 0 [pid 5033] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5764] close(4 [pid 5031] newfstatat(AT_FDCWD, "./27/cgroup", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5764] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5764] close(5 [pid 5033] newfstatat(AT_FDCWD, "./29/file0", [pid 5031] unlink("./27/cgroup" [pid 5764] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5764] close(6 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5764] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./27/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5764] close(7 [pid 5763] <... ioctl resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5764] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5763] close(4 [pid 5033] openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] newfstatat(AT_FDCWD, "./27/cgroup.net", [pid 5764] close(8 [pid 5033] <... openat resumed>) = 4 [pid 5764] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5763] <... close resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5764] close(9 [pid 5763] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] unlink("./27/cgroup.net" [pid 5764] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5763] <... futex resumed>) = 0 [pid 5762] close(3 [pid 5033] getdents64(4, [pid 5764] close(10 [pid 5763] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5762] <... close resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5764] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(3, [pid 5762] close(4 [pid 5764] close(11 [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] getdents64(4, [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5764] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5762] close(5 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5031] close(3 [pid 5764] close(12 [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] close(4 [pid 5031] <... close resumed>) = 0 [pid 5764] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5762] close(6 [pid 5033] <... close resumed>) = 0 [pid 5031] rmdir("./27" [pid 5764] close(13 [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] rmdir("./29/file0" [pid 5764] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5762] close(7 [pid 5031] <... rmdir resumed>) = 0 [pid 5764] close(14 [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... rmdir resumed>) = 0 [pid 5031] mkdir("./28", 0777 [pid 5764] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5762] close(8 [pid 5033] umount2("./29/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5764] close(15 [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... mkdir resumed>) = 0 [pid 5764] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5762] close(9 [pid 5033] newfstatat(AT_FDCWD, "./29/cgroup", [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5764] close(16 [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5764] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5762] close(10 [pid 5031] <... openat resumed>) = 3 [pid 5764] close(17 [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] unlink("./29/cgroup" [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5764] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5762] close(11 [pid 5764] close(18) = -1 EBADF (Bad file descriptor) [pid 5033] <... unlink resumed>) = 0 [pid 5764] close(19 [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] umount2("./29/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5764] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5762] close(12 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] close(3 [pid 5764] close(20) = -1 EBADF (Bad file descriptor) [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(AT_FDCWD, "./29/cgroup.net", [pid 5031] <... close resumed>) = 0 [pid 5764] close(21) = -1 EBADF (Bad file descriptor) [pid 5764] close(22) = -1 EBADF (Bad file descriptor) [pid 5764] close(23) = -1 EBADF (Bad file descriptor) [pid 5764] close(24) = -1 EBADF (Bad file descriptor) [pid 5764] close(25) = -1 EBADF (Bad file descriptor) [pid 5764] close(26) = -1 EBADF (Bad file descriptor) [pid 5764] close(27 [pid 5762] close(13 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5764] <... close resumed>) = -1 EBADF (Bad file descriptor) ./strace-static-x86_64: Process 5784 attached [pid 5764] close(28 [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] unlink("./29/cgroup.net" [pid 5764] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5764] close(29) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5764] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5762] close(14 [pid 5764] <... write resumed>) = 156 [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... unlink resumed>) = 0 [pid 5764] exit_group(0 [pid 5762] close(15 [pid 5033] getdents64(3, [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 84 [pid 5784] set_robust_list(0x55555654e6a0, 24 [pid 5783] <... futex resumed>) = ? [pid 5765] <... futex resumed>) = ? [pid 5764] <... exit_group resumed>) = ? [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5784] <... set_robust_list resumed>) = 0 [pid 5783] +++ exited with 0 +++ [pid 5765] +++ exited with 0 +++ [pid 5764] +++ exited with 0 +++ [pid 5762] close(16) = -1 EBADF (Bad file descriptor) [pid 5762] close(17) = -1 EBADF (Bad file descriptor) [pid 5762] close(18) = -1 EBADF (Bad file descriptor) [pid 5762] close(19) = -1 EBADF (Bad file descriptor) [pid 5762] close(20) = -1 EBADF (Bad file descriptor) [pid 5762] close(21 [pid 5033] close(3 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=81, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=60 /* 0.60 s */} --- [pid 5784] chdir("./28" [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... close resumed>) = 0 [pid 5784] <... chdir resumed>) = 0 [pid 5762] close(22) = -1 EBADF (Bad file descriptor) [pid 5033] rmdir("./29" [pid 5784] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5762] close(23 [pid 5784] <... prctl resumed>) = 0 [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... rmdir resumed>) = 0 [pid 5032] umount2("./28", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5784] setpgid(0, 0 [pid 5762] close(24 [pid 5033] mkdir("./30", 0777 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5784] <... setpgid resumed>) = 0 [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5784] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 5762] close(25 [pid 5033] <... mkdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5784] <... symlink resumed>) = 0 [pid 5762] close(26 [pid 5032] newfstatat(3, "", [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5784] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5784] <... symlink resumed>) = 0 [pid 5762] close(27 [pid 5032] getdents64(3, [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5784] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5762] close(28) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./28/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOWwrite to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5784] <... symlink resumed>) = 0 [pid 5762] close(29 [pid 5033] close(3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5762] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5784] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] <... close resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./28/cgroup.cpu", [pid 5762] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5784] <... openat resumed>) = 3 [pid 5762] <... write resumed>) = 156 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 5785 attached [pid 5784] write(3, "1000", 4 [pid 5762] exit_group(0 [pid 5032] unlink("./28/cgroup.cpu" [pid 5785] set_robust_list(0x55555654e6a0, 24 [pid 5784] <... write resumed>) = 4 [pid 5780] <... futex resumed>) = ? [pid 5763] <... futex resumed>) = ? [pid 5762] <... exit_group resumed>) = ? [pid 5761] <... ioctl resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 86 [pid 5032] <... unlink resumed>) = 0 [pid 5785] <... set_robust_list resumed>) = 0 [pid 5784] close(3 [pid 5780] +++ exited with 0 +++ [pid 5763] +++ exited with 0 +++ [pid 5762] +++ exited with 0 +++ [pid 5032] umount2("./28/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=87, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=60 /* 0.60 s */} --- [pid 5785] chdir("./30" [pid 5784] <... close resumed>) = 0 [pid 5029] umount2("./27", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5785] <... chdir resumed>) = 0 [pid 5784] symlink("/dev/binderfs", "./binderfs" [pid 5761] close(4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5785] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5784] <... symlink resumed>) = 0 [pid 5029] getdents64(3, [pid 5785] <... prctl resumed>) = 0 [pid 5784] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5761] <... close resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./28/binderfs", [pid 5029] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5785] setpgid(0, 0 [pid 5784] <... futex resumed>) = 0 [pid 5761] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] umount2("./27/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5784] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5029] newfstatat(AT_FDCWD, "./27/cgroup.cpu", [pid 5785] <... setpgid resumed>) = 0 [pid 5761] <... futex resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./27/cgroup.cpu" [pid 5784] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5029] <... unlink resumed>) = 0 [pid 5785] symlink("/syzcgroup/unified/syz2", "./cgroup" [pid 5784] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5761] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5760] close(3 [pid 5032] unlink("./28/binderfs" [pid 5029] umount2("./27/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5760] <... close resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5784] <... mprotect resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./27/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5760] close(4 [pid 5029] unlink("./27/binderfs" [pid 5785] <... symlink resumed>) = 0 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... unlink resumed>) = 0 [pid 5785] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu" [pid 5784] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5760] close(5 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5785] <... symlink resumed>) = 0 [pid 5784] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5785] symlink("/syzcgroup/net/syz2", "./cgroup.net" [pid 5784] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5760] close(6 [pid 5032] newfstatat(AT_FDCWD, "./28/file0", [pid 5029] newfstatat(AT_FDCWD, "./27/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 5786 attached [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5785] <... symlink resumed>) = 0 [pid 5760] close(7 [pid 5029] openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5786] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5785] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5784] <... clone3 resumed> => {parent_tid=[85]}, 88) = 85 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 4 [pid 5786] <... rseq resumed>) = 0 [pid 5785] <... openat resumed>) = 3 [pid 5784] rt_sigprocmask(SIG_SETMASK, [], [pid 5760] close(8 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(4, "", [pid 5786] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5785] write(3, "1000", 4 [pid 5784] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, [pid 5786] <... set_robust_list resumed>) = 0 [pid 5785] <... write resumed>) = 4 [pid 5784] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5760] close(9 [pid 5032] <... openat resumed>) = 4 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 5786] rt_sigprocmask(SIG_SETMASK, [], [pid 5785] close(3 [pid 5784] <... futex resumed>) = 0 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] newfstatat(4, "", [pid 5029] <... close resumed>) = 0 [pid 5786] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5785] <... close resumed>) = 0 [pid 5784] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5760] close(10 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] rmdir("./27/file0") = 0 [pid 5786] memfd_create("syzkaller", 0 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] symlink("/dev/binderfs", "./binderfs" [pid 5029] umount2("./27/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5786] <... memfd_create resumed>) = 3 [pid 5785] <... symlink resumed>) = 0 [pid 5760] close(11 [pid 5032] getdents64(4, [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5786] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] newfstatat(AT_FDCWD, "./27/cgroup", [pid 5785] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5786] <... mmap resumed>) = 0x7f4f650a0000 [pid 5785] <... futex resumed>) = 0 [pid 5760] close(12 [pid 5032] getdents64(4, [pid 5029] unlink("./27/cgroup" [pid 5785] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5029] umount2("./27/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./27/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./27/cgroup.net") = 0 [pid 5029] getdents64(3, [pid 5760] close(13 [pid 5032] close(4 [pid 5029] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5785] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] close(3) = 0 [pid 5785] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5760] close(14 [pid 5032] <... close resumed>) = 0 [pid 5029] rmdir("./27" [pid 5785] <... mprotect resumed>) = 0 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] rmdir("./28/file0" [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./28", 0777 [pid 5785] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5760] close(15 [pid 5032] <... rmdir resumed>) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5787 attached [pid 5785] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./28/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5787] set_robust_list(0x55555654e6a0, 24 [pid 5785] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5760] close(16 [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 90 ./strace-static-x86_64: Process 5788 attached [pid 5787] <... set_robust_list resumed>) = 0 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5788] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5787] chdir("./28" [pid 5785] <... clone3 resumed> => {parent_tid=[87]}, 88) = 87 [pid 5788] <... rseq resumed>) = 0 [pid 5787] <... chdir resumed>) = 0 [pid 5785] rt_sigprocmask(SIG_SETMASK, [], [pid 5760] close(17 [pid 5032] newfstatat(AT_FDCWD, "./28/cgroup", [pid 5788] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5787] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5785] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5788] <... set_robust_list resumed>) = 0 [pid 5787] <... prctl resumed>) = 0 [pid 5785] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5760] close(18 [pid 5788] rt_sigprocmask(SIG_SETMASK, [], [pid 5787] setpgid(0, 0 [pid 5785] <... futex resumed>) = 0 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] unlink("./28/cgroup" [pid 5788] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5787] <... setpgid resumed>) = 0 [pid 5785] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5760] close(19 [pid 5787] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 5032] <... unlink resumed>) = 0 [pid 5788] memfd_create("syzkaller", 0 [pid 5787] <... symlink resumed>) = 0 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0 [pid 5787] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0 [pid 5787] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5787] write(3, "1000", 4) = 4 [pid 5787] close(3) = 0 [pid 5787] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5787] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5787] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5787] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5760] close(20 [pid 5032] umount2("./28/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5788] <... memfd_create resumed>) = 3 [pid 5787] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5788] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5787] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5760] close(21 [pid 5032] newfstatat(AT_FDCWD, "./28/cgroup.net", [pid 5788] <... mmap resumed>) = 0x7f4f650a0000 [pid 5787] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 5789 attached [pid 5760] close(22 [pid 5789] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5787] <... clone3 resumed> => {parent_tid=[91]}, 88) = 91 [pid 5032] unlink("./28/cgroup.net" [pid 5789] <... rseq resumed>) = 0 [pid 5787] rt_sigprocmask(SIG_SETMASK, [], [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5789] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5787] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5789] <... set_robust_list resumed>) = 0 [pid 5787] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5760] close(23 [pid 5789] rt_sigprocmask(SIG_SETMASK, [], [pid 5787] <... futex resumed>) = 0 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5789] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5787] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5760] close(24 [pid 5789] memfd_create("syzkaller", 0 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... unlink resumed>) = 0 [pid 5789] <... memfd_create resumed>) = 3 [pid 5760] close(25 [pid 5032] getdents64(3, [pid 5789] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5789] <... mmap resumed>) = 0x7f4f650a0000 [pid 5760] close(26 [pid 5032] close(3 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... close resumed>) = 0 [pid 5760] close(27 [pid 5032] rmdir("./28" [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5760] close(28 [pid 5032] <... rmdir resumed>) = 0 [pid 5760] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] mkdir("./29", 0777 [pid 5760] close(29) = -1 EBADF (Bad file descriptor) [pid 5032] <... mkdir resumed>) = 0 [pid 5760] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWRwrite to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5760] <... write resumed>) = 156 [pid 5032] <... openat resumed>) = 3 [pid 5760] exit_group(0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5778] <... futex resumed>) = ? [pid 5761] <... futex resumed>) = ? [pid 5760] <... exit_group resumed>) = ? [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5778] +++ exited with 0 +++ [pid 5032] close(3 [pid 5761] +++ exited with 0 +++ [pid 5760] +++ exited with 0 +++ [pid 5032] <... close resumed>) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=85, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=70 /* 0.70 s */} --- [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] umount2("./28", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5034] umount2("./28/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./28/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 5790 attached [pid 5034] unlink("./28/cgroup.cpu" [pid 5790] set_robust_list(0x55555654e6a0, 24 [pid 5034] <... unlink resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 84 [pid 5034] umount2("./28/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./28/binderfs", [pid 5790] <... set_robust_list resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./28/binderfs" [pid 5790] chdir("./29" [pid 5034] <... unlink resumed>) = 0 [pid 5034] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5790] <... chdir resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./28/file0", [pid 5790] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5790] <... prctl resumed>) = 0 [pid 5034] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5790] setpgid(0, 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5790] <... setpgid resumed>) = 0 [pid 5034] newfstatat(4, "", [pid 5790] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5790] <... symlink resumed>) = 0 [pid 5034] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./28/file0") = 0 [pid 5034] umount2("./28/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5790] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 5034] newfstatat(AT_FDCWD, "./28/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./28/cgroup" [pid 5790] <... symlink resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5790] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 5034] umount2("./28/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5790] <... symlink resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5790] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] newfstatat(AT_FDCWD, "./28/cgroup.net", [pid 5790] <... openat resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5790] write(3, "1000", 4 [pid 5034] unlink("./28/cgroup.net" [pid 5790] <... write resumed>) = 4 [pid 5034] <... unlink resumed>) = 0 [pid 5790] close(3 [pid 5034] getdents64(3, [pid 5790] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5790] symlink("/dev/binderfs", "./binderfs" [pid 5034] close(3) = 0 [pid 5034] rmdir("./28" [pid 5790] <... symlink resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5790] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] mkdir("./29", 0777 [pid 5790] <... futex resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5790] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5790] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5034] <... openat resumed>) = 3 [pid 5790] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3 [pid 5790] <... mprotect resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5791 attached [pid 5790] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5791] set_robust_list(0x55555654e6a0, 24 [pid 5790] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5791] <... set_robust_list resumed>) = 0 [pid 5790] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5792 attached [pid 5791] chdir("./29" [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 88 [pid 5792] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053) = 0 [pid 5792] set_robust_list(0x7f4f6d4c09a0, 24) = 0 [pid 5792] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5792] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5791] <... chdir resumed>) = 0 [pid 5790] <... clone3 resumed> => {parent_tid=[85]}, 88) = 85 [pid 5791] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5790] rt_sigprocmask(SIG_SETMASK, [], [pid 5791] <... prctl resumed>) = 0 [pid 5791] setpgid(0, 0 [pid 5790] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5791] <... setpgid resumed>) = 0 [pid 5790] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5791] symlink("/syzcgroup/unified/syz5", "./cgroup" [pid 5792] <... futex resumed>) = 0 [pid 5790] <... futex resumed>) = 1 [pid 5791] <... symlink resumed>) = 0 [pid 5790] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5792] memfd_create("syzkaller", 0 [pid 5791] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu") = 0 [pid 5792] <... memfd_create resumed>) = 3 [pid 5791] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 5792] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5791] <... symlink resumed>) = 0 [pid 5792] <... mmap resumed>) = 0x7f4f650a0000 [pid 5791] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5791] write(3, "1000", 4 [pid 5782] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5791] <... write resumed>) = 4 [pid 5791] close(3) = 0 [pid 5791] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5791] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5791] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5791] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5791] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5791] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5793 attached [pid 5793] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5791] <... clone3 resumed> => {parent_tid=[89]}, 88) = 89 [pid 5793] <... rseq resumed>) = 0 [pid 5793] set_robust_list(0x7f4f6d4c09a0, 24) = 0 [pid 5791] rt_sigprocmask(SIG_SETMASK, [], [pid 5793] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5793] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5791] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5791] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5793] <... futex resumed>) = 0 [pid 5791] <... futex resumed>) = 1 [pid 5793] memfd_create("syzkaller", 0 [pid 5791] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5793] <... memfd_create resumed>) = 3 [pid 5793] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5786] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5788] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5789] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5782] <... write resumed>) = 16777216 [pid 5792] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5782] munmap(0x7f4f650a0000, 16777216 [pid 5793] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5782] <... munmap resumed>) = 0 [pid 5782] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5782] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5782] close(3) = 0 [pid 5782] mkdir("./file0", 0777) = 0 [ 244.459308][ T5782] loop3: detected capacity change from 0 to 32768 [ 244.531282][ T5782] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 244.552598][ T5782] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 244.607930][ T5782] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 244.667053][ T917] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 244.673908][ T917] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [pid 5782] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5786] <... write resumed>) = 16777216 [pid 5786] munmap(0x7f4f650a0000, 16777216 [pid 5788] <... write resumed>) = 16777216 [ 244.895212][ T917] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 221ms [ 244.931839][ T917] gfs2: fsid=syz:syz.0: jid=0: Done [pid 5788] munmap(0x7f4f650a0000, 16777216 [pid 5782] <... mount resumed>) = 0 [pid 5782] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5782] chdir("./file0") = 0 [pid 5782] ioctl(4, LOOP_CLR_FD) = 0 [pid 5782] close(4) = 0 [ 244.948514][ T5782] gfs2: fsid=syz:syz.0: first mount done, others may mount [pid 5782] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5781] <... futex resumed>) = 0 [pid 5782] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5781] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5786] <... munmap resumed>) = 0 [pid 5781] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5786] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5792] <... write resumed>) = 16777216 [pid 5792] munmap(0x7f4f650a0000, 16777216 [ 245.027373][ T5782] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 245.056217][ T5782] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 245.056217][ T5782] inode = 12 2341 [ 245.056217][ T5782] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [pid 5786] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5788] <... munmap resumed>) = 0 [pid 5786] close(3 [pid 5788] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5786] <... close resumed>) = 0 [pid 5786] mkdir("./file0", 0777 [pid 5788] <... openat resumed>) = 4 [pid 5786] <... mkdir resumed>) = 0 [pid 5788] ioctl(4, LOOP_SET_FD, 3 [ 245.086405][ T5786] loop4: detected capacity change from 0 to 32768 [ 245.108412][ T5782] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 245.122849][ T5788] loop2: detected capacity change from 0 to 32768 [pid 5786] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5788] <... ioctl resumed>) = 0 [pid 5788] close(3) = 0 [pid 5788] mkdir("./file0", 0777) = 0 [ 245.141061][ T5782] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5782 [syz-executor676] __gfs2_lookup+0x83/0x280 [pid 5788] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5781] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 245.184502][ T5782] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 245.194814][ T5786] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 245.202934][ T5786] CPU: 0 PID: 5786 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 245.214536][ T5786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 245.224645][ T5786] Call Trace: [ 245.227963][ T5786] [ 245.230930][ T5786] dump_stack_lvl+0x136/0x150 [ 245.235681][ T5786] sysfs_warn_dup+0x80/0xa0 [ 245.240246][ T5786] sysfs_create_dir_ns+0x237/0x290 [ 245.245414][ T5786] ? sysfs_create_mount_point+0xb0/0xb0 [ 245.251021][ T5786] ? spin_bug+0x1c0/0x1c0 [ 245.255413][ T5786] ? do_raw_spin_unlock+0x175/0x230 [ 245.260673][ T5786] kobject_add_internal+0x2c9/0x9c0 [ 245.265931][ T5786] ? kfree+0x11/0x150 [ 245.269981][ T5786] kobject_init_and_add+0x101/0x170 [ 245.275318][ T5786] ? kobject_create_and_add+0xf0/0xf0 [ 245.280745][ T5786] ? lockdep_init_map_type+0x21e/0x810 [ 245.286269][ T5786] ? lockdep_hardirqs_on+0x7d/0x100 [ 245.291528][ T5786] ? lockdep_init_map_type+0x21e/0x810 [ 245.297044][ T5786] gfs2_sys_fs_add+0x1d5/0x450 [ 245.301858][ T5786] ? recover_store+0x170/0x170 [ 245.306761][ T5786] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 245.312547][ T5786] gfs2_fill_super+0x1312/0x2aa0 [ 245.317558][ T5786] ? gfs2_reconfigure+0xf90/0xf90 [ 245.322648][ T5786] ? snprintf+0xbf/0x100 [ 245.326948][ T5786] ? vsprintf+0x30/0x30 [ 245.331180][ T5786] ? wait_for_completion_io_timeout+0x20/0x20 [ 245.337335][ T5786] ? set_blocksize+0x2d8/0x370 [ 245.342185][ T5786] get_tree_bdev+0x43e/0x7d0 [ 245.346834][ T5786] ? gfs2_reconfigure+0xf90/0xf90 [ 245.351915][ T5786] gfs2_get_tree+0x4e/0x270 [ 245.356484][ T5786] vfs_get_tree+0x8d/0x350 [ 245.360955][ T5786] path_mount+0x136e/0x1e70 [ 245.365518][ T5786] ? putname+0x102/0x140 [ 245.369818][ T5786] ? lockdep_hardirqs_on+0x7d/0x100 [ 245.375076][ T5786] ? finish_automount+0xa30/0xa30 [ 245.380165][ T5786] ? putname+0x102/0x140 [ 245.384465][ T5786] __x64_sys_mount+0x283/0x300 [ 245.389294][ T5786] ? copy_mnt_ns+0xb30/0xb30 [ 245.393946][ T5786] ? lockdep_hardirqs_on+0x7d/0x100 [ 245.399209][ T5786] ? _raw_spin_unlock_irq+0x2e/0x50 [ 245.404476][ T5786] ? ptrace_notify+0xfe/0x140 [ 245.409236][ T5786] do_syscall_64+0x39/0xb0 [ 245.413704][ T5786] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 245.419670][ T5786] RIP: 0033:0x7f4f6dd11c5a [ 245.424124][ T5786] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 245.443791][ T5786] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 245.452273][ T5786] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 245.460297][ T5786] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 245.468317][ T5786] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 245.476337][ T5786] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [pid 5789] <... write resumed>) = 16777216 [pid 5789] munmap(0x7f4f650a0000, 16777216 [pid 5793] <... write resumed>) = 16777216 [pid 5793] munmap(0x7f4f650a0000, 16777216 [pid 5792] <... munmap resumed>) = 0 [pid 5781] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5781] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5781] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5781] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5781] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5800 attached [pid 5800] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5781] <... clone3 resumed> => {parent_tid=[81]}, 88) = 81 [pid 5800] <... rseq resumed>) = 0 [pid 5781] rt_sigprocmask(SIG_SETMASK, [], [pid 5800] set_robust_list(0x7f4f6609f9a0, 24 [pid 5781] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5800] <... set_robust_list resumed>) = 0 [pid 5781] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5800] rt_sigprocmask(SIG_SETMASK, [], [pid 5781] <... futex resumed>) = 0 [pid 5800] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5781] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5800] ioctl(0, VFAT_IOCTL_READDIR_SHORT [pid 5789] <... munmap resumed>) = 0 [pid 5800] <... ioctl resumed>, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 5800] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5781] <... futex resumed>) = 0 [pid 5800] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5781] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5800] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5781] <... futex resumed>) = 0 [pid 5800] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5781] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5789] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [ 245.484360][ T5786] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 245.485031][ T5800] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 245.492358][ T5786] [ 245.499797][ T5788] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 245.514416][ T5789] loop0: detected capacity change from 0 to 32768 [ 245.521356][ T5788] CPU: 1 PID: 5788 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 245.531836][ T5788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 245.542036][ T5788] Call Trace: [ 245.545348][ T5788] [ 245.548310][ T5788] dump_stack_lvl+0x136/0x150 [ 245.553067][ T5788] sysfs_warn_dup+0x80/0xa0 [ 245.557622][ T5788] sysfs_create_dir_ns+0x237/0x290 [ 245.562785][ T5788] ? sysfs_create_mount_point+0xb0/0xb0 [ 245.565404][ T5800] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 245.565404][ T5800] inode = 12 2341 [ 245.565404][ T5800] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 245.568358][ T5788] ? spin_bug+0x1c0/0x1c0 [ 245.568402][ T5788] ? do_raw_spin_unlock+0x175/0x230 [ 245.568446][ T5788] kobject_add_internal+0x2c9/0x9c0 [ 245.568481][ T5788] ? kfree+0x11/0x150 [ 245.568514][ T5788] kobject_init_and_add+0x101/0x170 [ 245.595181][ T5800] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:4 m:20 p:1 [ 245.596620][ T5788] ? kobject_create_and_add+0xf0/0xf0 [ 245.596658][ T5788] ? lockdep_init_map_type+0x21e/0x810 [ 245.596698][ T5788] ? lockdep_hardirqs_on+0x7d/0x100 [ 245.596736][ T5788] ? lockdep_init_map_type+0x21e/0x810 [ 245.596778][ T5788] gfs2_sys_fs_add+0x1d5/0x450 [ 245.602901][ T5800] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5782 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 245.605940][ T5788] ? recover_store+0x170/0x170 [ 245.605975][ T5788] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 245.606023][ T5788] gfs2_fill_super+0x1312/0x2aa0 [ 245.606062][ T5788] ? gfs2_reconfigure+0xf90/0xf90 [ 245.606099][ T5788] ? snprintf+0xbf/0x100 [ 245.606136][ T5788] ? vsprintf+0x30/0x30 [ 245.615850][ T5800] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5800 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 245.620346][ T5788] ? wait_for_completion_io_timeout+0x20/0x20 [ 245.625717][ T5800] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 245.631166][ T5788] ? set_blocksize+0x2d8/0x370 [ 245.631207][ T5788] get_tree_bdev+0x43e/0x7d0 [ 245.631248][ T5788] ? gfs2_reconfigure+0xf90/0xf90 [ 245.631285][ T5788] gfs2_get_tree+0x4e/0x270 [ 245.631320][ T5788] vfs_get_tree+0x8d/0x350 [ 245.631356][ T5788] path_mount+0x136e/0x1e70 [ 245.644130][ T5800] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 245.646768][ T5788] ? putname+0x102/0x140 [ 245.646809][ T5788] ? lockdep_hardirqs_on+0x7d/0x100 [ 245.646848][ T5788] ? finish_automount+0xa30/0xa30 [ 245.664766][ T5800] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 245.667310][ T5788] ? putname+0x102/0x140 [ 245.667348][ T5788] __x64_sys_mount+0x283/0x300 [ 245.667389][ T5788] ? copy_mnt_ns+0xb30/0xb30 [pid 5789] ioctl(4, LOOP_SET_FD, 3 [pid 5793] <... munmap resumed>) = 0 [pid 5792] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5789] <... ioctl resumed>) = 0 [pid 5781] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5793] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5792] <... openat resumed>) = 4 [pid 5789] close(3 [pid 5793] <... openat resumed>) = 4 [pid 5792] ioctl(4, LOOP_SET_FD, 3 [pid 5789] <... close resumed>) = 0 [ 245.672324][ T5800] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 245.677335][ T5788] ? lockdep_hardirqs_on+0x7d/0x100 [ 245.677375][ T5788] ? _raw_spin_unlock_irq+0x2e/0x50 [ 245.677420][ T5788] ? ptrace_notify+0xfe/0x140 [ 245.677471][ T5788] do_syscall_64+0x39/0xb0 [ 245.677501][ T5788] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 245.688105][ T5800] gfs2: fsid=syz:syz.0: File system withdrawn [ 245.695890][ T5788] RIP: 0033:0x7f4f6dd11c5a [pid 5793] ioctl(4, LOOP_SET_FD, 3 [pid 5792] <... ioctl resumed>) = 0 [pid 5789] mkdir("./file0", 0777 [pid 5792] close(3 [pid 5789] <... mkdir resumed>) = 0 [pid 5792] <... close resumed>) = 0 [pid 5789] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5792] mkdir("./file0", 0777) = 0 [ 245.695917][ T5788] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 245.695947][ T5788] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 245.695978][ T5788] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 245.696001][ T5788] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 245.696024][ T5788] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 245.696045][ T5788] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 245.696067][ T5788] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 245.696093][ T5788] [ 245.806988][ T5792] loop1: detected capacity change from 0 to 32768 [ 245.810130][ T5786] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 245.817690][ T5793] loop5: detected capacity change from 0 to 32768 [ 245.828680][ T5786] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 245.929400][ T5788] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 245.937863][ T5800] CPU: 1 PID: 5800 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 245.948562][ T5789] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 245.956333][ T5800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 245.956355][ T5800] Call Trace: [ 245.956364][ T5800] [ 245.956375][ T5800] dump_stack_lvl+0x136/0x150 [ 245.956429][ T5800] gfs2_withdraw+0xb33/0x1060 [ 245.956462][ T5800] ? gfs2_consist_inode_i+0x104/0x150 [ 245.956498][ T5800] gfs2_dirent_scan+0x32a/0x3d0 [ 245.956543][ T5800] ? gfs2_dirent_prev+0x210/0x210 [ 245.956592][ T5800] ? gfs2_dirent_prev+0x210/0x210 [ 245.964195][ T5792] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 245.974011][ T5800] gfs2_dirent_search+0x47d/0x580 [ 245.974063][ T5800] ? get_first_leaf+0x190/0x190 [ 245.974110][ T5800] ? gfs2_permission+0x256/0x3e0 [ 246.032436][ T5800] gfs2_dir_search+0x8d/0x2d0 [ 246.037166][ T5800] ? gfs2_dir_read+0x14e0/0x14e0 [ 246.042148][ T5800] gfs2_lookupi+0x481/0x640 [ 246.046681][ T5800] ? gfs2_lookup_by_inum+0x100/0x100 [ 246.052002][ T5800] ? __gfs2_lookup+0x83/0x280 [ 246.056713][ T5800] __gfs2_lookup+0x83/0x280 [ 246.061247][ T5800] ? gfs2_lookupi+0x640/0x640 [ 246.065956][ T5800] ? lockdep_init_map_type+0x21e/0x810 [ 246.071444][ T5800] ? avc_has_perm_noaudit+0x10b/0x3a0 [ 246.076854][ T5800] ? lockdep_init_map_type+0x21e/0x810 [ 246.082343][ T5800] __lookup_slow+0x24c/0x460 [ 246.086966][ T5800] ? lookup_one_qstr_excl+0x180/0x180 [ 246.092373][ T5800] ? lookup_fast+0x14e/0x520 [ 246.096994][ T5800] walk_component+0x33f/0x5a0 [ 246.101718][ T5800] link_path_walk.part.0+0x74e/0xd60 [ 246.107040][ T5800] ? walk_component+0x5a0/0x5a0 [ 246.111925][ T5800] path_lookupat+0xb7/0x840 [ 246.116470][ T5800] path_openat+0x1710/0x2710 [ 246.121091][ T5800] ? __lock_acquire+0x1984/0x5e20 [ 246.126145][ T5800] ? path_lookupat+0x840/0x840 [ 246.130947][ T5800] do_filp_open+0x1ba/0x410 [ 246.135480][ T5800] ? may_open_dev+0xf0/0xf0 [ 246.140016][ T5800] ? find_held_lock+0x2d/0x110 [ 246.144806][ T5800] ? do_raw_spin_lock+0x124/0x2b0 [ 246.149865][ T5800] ? spin_bug+0x1c0/0x1c0 [ 246.154226][ T5800] ? _raw_spin_unlock+0x28/0x40 [ 246.159110][ T5800] ? alloc_fd+0x2e4/0x750 [ 246.163477][ T5800] do_sys_openat2+0x160/0x1c0 [ 246.168217][ T5800] ? build_open_flags+0x720/0x720 [ 246.173288][ T5800] ? ptrace_notify+0xfe/0x140 [ 246.178008][ T5800] ? lock_downgrade+0x690/0x690 [ 246.182906][ T5800] __x64_sys_openat+0x143/0x1f0 [ 246.187809][ T5800] ? __ia32_sys_open+0x1c0/0x1c0 [ 246.192783][ T5800] ? _raw_spin_unlock_irq+0x23/0x50 [ 246.198019][ T5800] ? lockdep_hardirqs_on+0x7d/0x100 [ 246.203247][ T5800] ? _raw_spin_unlock_irq+0x2e/0x50 [ 246.208481][ T5800] ? ptrace_notify+0xfe/0x140 [ 246.213201][ T5800] do_syscall_64+0x39/0xb0 [ 246.217641][ T5800] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 246.223574][ T5800] RIP: 0033:0x7f4f6dd107f9 [ 246.228009][ T5800] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 246.247639][ T5800] RSP: 002b:00007f4f6609f228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 246.256084][ T5800] RAX: ffffffffffffffda RBX: 00007f4f6dda46f8 RCX: 00007f4f6dd107f9 [ 246.264073][ T5800] RDX: 0000000000200002 RSI: 00000000200001c0 RDI: ffffffffffffff9c [ 246.272068][ T5800] RBP: 00007f4f6dda46f0 R08: 00007f4f6609f6c0 R09: 00007f4f6609f6c0 [ 246.280059][ T5800] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46fc [ 246.288136][ T5800] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 246.296223][ T5800] [ 246.302401][ T5789] CPU: 0 PID: 5789 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 246.312899][ T5789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 246.323003][ T5789] Call Trace: [ 246.326319][ T5789] [ 246.329291][ T5789] dump_stack_lvl+0x136/0x150 [ 246.334043][ T5789] sysfs_warn_dup+0x80/0xa0 [ 246.338595][ T5789] sysfs_create_dir_ns+0x237/0x290 [ 246.343755][ T5789] ? sysfs_create_mount_point+0xb0/0xb0 [ 246.349356][ T5789] ? spin_bug+0x1c0/0x1c0 [ 246.353744][ T5789] ? do_raw_spin_unlock+0x175/0x230 [ 246.359006][ T5789] kobject_add_internal+0x2c9/0x9c0 [ 246.360411][ T5788] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 246.364323][ T5789] ? kfree+0x11/0x150 [ 246.364360][ T5789] kobject_init_and_add+0x101/0x170 [ 246.380091][ T5789] ? kobject_create_and_add+0xf0/0xf0 [ 246.385515][ T5789] ? lockdep_init_map_type+0x21e/0x810 [ 246.391025][ T5789] ? lockdep_hardirqs_on+0x7d/0x100 [ 246.396367][ T5789] ? lockdep_init_map_type+0x21e/0x810 [ 246.401898][ T5789] gfs2_sys_fs_add+0x1d5/0x450 [ 246.406712][ T5789] ? recover_store+0x170/0x170 [ 246.411517][ T5789] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 246.417282][ T5789] gfs2_fill_super+0x1312/0x2aa0 [ 246.422259][ T5789] ? gfs2_reconfigure+0xf90/0xf90 [ 246.427327][ T5789] ? snprintf+0xbf/0x100 [ 246.431624][ T5789] ? vsprintf+0x30/0x30 [ 246.435836][ T5789] ? wait_for_completion_io_timeout+0x20/0x20 [ 246.441956][ T5789] ? set_blocksize+0x2d8/0x370 [ 246.446784][ T5789] get_tree_bdev+0x43e/0x7d0 [ 246.451436][ T5789] ? gfs2_reconfigure+0xf90/0xf90 [ 246.456514][ T5789] gfs2_get_tree+0x4e/0x270 [ 246.461070][ T5789] vfs_get_tree+0x8d/0x350 [ 246.465542][ T5789] path_mount+0x136e/0x1e70 [ 246.470098][ T5789] ? putname+0x102/0x140 [ 246.474397][ T5789] ? lockdep_hardirqs_on+0x7d/0x100 [ 246.479658][ T5789] ? finish_automount+0xa30/0xa30 [ 246.484730][ T5789] ? putname+0x102/0x140 [pid 5792] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5793] <... ioctl resumed>) = 0 [pid 5793] close(3) = 0 [pid 5793] mkdir("./file0", 0777) = 0 [pid 5793] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5800] <... openat resumed>) = -1 EIO (Input/output error) [pid 5800] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5800] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5782] <... openat resumed>) = -1 EIO (Input/output error) [pid 5782] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5781] close(3 [pid 5782] <... futex resumed>) = 0 [pid 5781] <... close resumed>) = 0 [pid 5782] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5781] close(4) = -1 EBADF (Bad file descriptor) [pid 5781] close(5) = -1 EBADF (Bad file descriptor) [pid 5781] close(6) = -1 EBADF (Bad file descriptor) [pid 5781] close(7) = -1 EBADF (Bad file descriptor) [pid 5781] close(8) = -1 EBADF (Bad file descriptor) [pid 5781] close(9) = -1 EBADF (Bad file descriptor) [pid 5781] close(10) = -1 EBADF (Bad file descriptor) [pid 5781] close(11) = -1 EBADF (Bad file descriptor) [pid 5781] close(12) = -1 EBADF (Bad file descriptor) [ 246.489018][ T5789] __x64_sys_mount+0x283/0x300 [ 246.493841][ T5789] ? copy_mnt_ns+0xb30/0xb30 [ 246.498485][ T5789] ? lockdep_hardirqs_on+0x7d/0x100 [ 246.503733][ T5789] ? _raw_spin_unlock_irq+0x2e/0x50 [ 246.508997][ T5789] ? ptrace_notify+0xfe/0x140 [ 246.513741][ T5789] do_syscall_64+0x39/0xb0 [ 246.518215][ T5789] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 246.524188][ T5789] RIP: 0033:0x7f4f6dd11c5a [pid 5781] close(13) = -1 EBADF (Bad file descriptor) [pid 5781] close(14) = -1 EBADF (Bad file descriptor) [pid 5781] close(15) = -1 EBADF (Bad file descriptor) [pid 5781] close(16) = -1 EBADF (Bad file descriptor) [pid 5781] close(17) = -1 EBADF (Bad file descriptor) [pid 5781] close(18) = -1 EBADF (Bad file descriptor) [pid 5781] close(19) = -1 EBADF (Bad file descriptor) [pid 5781] close(20) = -1 EBADF (Bad file descriptor) [pid 5781] close(21) = -1 EBADF (Bad file descriptor) [pid 5781] close(22) = -1 EBADF (Bad file descriptor) [pid 5781] close(23) = -1 EBADF (Bad file descriptor) [pid 5781] close(24) = -1 EBADF (Bad file descriptor) [pid 5781] close(25) = -1 EBADF (Bad file descriptor) [pid 5781] close(26) = -1 EBADF (Bad file descriptor) [pid 5781] close(27) = -1 EBADF (Bad file descriptor) [pid 5781] close(28) = -1 EBADF (Bad file descriptor) [pid 5781] close(29) = -1 EBADF (Bad file descriptor) [pid 5781] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [ 246.528650][ T5789] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 246.548318][ T5789] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 246.556791][ T5789] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 246.564819][ T5789] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 246.572846][ T5789] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 246.580874][ T5789] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 ) = 156 [pid 5781] exit_group(0 [pid 5800] <... futex resumed>) = ? [pid 5782] <... futex resumed>) = ? [pid 5781] <... exit_group resumed>) = ? [pid 5800] +++ exited with 0 +++ [pid 5786] <... mount resumed>) = -1 EEXIST (File exists) [pid 5782] +++ exited with 0 +++ [pid 5781] +++ exited with 0 +++ [ 246.588904][ T5789] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 246.596933][ T5789] [ 246.603062][ T5793] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 246.610009][ T5789] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 246.619448][ T5792] CPU: 1 PID: 5792 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 246.632324][ T5789] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 246.634757][ T5792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 246.651394][ T5792] Call Trace: [ 246.654719][ T5792] [ 246.657668][ T5792] dump_stack_lvl+0x136/0x150 [ 246.662390][ T5792] sysfs_warn_dup+0x80/0xa0 [ 246.666930][ T5792] sysfs_create_dir_ns+0x237/0x290 [ 246.672094][ T5792] ? sysfs_create_mount_point+0xb0/0xb0 [ 246.677683][ T5792] ? spin_bug+0x1c0/0x1c0 [ 246.682049][ T5792] ? do_raw_spin_unlock+0x175/0x230 [ 246.687378][ T5792] kobject_add_internal+0x2c9/0x9c0 [ 246.692634][ T5792] ? kfree+0x11/0x150 [ 246.696658][ T5792] kobject_init_and_add+0x101/0x170 [ 246.701890][ T5792] ? kobject_create_and_add+0xf0/0xf0 [ 246.707301][ T5792] ? lockdep_init_map_type+0x21e/0x810 [ 246.712803][ T5792] ? lockdep_hardirqs_on+0x7d/0x100 [ 246.718032][ T5792] ? lockdep_init_map_type+0x21e/0x810 [ 246.723526][ T5792] gfs2_sys_fs_add+0x1d5/0x450 [ 246.728319][ T5792] ? recover_store+0x170/0x170 [ 246.733105][ T5792] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 246.738861][ T5792] gfs2_fill_super+0x1312/0x2aa0 [ 246.743841][ T5792] ? gfs2_reconfigure+0xf90/0xf90 [ 246.748904][ T5792] ? snprintf+0xbf/0x100 [ 246.753198][ T5792] ? vsprintf+0x30/0x30 [ 246.757395][ T5792] ? wait_for_completion_io_timeout+0x20/0x20 [ 246.763501][ T5792] ? set_blocksize+0x2d8/0x370 [ 246.768298][ T5792] get_tree_bdev+0x43e/0x7d0 [ 246.773012][ T5792] ? gfs2_reconfigure+0xf90/0xf90 [ 246.778067][ T5792] gfs2_get_tree+0x4e/0x270 [ 246.782600][ T5792] vfs_get_tree+0x8d/0x350 [ 246.787045][ T5792] path_mount+0x136e/0x1e70 [ 246.791591][ T5792] ? putname+0x102/0x140 [ 246.795860][ T5792] ? lockdep_hardirqs_on+0x7d/0x100 [ 246.801093][ T5792] ? finish_automount+0xa30/0xa30 [ 246.806154][ T5792] ? putname+0x102/0x140 [ 246.810422][ T5792] __x64_sys_mount+0x283/0x300 [ 246.815229][ T5792] ? copy_mnt_ns+0xb30/0xb30 [ 246.819851][ T5792] ? lockdep_hardirqs_on+0x7d/0x100 [ 246.825080][ T5792] ? _raw_spin_unlock_irq+0x2e/0x50 [ 246.830316][ T5792] ? ptrace_notify+0xfe/0x140 [ 246.835119][ T5792] do_syscall_64+0x39/0xb0 [ 246.839563][ T5792] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 246.845503][ T5792] RIP: 0033:0x7f4f6dd11c5a [ 246.849942][ T5792] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 246.869595][ T5792] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 246.878052][ T5792] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 246.886052][ T5792] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 246.894060][ T5792] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 246.902146][ T5792] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 246.910138][ T5792] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 246.918136][ T5792] [ 246.922163][ T5793] CPU: 0 PID: 5793 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 246.932668][ T5793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [pid 5788] <... mount resumed>) = -1 EEXIST (File exists) [pid 5786] ioctl(4, LOOP_CLR_FD [pid 5788] ioctl(4, LOOP_CLR_FD [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=79, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=76 /* 0.76 s */} --- [pid 5030] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5030] umount2("./28", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5030] umount2("./28/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./28/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./28/cgroup.cpu") = 0 [pid 5030] umount2("./28/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./28/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./28/binderfs") = 0 [ 246.942768][ T5793] Call Trace: [ 246.946085][ T5793] [ 246.949054][ T5793] dump_stack_lvl+0x136/0x150 [ 246.953825][ T5793] sysfs_warn_dup+0x80/0xa0 [ 246.958414][ T5793] sysfs_create_dir_ns+0x237/0x290 [ 246.963586][ T5793] ? sysfs_create_mount_point+0xb0/0xb0 [ 246.969189][ T5793] ? spin_bug+0x1c0/0x1c0 [ 246.973584][ T5793] ? do_raw_spin_unlock+0x175/0x230 [ 246.978846][ T5793] kobject_add_internal+0x2c9/0x9c0 [ 246.984097][ T5793] ? kfree+0x11/0x150 [ 246.988134][ T5793] kobject_init_and_add+0x101/0x170 [ 246.991231][ T5792] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 246.993367][ T5793] ? kobject_create_and_add+0xf0/0xf0 [ 246.993407][ T5793] ? lockdep_init_map_type+0x21e/0x810 [ 246.993448][ T5793] ? lockdep_hardirqs_on+0x7d/0x100 [ 247.008883][ T5792] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 247.012685][ T5793] ? lockdep_init_map_type+0x21e/0x810 [ 247.012734][ T5793] gfs2_sys_fs_add+0x1d5/0x450 [ 247.040315][ T5793] ? recover_store+0x170/0x170 [ 247.045134][ T5793] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 247.050935][ T5793] gfs2_fill_super+0x1312/0x2aa0 [ 247.055931][ T5793] ? gfs2_reconfigure+0xf90/0xf90 [ 247.061007][ T5793] ? snprintf+0xbf/0x100 [ 247.065280][ T5793] ? vsprintf+0x30/0x30 [ 247.069460][ T5793] ? wait_for_completion_io_timeout+0x20/0x20 [ 247.075561][ T5793] ? set_blocksize+0x2d8/0x370 [ 247.080369][ T5793] get_tree_bdev+0x43e/0x7d0 [ 247.084987][ T5793] ? gfs2_reconfigure+0xf90/0xf90 [ 247.090043][ T5793] gfs2_get_tree+0x4e/0x270 [ 247.094571][ T5793] vfs_get_tree+0x8d/0x350 [ 247.099017][ T5793] path_mount+0x136e/0x1e70 [ 247.103552][ T5793] ? putname+0x102/0x140 [ 247.107823][ T5793] ? lockdep_hardirqs_on+0x7d/0x100 [ 247.113095][ T5793] ? finish_automount+0xa30/0xa30 [ 247.118167][ T5793] ? putname+0x102/0x140 [ 247.122438][ T5793] __x64_sys_mount+0x283/0x300 [ 247.127236][ T5793] ? copy_mnt_ns+0xb30/0xb30 [ 247.131858][ T5793] ? lockdep_hardirqs_on+0x7d/0x100 [ 247.137089][ T5793] ? _raw_spin_unlock_irq+0x2e/0x50 [ 247.142322][ T5793] ? ptrace_notify+0xfe/0x140 [ 247.147041][ T5793] do_syscall_64+0x39/0xb0 [ 247.151483][ T5793] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 247.157421][ T5793] RIP: 0033:0x7f4f6dd11c5a [ 247.161855][ T5793] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 247.181496][ T5793] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [pid 5030] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5784] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5784] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5784] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5792] <... mount resumed>) = -1 EEXIST (File exists) [pid 5789] <... mount resumed>) = -1 EEXIST (File exists) [pid 5784] <... mmap resumed>) = 0x7f4f6607f000 [pid 5784] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5792] ioctl(4, LOOP_CLR_FD [pid 5789] ioctl(4, LOOP_CLR_FD [pid 5784] <... mprotect resumed>) = 0 [ 247.189941][ T5793] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 247.197937][ T5793] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 247.205932][ T5793] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 247.213923][ T5793] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 247.221913][ T5793] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 247.229909][ T5793] [pid 5784] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5784] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5805 attached => {parent_tid=[86]}, 88) = 86 [pid 5784] rt_sigprocmask(SIG_SETMASK, [], [pid 5805] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5784] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5784] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5805] <... rseq resumed>) = 0 [pid 5784] <... futex resumed>) = 0 [pid 5784] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5805] set_robust_list(0x7f4f6609f9a0, 24) = 0 [pid 5805] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5805] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 5785] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5784] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5805] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5785] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5784] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5805] <... futex resumed>) = 0 [pid 5785] <... futex resumed>) = 0 [pid 5784] <... futex resumed>) = 0 [pid 5805] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5785] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5784] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5805] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5805] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5784] <... futex resumed>) = 0 [pid 5805] <... futex resumed>) = 1 [pid 5784] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5805] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5784] <... futex resumed>) = 0 [ 247.250371][ T5793] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 247.273911][ T5793] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 5784] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5805] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5793] <... mount resumed>) = -1 EEXIST (File exists) [pid 5787] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5785] <... mmap resumed>) = 0x7f4f6607f000 [pid 5805] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5793] ioctl(4, LOOP_CLR_FD [pid 5805] <... futex resumed>) = 1 [pid 5784] <... futex resumed>) = 0 [pid 5805] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5787] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5787] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5787] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5785] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5785] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5787] <... mprotect resumed>) = 0 [pid 5785] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5790] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5790] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5790] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5790] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5787] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5790] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5790] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5806 attached [pid 5787] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5787] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[92]}, 88) = 92 [pid 5787] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5787] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5787] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5806] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5790] <... clone3 resumed> => {parent_tid=[86]}, 88) = 86 [pid 5790] rt_sigprocmask(SIG_SETMASK, [], [pid 5806] <... rseq resumed>) = 0 [pid 5790] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5806] set_robust_list(0x7f4f6609f9a0, 24 [pid 5790] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5806] <... set_robust_list resumed>) = 0 [pid 5790] <... futex resumed>) = 0 [pid 5806] rt_sigprocmask(SIG_SETMASK, [], [pid 5790] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5806] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5806] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 5806] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5790] <... futex resumed>) = 0 [pid 5806] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5790] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5806] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5790] <... futex resumed>) = 0 [pid 5806] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5806] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5790] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5806] <... futex resumed>) = 0 [pid 5806] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5790] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5806] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5790] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5806] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5790] <... futex resumed>) = 0 [pid 5806] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5790] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5806] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5790] <... futex resumed>) = 0 [pid 5806] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5785] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5791] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5791] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5791] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5791] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 ./strace-static-x86_64: Process 5807 attached [pid 5807] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053) = 0 [pid 5791] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5791] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5807] set_robust_list(0x7f4f6609f9a0, 24 [pid 5787] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5791] <... clone3 resumed> => {parent_tid=[90]}, 88) = 90 [pid 5791] rt_sigprocmask(SIG_SETMASK, [], ./strace-static-x86_64: Process 5808 attached NULL, 8) = 0 [pid 5808] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5807] <... set_robust_list resumed>) = 0 [pid 5791] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5787] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5786] <... ioctl resumed>) = 0 ./strace-static-x86_64: Process 5809 attached [pid 5808] <... rseq resumed>) = 0 [pid 5791] <... futex resumed>) = 0 [pid 5809] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5786] close(4) = 0 [pid 5809] <... rseq resumed>) = 0 [pid 5807] rt_sigprocmask(SIG_SETMASK, [], [pid 5787] <... futex resumed>) = 0 [pid 5809] set_robust_list(0x7f4f6609f9a0, 24 [pid 5786] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5809] <... set_robust_list resumed>) = 0 [pid 5786] <... futex resumed>) = 0 [pid 5784] close(3 [pid 5809] rt_sigprocmask(SIG_SETMASK, [], [pid 5786] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5809] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5784] <... close resumed>) = 0 [pid 5809] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5784] close(4) = -1 EBADF (Bad file descriptor) [pid 5784] close(5) = -1 EBADF (Bad file descriptor) [pid 5784] close(6) = -1 EBADF (Bad file descriptor) [pid 5784] close(7) = -1 EBADF (Bad file descriptor) [pid 5784] close(8) = -1 EBADF (Bad file descriptor) [pid 5785] <... clone3 resumed> => {parent_tid=[88]}, 88) = 88 [pid 5784] close(9 [pid 5807] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5787] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5785] rt_sigprocmask(SIG_SETMASK, [], [pid 5784] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5807] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5787] <... mmap resumed>) = 0x7f4f6605e000 [pid 5785] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5784] close(10 [pid 5807] <... openat resumed>) = 3 [pid 5787] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE [pid 5807] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5787] <... mprotect resumed>) = 0 [pid 5807] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5787] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5785] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5784] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5809] <... futex resumed>) = 0 [pid 5808] set_robust_list(0x7f4f6609f9a0, 24 [pid 5791] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5785] <... futex resumed>) = 1 [pid 5784] close(11 [pid 5809] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5787] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} [pid 5785] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5784] <... close resumed>) = -1 EBADF (Bad file descriptor) ./strace-static-x86_64: Process 5810 attached [pid 5809] <... openat resumed>) = 3 [pid 5808] <... set_robust_list resumed>) = 0 [pid 5784] close(12 [pid 5810] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 5809] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5787] <... clone3 resumed> => {parent_tid=[93]}, 88) = 93 [pid 5784] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5810] <... rseq resumed>) = 0 [pid 5809] <... futex resumed>) = 1 [pid 5787] rt_sigprocmask(SIG_SETMASK, [], [pid 5785] <... futex resumed>) = 0 [pid 5784] close(13 [pid 5810] set_robust_list(0x7f4f6607e9a0, 24 [pid 5809] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5808] rt_sigprocmask(SIG_SETMASK, [], [pid 5787] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5785] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5784] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5810] <... set_robust_list resumed>) = 0 [pid 5809] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5808] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5787] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 5785] <... futex resumed>) = 0 [pid 5784] close(14 [pid 5810] rt_sigprocmask(SIG_SETMASK, [], [pid 5809] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5787] <... futex resumed>) = 0 [pid 5785] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5784] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5810] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5809] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5787] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5784] close(15 [pid 5810] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5809] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5784] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5810] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5809] <... futex resumed>) = 1 [pid 5785] <... futex resumed>) = 0 [pid 5784] close(16 [pid 5810] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5809] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5785] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5784] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5810] <... futex resumed>) = 1 [pid 5809] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5787] <... futex resumed>) = 0 [pid 5785] <... futex resumed>) = 0 [pid 5784] close(17 [pid 5810] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5809] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5808] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5787] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5785] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5784] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5809] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5807] <... futex resumed>) = 0 [pid 5787] <... futex resumed>) = 1 [pid 5807] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5787] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5807] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5807] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5787] <... futex resumed>) = 0 [pid 5807] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5784] close(18) = -1 EBADF (Bad file descriptor) [pid 5784] close(19) = -1 EBADF (Bad file descriptor) [pid 5784] close(20) = -1 EBADF (Bad file descriptor) [pid 5784] close(21 [pid 5808] <... openat resumed>) = 3 [pid 5791] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5784] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5808] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5791] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5784] close(22 [pid 5809] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5784] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5809] <... futex resumed>) = 1 [pid 5808] <... futex resumed>) = 0 [pid 5791] <... futex resumed>) = 0 [pid 5785] <... futex resumed>) = 0 [pid 5784] close(23 [pid 5808] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5791] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5784] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5808] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5784] close(24 [pid 5809] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5784] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5784] close(25 [pid 5808] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5784] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5784] close(26) = -1 EBADF (Bad file descriptor) [pid 5784] close(27) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5808] <... futex resumed>) = 1 [pid 5791] <... futex resumed>) = 0 [pid 5784] close(28 [pid 5808] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5791] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5784] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5808] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5791] <... futex resumed>) = 0 [pid 5784] close(29) = -1 EBADF (Bad file descriptor) [pid 5784] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5808] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5791] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5784] <... write resumed>) = 156 [pid 5784] exit_group(0 [pid 5805] <... futex resumed>) = ? [pid 5784] <... exit_group resumed>) = ? [pid 5805] +++ exited with 0 +++ [pid 5786] <... futex resumed>) = ? [pid 5808] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5786] +++ exited with 0 +++ [pid 5784] +++ exited with 0 +++ [pid 5808] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5791] <... futex resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=84, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=74 /* 0.74 s */} --- [pid 5808] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5031] umount2("./28", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5792] <... ioctl resumed>) = 0 [pid 5788] <... ioctl resumed>) = 0 [pid 5031] umount2("./28/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5792] close(4 [pid 5788] close(4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5792] <... close resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./28/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./28/cgroup.cpu") = 0 [pid 5031] umount2("./28/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5792] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5788] <... close resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./28/binderfs", [pid 5792] <... futex resumed>) = 0 [pid 5788] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5792] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5790] close(3 [pid 5789] <... ioctl resumed>) = 0 [pid 5788] <... futex resumed>) = 0 [pid 5785] close(3 [pid 5031] unlink("./28/binderfs" [pid 5790] <... close resumed>) = 0 [pid 5788] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5785] <... close resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5790] close(4 [pid 5785] close(4 [pid 5031] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5790] close(5 [pid 5789] close(4 [pid 5785] close(5 [pid 5031] newfstatat(AT_FDCWD, "./28/file0", [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5789] <... close resumed>) = 0 [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5790] close(6 [pid 5789] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5785] close(6 [pid 5031] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5789] <... futex resumed>) = 0 [pid 5787] close(3 [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5793] <... ioctl resumed>) = 0 [pid 5790] close(7 [pid 5789] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5787] <... close resumed>) = 0 [pid 5785] close(7 [pid 5031] openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5793] close(4 [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] close(4 [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... openat resumed>) = 4 [pid 5793] <... close resumed>) = 0 [pid 5790] close(8 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] close(8 [pid 5031] newfstatat(4, "", [pid 5793] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] close(5 [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5793] <... futex resumed>) = 0 [pid 5791] close(3 [pid 5790] close(9 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] close(9 [pid 5031] getdents64(4, [pid 5793] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5791] <... close resumed>) = 0 [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] close(6 [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5791] close(4 [pid 5790] close(10 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] close(10 [pid 5031] getdents64(4, [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] close(7 [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5791] close(5 [pid 5790] close(11 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] close(11 [pid 5031] close(4 [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] close(8 [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... close resumed>) = 0 [pid 5791] close(6 [pid 5790] close(12 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] close(12 [pid 5031] rmdir("./28/file0" [pid 5787] close(9 [pid 5031] <... rmdir resumed>) = 0 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] umount2("./28/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5787] close(10 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] newfstatat(AT_FDCWD, "./28/cgroup", [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] close(11 [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5791] close(7 [pid 5790] close(13 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] close(13 [pid 5031] unlink("./28/cgroup" [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] close(12 [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... unlink resumed>) = 0 [pid 5791] close(8 [pid 5790] close(14 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] close(14 [pid 5031] umount2("./28/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] close(13 [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5791] close(9 [pid 5790] close(15 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] close(15 [pid 5031] newfstatat(AT_FDCWD, "./28/cgroup.net", [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] close(14 [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5791] close(10 [pid 5790] close(16 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] close(16 [pid 5031] unlink("./28/cgroup.net" [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] close(15 [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... unlink resumed>) = 0 [pid 5791] close(11 [pid 5790] close(17 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] close(17 [pid 5031] getdents64(3, [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] close(16 [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5791] close(12 [pid 5790] close(18 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] close(18 [pid 5031] close(3 [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] close(17 [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... close resumed>) = 0 [pid 5791] close(13 [pid 5790] close(19 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] close(19 [pid 5031] rmdir("./28" [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] close(18 [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... rmdir resumed>) = 0 [pid 5791] close(14 [pid 5790] close(20 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] close(20 [pid 5031] mkdir("./29", 0777 [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] close(19 [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... mkdir resumed>) = 0 [pid 5791] close(15 [pid 5790] close(21 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] close(21 [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] close(20 [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... openat resumed>) = 3 [pid 5791] close(16 [pid 5790] close(22 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] close(22 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] close(21 [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5791] close(17 [pid 5790] close(23 [pid 5785] close(23 [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5791] close(18 [pid 5790] close(24 [pid 5785] close(24 [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5791] close(19 [pid 5790] close(25 [pid 5785] close(25 [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5791] close(20 [pid 5790] close(26 [pid 5785] close(26 [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5791] close(21 [pid 5790] close(27 [pid 5785] close(27 [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5791] close(22 [pid 5790] close(28 [pid 5785] close(28 [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5791] close(23 [pid 5790] close(29 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] close(29 [pid 5031] close(3 [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5785] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5791] close(24 [pid 5790] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5785] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... write resumed>) = 156 [pid 5785] <... write resumed>) = 156 [pid 5791] close(25 [pid 5790] exit_group(0 [pid 5785] exit_group(0 [pid 5809] <... futex resumed>) = ? [pid 5806] <... futex resumed>) = ? [pid 5792] <... futex resumed>) = ? [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] <... exit_group resumed>) = ? [pid 5788] <... futex resumed>) = ? [pid 5785] <... exit_group resumed>) = ? [pid 5809] +++ exited with 0 +++ [pid 5806] +++ exited with 0 +++ [pid 5792] +++ exited with 0 +++ [pid 5791] close(26 [pid 5787] close(22 [pid 5031] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = 0 [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5790] +++ exited with 0 +++ [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5811 attached [pid 5791] close(27 [pid 5788] +++ exited with 0 +++ [pid 5787] close(23 [pid 5785] +++ exited with 0 +++ [pid 5030] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5811] set_robust_list(0x55555654e6a0, 24 [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=86, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=53 /* 0.53 s */} --- [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=84, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=58 /* 0.58 s */} --- [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 87 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5811] <... set_robust_list resumed>) = 0 [pid 5791] close(28 [pid 5787] close(24 [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 5030] newfstatat(AT_FDCWD, "./28/file0", [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... restart_syscall resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5787] close(25 [pid 5033] umount2("./30", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5811] chdir("./29" [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] close(26 [pid 5033] openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] umount2("./29", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5811] <... chdir resumed>) = 0 [pid 5791] close(29 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... openat resumed>) = 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... openat resumed>) = 4 [pid 5811] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5791] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5787] close(27 [pid 5033] newfstatat(3, "", [pid 5032] openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] newfstatat(4, "", write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5811] <... prctl resumed>) = 0 [pid 5791] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5811] setpgid(0, 0 [pid 5791] <... write resumed>) = 156 [pid 5787] close(28 [pid 5033] getdents64(3, [pid 5032] newfstatat(3, "", [pid 5030] getdents64(4, [pid 5811] <... setpgid resumed>) = 0 [pid 5791] exit_group(0 [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5811] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 5808] <... futex resumed>) = ? [pid 5793] <... futex resumed>) = ? [pid 5791] <... exit_group resumed>) = ? [pid 5787] close(29 [pid 5033] umount2("./30/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(3, write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5811] <... symlink resumed>) = 0 [pid 5808] +++ exited with 0 +++ [pid 5793] +++ exited with 0 +++ [pid 5791] +++ exited with 0 +++ [pid 5787] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5030] getdents64(4, [pid 5811] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 5787] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=88, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=67 /* 0.67 s */} --- [pid 5033] newfstatat(AT_FDCWD, "./30/cgroup.cpu", [pid 5032] umount2("./29/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5811] <... symlink resumed>) = 0 [pid 5787] <... write resumed>) = 156 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] close(4 [pid 5811] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 5787] exit_group(0 [pid 5033] unlink("./30/cgroup.cpu" [pid 5032] newfstatat(AT_FDCWD, "./29/cgroup.cpu", [pid 5030] <... close resumed>) = 0 [pid 5811] <... symlink resumed>) = 0 [pid 5810] <... futex resumed>) = ? [pid 5807] <... futex resumed>) = ? [pid 5789] <... futex resumed>) = ? [pid 5787] <... exit_group resumed>) = ? [pid 5034] umount2("./29", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... unlink resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] rmdir("./28/file0" [pid 5811] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5810] +++ exited with 0 +++ [pid 5807] +++ exited with 0 +++ [pid 5789] +++ exited with 0 +++ [pid 5787] +++ exited with 0 +++ [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./30/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] unlink("./29/cgroup.cpu" [pid 5811] <... openat resumed>) = 3 [pid 5034] openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... rmdir resumed>) = 0 [pid 5811] write(3, "1000", 4 [pid 5034] <... openat resumed>) = 3 [pid 5033] newfstatat(AT_FDCWD, "./30/binderfs", [pid 5032] <... unlink resumed>) = 0 [pid 5030] umount2("./28/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=90, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=62 /* 0.62 s */} --- [pid 5811] <... write resumed>) = 4 [pid 5034] newfstatat(3, "", [pid 5029] umount2("./28", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5811] close(3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./29/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5811] <... close resumed>) = 0 [pid 5034] getdents64(3, [pid 5033] unlink("./30/binderfs" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./28/cgroup", [pid 5029] openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5811] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5033] <... unlink resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./29/binderfs", [pid 5029] <... openat resumed>) = 3 [pid 5811] <... symlink resumed>) = 0 [pid 5034] umount2("./29/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] newfstatat(3, "", [pid 5811] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] unlink("./29/binderfs" [pid 5030] unlink("./28/cgroup" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5811] <... futex resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./29/cgroup.cpu", [pid 5033] newfstatat(AT_FDCWD, "./30/file0", [pid 5029] getdents64(3, [pid 5811] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5811] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5034] unlink("./29/cgroup.cpu" [pid 5033] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./28/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./28/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5811] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5034] <... unlink resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5811] <... mprotect resumed>) = 0 [pid 5034] umount2("./29/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] newfstatat(AT_FDCWD, "./29/file0", [pid 5030] newfstatat(AT_FDCWD, "./28/cgroup.net", [pid 5029] newfstatat(AT_FDCWD, "./28/cgroup.cpu", [pid 5811] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... openat resumed>) = 4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5811] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5034] newfstatat(AT_FDCWD, "./29/binderfs", [pid 5033] newfstatat(4, "", [pid 5032] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./28/cgroup.cpu" [pid 5811] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] unlink("./28/cgroup.net" [pid 5029] <... unlink resumed>) = 0 ./strace-static-x86_64: Process 5812 attached [pid 5034] unlink("./29/binderfs" [pid 5033] getdents64(4, [pid 5032] openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] umount2("./28/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5812] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5811] <... clone3 resumed> => {parent_tid=[88]}, 88) = 88 [pid 5034] <... unlink resumed>) = 0 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] <... unlink resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5812] <... rseq resumed>) = 0 [pid 5811] rt_sigprocmask(SIG_SETMASK, [], [pid 5034] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(4, [pid 5032] <... openat resumed>) = 4 [pid 5030] getdents64(3, [pid 5029] newfstatat(AT_FDCWD, "./28/binderfs", [pid 5812] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5811] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5032] newfstatat(4, "", [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5812] <... set_robust_list resumed>) = 0 [pid 5811] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] newfstatat(AT_FDCWD, "./29/file0", [pid 5033] close(4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] close(3 [pid 5029] unlink("./28/binderfs" [pid 5812] rt_sigprocmask(SIG_SETMASK, [], [pid 5811] <... futex resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... close resumed>) = 0 [pid 5032] getdents64(4, [pid 5030] <... close resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5812] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5811] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5034] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] rmdir("./30/file0" [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] rmdir("./28" [pid 5029] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5812] memfd_create("syzkaller", 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5812] <... memfd_create resumed>) = 3 [pid 5034] openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... rmdir resumed>) = 0 [pid 5032] getdents64(4, [pid 5029] newfstatat(AT_FDCWD, "./28/file0", [pid 5812] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... openat resumed>) = 4 [pid 5033] umount2("./30/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5812] <... mmap resumed>) = 0x7f4f650a0000 [pid 5034] newfstatat(4, "", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] close(4 [pid 5029] umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] mkdir("./29", 0777 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] newfstatat(AT_FDCWD, "./30/cgroup", [pid 5032] <... close resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] getdents64(4, [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] rmdir("./29/file0" [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5029] openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5033] unlink("./30/cgroup" [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5034] getdents64(4, [pid 5033] <... unlink resumed>) = 0 [pid 5032] umount2("./29/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] <... openat resumed>) = 4 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5033] umount2("./30/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] newfstatat(4, "", [pid 5034] close(4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./29/cgroup", [pid 5030] close(3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... close resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./30/cgroup.net", [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./29/cgroup" [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5813 attached [pid 5034] rmdir("./29/file0" [pid 5033] unlink("./30/cgroup.net" [pid 5032] <... unlink resumed>) = 0 [pid 5029] getdents64(4, [pid 5813] set_robust_list(0x55555654e6a0, 24 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 5032] umount2("./29/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 82 [pid 5813] <... set_robust_list resumed>) = 0 [pid 5034] umount2("./29/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(3, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5813] chdir("./29" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5032] newfstatat(AT_FDCWD, "./29/cgroup.net", [pid 5029] getdents64(4, [pid 5813] <... chdir resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./29/cgroup", [pid 5033] close(3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5813] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... close resumed>) = 0 [pid 5032] unlink("./29/cgroup.net" [pid 5029] close(4 [pid 5813] <... prctl resumed>) = 0 [pid 5034] unlink("./29/cgroup" [pid 5033] rmdir("./30" [pid 5032] <... unlink resumed>) = 0 [pid 5813] setpgid(0, 0 [pid 5034] <... unlink resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] getdents64(3, [pid 5029] <... close resumed>) = 0 [pid 5813] <... setpgid resumed>) = 0 [pid 5034] umount2("./29/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] mkdir("./31", 0777 [pid 5032] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5029] rmdir("./28/file0" [pid 5813] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... mkdir resumed>) = 0 [pid 5032] close(3 [pid 5813] <... symlink resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./29/cgroup.net", [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5032] <... close resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5813] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu" [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5032] rmdir("./29" [pid 5029] umount2("./28/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5813] <... symlink resumed>) = 0 [pid 5034] unlink("./29/cgroup.net" [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] <... rmdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5813] symlink("/syzcgroup/net/syz3", "./cgroup.net" [pid 5034] <... unlink resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] mkdir("./30", 0777 [pid 5029] newfstatat(AT_FDCWD, "./28/cgroup", [pid 5813] <... symlink resumed>) = 0 [pid 5034] getdents64(3, [pid 5033] close(3 [pid 5032] <... mkdir resumed>) = 0 [pid 5813] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5033] <... close resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5813] <... openat resumed>) = 3 [pid 5034] close(3 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5814 attached [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5814] set_robust_list(0x55555654e6a0, 24 [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 89 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5814] <... set_robust_list resumed>) = 0 [pid 5032] close(3 [pid 5814] chdir("./31" [pid 5813] write(3, "1000", 4 [pid 5034] <... close resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5029] unlink("./28/cgroup" [pid 5814] <... chdir resumed>) = 0 [pid 5813] <... write resumed>) = 4 [pid 5034] rmdir("./29" [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5815 attached [pid 5814] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5813] close(3 [pid 5034] <... rmdir resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5815] set_robust_list(0x55555654e6a0, 24 [pid 5814] <... prctl resumed>) = 0 [pid 5813] <... close resumed>) = 0 [pid 5034] mkdir("./30", 0777 [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 87 [pid 5029] umount2("./28/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5815] <... set_robust_list resumed>) = 0 [pid 5814] setpgid(0, 0 [pid 5813] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... mkdir resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5815] chdir("./30" [pid 5814] <... setpgid resumed>) = 0 [pid 5813] <... symlink resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5029] newfstatat(AT_FDCWD, "./28/cgroup.net", [pid 5815] <... chdir resumed>) = 0 [pid 5814] symlink("/syzcgroup/unified/syz2", "./cgroup" [pid 5813] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] <... openat resumed>) = 3 [pid 5815] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5814] <... symlink resumed>) = 0 [pid 5813] <... futex resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5815] <... prctl resumed>) = 0 [pid 5814] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu" [pid 5813] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] unlink("./28/cgroup.net" [pid 5815] setpgid(0, 0 [pid 5814] <... symlink resumed>) = 0 [pid 5813] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5034] close(3 [pid 5815] <... setpgid resumed>) = 0 [pid 5814] symlink("/syzcgroup/net/syz2", "./cgroup.net" [pid 5813] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5034] <... close resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5815] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 5814] <... symlink resumed>) = 0 [pid 5813] <... mprotect resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] getdents64(3, [pid 5815] <... symlink resumed>) = 0 [pid 5814] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5813] rt_sigprocmask(SIG_BLOCK, ~[], ./strace-static-x86_64: Process 5816 attached [pid 5815] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 5814] <... openat resumed>) = 3 [pid 5813] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5029] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5816] set_robust_list(0x55555654e6a0, 24 [pid 5815] <... symlink resumed>) = 0 [pid 5814] write(3, "1000", 4 [pid 5813] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 91 [pid 5029] close(3./strace-static-x86_64: Process 5817 attached [pid 5816] <... set_robust_list resumed>) = 0 [pid 5815] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 5814] <... write resumed>) = 4 [pid 5029] <... close resumed>) = 0 [pid 5817] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5816] chdir("./30" [pid 5815] <... symlink resumed>) = 0 [pid 5814] close(3 [pid 5813] <... clone3 resumed> => {parent_tid=[83]}, 88) = 83 [pid 5029] rmdir("./28" [pid 5817] <... rseq resumed>) = 0 [pid 5816] <... chdir resumed>) = 0 [pid 5815] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5814] <... close resumed>) = 0 [pid 5813] rt_sigprocmask(SIG_SETMASK, [], [pid 5817] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5816] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5815] <... openat resumed>) = 3 [pid 5814] symlink("/dev/binderfs", "./binderfs" [pid 5813] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5817] <... set_robust_list resumed>) = 0 [pid 5816] <... prctl resumed>) = 0 [pid 5815] write(3, "1000", 4 [pid 5814] <... symlink resumed>) = 0 [pid 5813] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] mkdir("./29", 0777 [pid 5817] rt_sigprocmask(SIG_SETMASK, [], [pid 5816] setpgid(0, 0 [pid 5815] <... write resumed>) = 4 [pid 5814] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5813] <... futex resumed>) = 0 [pid 5817] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5816] <... setpgid resumed>) = 0 [pid 5815] close(3 [pid 5814] <... futex resumed>) = 0 [pid 5813] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5029] <... mkdir resumed>) = 0 [pid 5817] memfd_create("syzkaller", 0 [pid 5816] symlink("/syzcgroup/unified/syz5", "./cgroup" [pid 5815] <... close resumed>) = 0 [pid 5814] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5817] <... memfd_create resumed>) = 3 [pid 5816] <... symlink resumed>) = 0 [pid 5815] symlink("/dev/binderfs", "./binderfs" [pid 5814] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5817] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5816] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu" [pid 5815] <... symlink resumed>) = 0 [pid 5814] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5029] <... openat resumed>) = 3 [pid 5817] <... mmap resumed>) = 0x7f4f650a0000 [pid 5816] <... symlink resumed>) = 0 [pid 5815] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5814] <... mprotect resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5816] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 5815] <... futex resumed>) = 0 [pid 5814] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5816] <... symlink resumed>) = 0 [pid 5815] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5814] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5029] close(3 [pid 5816] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5815] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5814] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5029] <... close resumed>) = 0 ./strace-static-x86_64: Process 5818 attached [pid 5816] <... openat resumed>) = 3 [pid 5815] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5818] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5816] write(3, "1000", 4 [pid 5815] <... mprotect resumed>) = 0 [pid 5814] <... clone3 resumed> => {parent_tid=[90]}, 88) = 90 ./strace-static-x86_64: Process 5819 attached [pid 5818] <... rseq resumed>) = 0 [pid 5816] <... write resumed>) = 4 [pid 5815] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5814] rt_sigprocmask(SIG_SETMASK, [], [pid 5819] set_robust_list(0x55555654e6a0, 24 [pid 5818] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5816] close(3 [pid 5815] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5814] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 94 [pid 5819] <... set_robust_list resumed>) = 0 [pid 5818] <... set_robust_list resumed>) = 0 [pid 5816] <... close resumed>) = 0 [pid 5815] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5814] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5820 attached [pid 5819] chdir("./29" [pid 5818] rt_sigprocmask(SIG_SETMASK, [], [pid 5816] symlink("/dev/binderfs", "./binderfs" [pid 5814] <... futex resumed>) = 0 [pid 5820] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5819] <... chdir resumed>) = 0 [pid 5818] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5816] <... symlink resumed>) = 0 [pid 5815] <... clone3 resumed> => {parent_tid=[88]}, 88) = 88 [pid 5814] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5820] <... rseq resumed>) = 0 [pid 5819] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5818] memfd_create("syzkaller", 0 [pid 5816] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5815] rt_sigprocmask(SIG_SETMASK, [], [pid 5820] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5819] <... prctl resumed>) = 0 [pid 5818] <... memfd_create resumed>) = 3 [pid 5816] <... futex resumed>) = 0 [pid 5815] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5820] <... set_robust_list resumed>) = 0 [pid 5819] setpgid(0, 0 [pid 5818] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5816] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5815] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5820] rt_sigprocmask(SIG_SETMASK, [], [pid 5819] <... setpgid resumed>) = 0 [pid 5818] <... mmap resumed>) = 0x7f4f650a0000 [pid 5816] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5815] <... futex resumed>) = 0 [pid 5820] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5819] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 5815] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5820] memfd_create("syzkaller", 0) = 3 [pid 5819] <... symlink resumed>) = 0 [pid 5816] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5820] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5819] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu" [pid 5820] <... mmap resumed>) = 0x7f4f650a0000 [pid 5816] <... mprotect resumed>) = 0 [pid 5819] <... symlink resumed>) = 0 [pid 5816] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5819] symlink("/syzcgroup/net/syz0", "./cgroup.net" [pid 5816] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5819] <... symlink resumed>) = 0 [pid 5816] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5819] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5821 attached ) = 3 [pid 5821] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5819] write(3, "1000", 4 [pid 5816] <... clone3 resumed> => {parent_tid=[92]}, 88) = 92 [pid 5821] <... rseq resumed>) = 0 [pid 5819] <... write resumed>) = 4 [pid 5816] rt_sigprocmask(SIG_SETMASK, [], [pid 5821] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5819] close(3 [pid 5816] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5821] <... set_robust_list resumed>) = 0 [pid 5819] <... close resumed>) = 0 [pid 5816] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5821] rt_sigprocmask(SIG_SETMASK, [], [pid 5819] symlink("/dev/binderfs", "./binderfs" [pid 5816] <... futex resumed>) = 0 [pid 5821] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5819] <... symlink resumed>) = 0 [pid 5816] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5821] memfd_create("syzkaller", 0 [pid 5819] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5821] <... memfd_create resumed>) = 3 [pid 5819] <... futex resumed>) = 0 [pid 5821] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5819] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5821] <... mmap resumed>) = 0x7f4f650a0000 [pid 5819] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5819] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5819] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5819] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5822 attached [pid 5822] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5819] <... clone3 resumed> => {parent_tid=[95]}, 88) = 95 [pid 5822] <... rseq resumed>) = 0 [pid 5819] rt_sigprocmask(SIG_SETMASK, [], [pid 5822] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5819] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5822] <... set_robust_list resumed>) = 0 [pid 5819] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5822] rt_sigprocmask(SIG_SETMASK, [], [pid 5819] <... futex resumed>) = 0 [pid 5822] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5819] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5822] memfd_create("syzkaller", 0) = 3 [pid 5822] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5812] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5817] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5821] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5818] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5822] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5820] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5812] <... write resumed>) = 16777216 [pid 5812] munmap(0x7f4f650a0000, 16777216) = 0 [pid 5812] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5812] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5812] close(3) = 0 [pid 5812] mkdir("./file0", 0777) = 0 [pid 5812] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5822] <... write resumed>) = 16777216 [pid 5821] <... write resumed>) = 16777216 [ 250.016175][ T5812] loop4: detected capacity change from 0 to 32768 [ 250.053094][ T5812] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [pid 5821] munmap(0x7f4f650a0000, 16777216 [pid 5822] munmap(0x7f4f650a0000, 16777216 [pid 5820] <... write resumed>) = 16777216 [pid 5818] <... write resumed>) = 16777216 [pid 5817] <... write resumed>) = 16777216 [ 250.086616][ T5812] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [pid 5818] munmap(0x7f4f650a0000, 16777216 [pid 5820] munmap(0x7f4f650a0000, 16777216 [pid 5817] munmap(0x7f4f650a0000, 16777216 [pid 5821] <... munmap resumed>) = 0 [pid 5821] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [ 250.136438][ T5812] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 250.161318][ T21] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 250.175856][ T21] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [pid 5821] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5821] close(3) = 0 [pid 5821] mkdir("./file0", 0777) = 0 [ 250.184316][ T5821] loop5: detected capacity change from 0 to 32768 [ 250.213298][ T5821] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 250.264067][ T5821] CPU: 0 PID: 5821 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 250.274579][ T5821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 250.284683][ T5821] Call Trace: [ 250.287993][ T5821] [ 250.290958][ T5821] dump_stack_lvl+0x136/0x150 [ 250.295702][ T5821] sysfs_warn_dup+0x80/0xa0 [ 250.300266][ T5821] sysfs_create_dir_ns+0x237/0x290 [ 250.305427][ T5821] ? sysfs_create_mount_point+0xb0/0xb0 [ 250.311021][ T5821] ? spin_bug+0x1c0/0x1c0 [ 250.315407][ T5821] ? do_raw_spin_unlock+0x175/0x230 [ 250.320662][ T5821] kobject_add_internal+0x2c9/0x9c0 [ 250.325912][ T5821] ? kfree+0x11/0x150 [ 250.329943][ T5821] kobject_init_and_add+0x101/0x170 [ 250.334462][ T21] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 158ms [ 250.335167][ T5821] ? kobject_create_and_add+0xf0/0xf0 [ 250.348023][ T5821] ? lockdep_init_map_type+0x21e/0x810 [ 250.353534][ T5821] ? lockdep_init_map_type+0x21e/0x810 [ 250.354092][ T21] gfs2: fsid=syz:syz.0: jid=0: Done [pid 5821] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5822] <... munmap resumed>) = 0 [pid 5820] <... munmap resumed>) = 0 [pid 5818] <... munmap resumed>) = 0 [pid 5817] <... munmap resumed>) = 0 [pid 5812] <... mount resumed>) = 0 [pid 5822] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5820] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5818] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5817] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5822] <... openat resumed>) = 4 [pid 5820] <... openat resumed>) = 4 [pid 5818] <... openat resumed>) = 4 [pid 5817] <... openat resumed>) = 4 [pid 5812] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5822] ioctl(4, LOOP_SET_FD, 3 [ 250.359037][ T5821] gfs2_sys_fs_add+0x1d5/0x450 [ 250.359073][ T5821] ? recover_store+0x170/0x170 [ 250.364329][ T5812] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 250.369065][ T5821] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 250.369104][ T5821] ? lockdep_hardirqs_on+0x7d/0x100 [ 250.369143][ T5821] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 250.369182][ T5821] gfs2_fill_super+0x1312/0x2aa0 [ 250.369229][ T5821] ? gfs2_reconfigure+0xf90/0xf90 [ 250.369264][ T5821] ? snprintf+0xbf/0x100 [pid 5820] ioctl(4, LOOP_SET_FD, 3 [pid 5818] ioctl(4, LOOP_SET_FD, 3 [pid 5817] ioctl(4, LOOP_SET_FD, 3 [pid 5812] <... openat resumed>) = 3 [pid 5822] <... ioctl resumed>) = 0 [pid 5820] <... ioctl resumed>) = 0 [pid 5812] chdir("./file0" [pid 5820] close(3 [pid 5812] <... chdir resumed>) = 0 [pid 5820] <... close resumed>) = 0 [pid 5812] ioctl(4, LOOP_CLR_FD [pid 5820] mkdir("./file0", 0777 [pid 5812] <... ioctl resumed>) = 0 [pid 5820] <... mkdir resumed>) = 0 [pid 5812] close(4 [pid 5820] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5812] <... close resumed>) = 0 [pid 5822] close(3 [pid 5812] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5822] <... close resumed>) = 0 [pid 5812] <... futex resumed>) = 1 [pid 5822] mkdir("./file0", 0777 [pid 5812] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5822] <... mkdir resumed>) = 0 [pid 5822] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5818] <... ioctl resumed>) = 0 [pid 5818] close(3) = 0 [pid 5818] mkdir("./file0", 0777) = 0 [pid 5817] <... ioctl resumed>) = 0 [pid 5817] close(3) = 0 [pid 5817] mkdir("./file0", 0777) = 0 [pid 5818] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [ 250.396105][ T5822] loop0: detected capacity change from 0 to 32768 [ 250.398775][ T5821] ? vsprintf+0x30/0x30 [ 250.404601][ T5820] loop1: detected capacity change from 0 to 32768 [ 250.408730][ T5821] ? wait_for_completion_io_timeout+0x20/0x20 [ 250.408779][ T5821] ? set_blocksize+0x2d8/0x370 [ 250.414722][ T5818] loop2: detected capacity change from 0 to 32768 [ 250.419444][ T5821] get_tree_bdev+0x43e/0x7d0 [ 250.419490][ T5821] ? gfs2_reconfigure+0xf90/0xf90 [ 250.419526][ T5821] gfs2_get_tree+0x4e/0x270 [ 250.419559][ T5821] vfs_get_tree+0x8d/0x350 [ 250.419597][ T5821] path_mount+0x136e/0x1e70 [ 250.419637][ T5821] ? putname+0x102/0x140 [ 250.425992][ T5817] loop3: detected capacity change from 0 to 32768 [ 250.430204][ T5821] ? lockdep_hardirqs_on+0x7d/0x100 [ 250.476363][ T5818] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 250.481172][ T5821] ? finish_automount+0xa30/0xa30 [ 250.498975][ T5821] ? putname+0x102/0x140 [ 250.503269][ T5821] __x64_sys_mount+0x283/0x300 [ 250.508167][ T5821] ? copy_mnt_ns+0xb30/0xb30 [pid 5817] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5811] <... futex resumed>) = 0 [pid 5811] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5812] <... futex resumed>) = 0 [pid 5811] <... futex resumed>) = 1 [pid 5812] openat(AT_FDCWD, "./file0", O_RDONLY [ 250.512808][ T5821] ? lockdep_hardirqs_on+0x7d/0x100 [ 250.518069][ T5821] ? _raw_spin_unlock_irq+0x2e/0x50 [ 250.523329][ T5821] ? ptrace_notify+0xfe/0x140 [ 250.528074][ T5821] do_syscall_64+0x39/0xb0 [ 250.532541][ T5821] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 250.538513][ T5821] RIP: 0033:0x7f4f6dd11c5a [ 250.539509][ T5812] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [pid 5811] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 5811] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5811] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5811] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [ 250.542951][ T5821] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 250.542986][ T5821] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 250.555348][ T5820] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 250.570921][ T5821] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 250.570947][ T5821] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 250.570969][ T5821] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 250.570993][ T5821] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 250.571016][ T5821] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 250.613120][ T5812] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 250.613120][ T5812] inode = 12 2341 [ 250.613120][ T5812] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 250.618782][ T5821] [ 250.621721][ T5821] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 250.627255][ T5817] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 250.645925][ T5821] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 250.666430][ T5822] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 250.670389][ T5820] CPU: 0 PID: 5820 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 250.694396][ T5820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 250.704499][ T5820] Call Trace: [ 250.707810][ T5820] [ 250.710769][ T5820] dump_stack_lvl+0x136/0x150 [ 250.715524][ T5820] sysfs_warn_dup+0x80/0xa0 [ 250.720073][ T5820] sysfs_create_dir_ns+0x237/0x290 [ 250.725233][ T5820] ? sysfs_create_mount_point+0xb0/0xb0 [ 250.730828][ T5820] ? spin_bug+0x1c0/0x1c0 [ 250.735192][ T5820] ? do_raw_spin_unlock+0x175/0x230 [ 250.740426][ T5820] kobject_add_internal+0x2c9/0x9c0 [ 250.745655][ T5820] ? kfree+0x11/0x150 [ 250.749664][ T5820] kobject_init_and_add+0x101/0x170 [ 250.754891][ T5820] ? kobject_create_and_add+0xf0/0xf0 [ 250.760292][ T5820] ? lockdep_init_map_type+0x21e/0x810 [ 250.765811][ T5820] ? lockdep_hardirqs_on+0x7d/0x100 [ 250.771044][ T5820] ? lockdep_init_map_type+0x21e/0x810 [ 250.776561][ T5820] gfs2_sys_fs_add+0x1d5/0x450 [ 250.781391][ T5820] ? recover_store+0x170/0x170 [ 250.786187][ T5820] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 250.791962][ T5820] gfs2_fill_super+0x1312/0x2aa0 [ 250.796939][ T5820] ? gfs2_reconfigure+0xf90/0xf90 [ 250.801994][ T5820] ? snprintf+0xbf/0x100 [ 250.806274][ T5820] ? vsprintf+0x30/0x30 [ 250.810457][ T5820] ? wait_for_completion_io_timeout+0x20/0x20 [ 250.816559][ T5820] ? set_blocksize+0x2d8/0x370 [ 250.821352][ T5820] get_tree_bdev+0x43e/0x7d0 [ 250.825987][ T5820] ? gfs2_reconfigure+0xf90/0xf90 [ 250.831055][ T5820] gfs2_get_tree+0x4e/0x270 [ 250.835587][ T5820] vfs_get_tree+0x8d/0x350 [ 250.840039][ T5820] path_mount+0x136e/0x1e70 [ 250.844575][ T5820] ? putname+0x102/0x140 [ 250.848845][ T5820] ? lockdep_hardirqs_on+0x7d/0x100 [ 250.854070][ T5820] ? finish_automount+0xa30/0xa30 [ 250.859122][ T5820] ? putname+0x102/0x140 [ 250.863393][ T5820] __x64_sys_mount+0x283/0x300 [ 250.868186][ T5820] ? copy_mnt_ns+0xb30/0xb30 [ 250.872807][ T5820] ? lockdep_hardirqs_on+0x7d/0x100 [ 250.878050][ T5820] ? _raw_spin_unlock_irq+0x2e/0x50 [ 250.883307][ T5820] ? ptrace_notify+0xfe/0x140 [ 250.888022][ T5820] do_syscall_64+0x39/0xb0 [ 250.892481][ T5820] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 250.898421][ T5820] RIP: 0033:0x7f4f6dd11c5a [ 250.902868][ T5820] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 250.922526][ T5820] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 250.930973][ T5820] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 250.939052][ T5820] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 250.947086][ T5820] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 250.955078][ T5820] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [pid 5811] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 250.963073][ T5820] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 250.971082][ T5820] [ 250.983951][ T5812] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 250.993298][ T5818] CPU: 0 PID: 5818 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 251.003767][ T5818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 251.013860][ T5818] Call Trace: [ 251.017174][ T5818] [ 251.020140][ T5818] dump_stack_lvl+0x136/0x150 [ 251.023449][ T5820] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 251.024881][ T5818] sysfs_warn_dup+0x80/0xa0 [ 251.024923][ T5818] sysfs_create_dir_ns+0x237/0x290 [ 251.039870][ T5820] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 251.043325][ T5818] ? sysfs_create_mount_point+0xb0/0xb0 [ 251.043370][ T5818] ? spin_bug+0x1c0/0x1c0 [ 251.064951][ T5818] ? do_raw_spin_unlock+0x175/0x230 [ 251.070216][ T5818] kobject_add_internal+0x2c9/0x9c0 [ 251.075462][ T5818] ? kfree+0x11/0x150 [ 251.079520][ T5818] kobject_init_and_add+0x101/0x170 [ 251.084767][ T5818] ? kobject_create_and_add+0xf0/0xf0 [ 251.090186][ T5818] ? lockdep_init_map_type+0x21e/0x810 [ 251.095699][ T5818] ? lockdep_hardirqs_on+0x7d/0x100 [ 251.100959][ T5818] ? lockdep_init_map_type+0x21e/0x810 [ 251.106459][ T5818] gfs2_sys_fs_add+0x1d5/0x450 [ 251.111262][ T5818] ? recover_store+0x170/0x170 [ 251.116052][ T5818] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 251.121835][ T5818] gfs2_fill_super+0x1312/0x2aa0 [ 251.126888][ T5818] ? gfs2_reconfigure+0xf90/0xf90 [ 251.131937][ T5818] ? snprintf+0xbf/0x100 [ 251.136214][ T5818] ? vsprintf+0x30/0x30 [ 251.140397][ T5818] ? wait_for_completion_io_timeout+0x20/0x20 [ 251.146496][ T5818] ? set_blocksize+0x2d8/0x370 [ 251.151292][ T5818] get_tree_bdev+0x43e/0x7d0 [ 251.155950][ T5818] ? gfs2_reconfigure+0xf90/0xf90 [ 251.161035][ T5818] gfs2_get_tree+0x4e/0x270 [ 251.165597][ T5818] vfs_get_tree+0x8d/0x350 [ 251.170139][ T5818] path_mount+0x136e/0x1e70 [ 251.174681][ T5818] ? putname+0x102/0x140 [ 251.178956][ T5818] ? lockdep_hardirqs_on+0x7d/0x100 [ 251.184187][ T5818] ? finish_automount+0xa30/0xa30 [ 251.189251][ T5818] ? putname+0x102/0x140 [ 251.196561][ T5818] __x64_sys_mount+0x283/0x300 [ 251.201360][ T5818] ? copy_mnt_ns+0xb30/0xb30 [ 251.205981][ T5818] ? lockdep_hardirqs_on+0x7d/0x100 [ 251.211209][ T5818] ? _raw_spin_unlock_irq+0x2e/0x50 [ 251.216447][ T5818] ? ptrace_notify+0xfe/0x140 [ 251.221166][ T5818] do_syscall_64+0x39/0xb0 [ 251.225608][ T5818] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 251.231551][ T5818] RIP: 0033:0x7f4f6dd11c5a [ 251.235990][ T5818] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 251.255625][ T5818] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 251.264068][ T5818] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 251.272149][ T5818] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 251.280142][ T5818] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 251.288164][ T5818] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 251.296157][ T5818] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 251.304149][ T5818] [pid 5821] <... mount resumed>) = -1 EEXIST (File exists) [ 251.308673][ T5822] CPU: 0 PID: 5822 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 251.319151][ T5822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 251.320584][ T5812] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5812 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 251.329221][ T5822] Call Trace: [ 251.329237][ T5822] [ 251.329247][ T5822] dump_stack_lvl+0x136/0x150 [ 251.329298][ T5822] sysfs_warn_dup+0x80/0xa0 [ 251.329333][ T5822] sysfs_create_dir_ns+0x237/0x290 [ 251.329370][ T5822] ? sysfs_create_mount_point+0xb0/0xb0 [ 251.329408][ T5822] ? spin_bug+0x1c0/0x1c0 [ 251.329450][ T5822] ? do_raw_spin_unlock+0x175/0x230 [ 251.329494][ T5822] kobject_add_internal+0x2c9/0x9c0 [ 251.380393][ T5822] ? kfree+0x11/0x150 [ 251.384429][ T5822] kobject_init_and_add+0x101/0x170 [ 251.389681][ T5822] ? kobject_create_and_add+0xf0/0xf0 [ 251.393310][ T5812] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 251.395079][ T5822] ? lockdep_init_map_type+0x21e/0x810 [ 251.395126][ T5822] ? lockdep_hardirqs_on+0x7d/0x100 [ 251.414143][ T5812] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 251.414203][ T5822] ? lockdep_init_map_type+0x21e/0x810 [ 251.423397][ T5812] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 251.426844][ T5822] gfs2_sys_fs_add+0x1d5/0x450 [ 251.426883][ T5822] ? recover_store+0x170/0x170 [ 251.426928][ T5822] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 251.437561][ T5812] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 251.440458][ T5822] gfs2_fill_super+0x1312/0x2aa0 [ 251.440505][ T5822] ? gfs2_reconfigure+0xf90/0xf90 [ 251.451605][ T5812] gfs2: fsid=syz:syz.0: File system withdrawn [ 251.457397][ T5822] ? snprintf+0xbf/0x100 [ 251.457440][ T5822] ? vsprintf+0x30/0x30 [ 251.457475][ T5822] ? wait_for_completion_io_timeout+0x20/0x20 [ 251.457517][ T5822] ? set_blocksize+0x2d8/0x370 [ 251.457556][ T5822] get_tree_bdev+0x43e/0x7d0 [ 251.457596][ T5822] ? gfs2_reconfigure+0xf90/0xf90 [ 251.457634][ T5822] gfs2_get_tree+0x4e/0x270 [ 251.457669][ T5822] vfs_get_tree+0x8d/0x350 [ 251.457706][ T5822] path_mount+0x136e/0x1e70 [ 251.457746][ T5822] ? putname+0x102/0x140 [ 251.457778][ T5822] ? lockdep_hardirqs_on+0x7d/0x100 [ 251.457816][ T5822] ? finish_automount+0xa30/0xa30 [ 251.457855][ T5822] ? putname+0x102/0x140 [ 251.457886][ T5822] __x64_sys_mount+0x283/0x300 [ 251.540088][ T5822] ? copy_mnt_ns+0xb30/0xb30 [ 251.544725][ T5822] ? lockdep_hardirqs_on+0x7d/0x100 [ 251.549973][ T5822] ? _raw_spin_unlock_irq+0x2e/0x50 [ 251.555239][ T5822] ? ptrace_notify+0xfe/0x140 [ 251.559987][ T5822] do_syscall_64+0x39/0xb0 [pid 5821] ioctl(4, LOOP_CLR_FD [pid 5811] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[89]}, 88) = 89 [pid 5811] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 ./strace-static-x86_64: Process 5829 attached [pid 5811] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5829] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5811] <... futex resumed>) = 0 [pid 5829] <... rseq resumed>) = 0 [pid 5811] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5829] set_robust_list(0x7f4f6609f9a0, 24) = 0 [ 251.564456][ T5822] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 251.570416][ T5822] RIP: 0033:0x7f4f6dd11c5a [ 251.574852][ T5822] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 251.594513][ T5822] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 251.602993][ T5822] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 251.611025][ T5822] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [pid 5829] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5829] ioctl(0, VFAT_IOCTL_READDIR_SHORT, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 5829] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5820] <... mount resumed>) = -1 EEXIST (File exists) [ 251.619038][ T5822] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 251.627055][ T5822] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 251.635071][ T5822] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 251.643098][ T5822] [ 251.647488][ T5822] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 251.651804][ T5812] CPU: 1 PID: 5812 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 251.661584][ T5822] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 251.671815][ T5812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 251.671837][ T5812] Call Trace: [ 251.671848][ T5812] [ 251.671860][ T5812] dump_stack_lvl+0x136/0x150 [ 251.684034][ T5818] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 251.688450][ T5812] gfs2_withdraw+0xb33/0x1060 [ 251.688492][ T5812] ? gfs2_consist_inode_i+0x104/0x150 [ 251.688528][ T5812] gfs2_dirent_scan+0x32a/0x3d0 [ 251.691833][ T5818] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 251.694768][ T5812] ? gfs2_dirent_prev+0x210/0x210 [ 251.739836][ T5812] ? gfs2_dirent_prev+0x210/0x210 [ 251.744911][ T5812] gfs2_dirent_search+0x47d/0x580 [ 251.750010][ T5812] ? get_first_leaf+0x190/0x190 [ 251.754907][ T5812] ? gfs2_permission+0x256/0x3e0 [ 251.759883][ T5812] gfs2_dir_search+0x8d/0x2d0 [ 251.764599][ T5812] ? gfs2_dir_read+0x14e0/0x14e0 [ 251.769587][ T5812] gfs2_lookupi+0x481/0x640 [ 251.774123][ T5812] ? gfs2_lookup_by_inum+0x100/0x100 [ 251.779443][ T5812] ? __gfs2_lookup+0x83/0x280 [ 251.784325][ T5812] ? d_alloc_parallel+0x693/0x1530 [ 251.789468][ T5812] __gfs2_lookup+0x83/0x280 [ 251.794004][ T5812] ? gfs2_lookupi+0x640/0x640 [ 251.798729][ T5812] ? __d_lookup_rcu+0x4e0/0x4e0 [ 251.803618][ T5812] ? __d_lookup+0x289/0x4c0 [ 251.808159][ T5812] gfs2_atomic_open+0xde/0x250 [ 251.812965][ T5812] ? __gfs2_lookup+0x280/0x280 [ 251.817766][ T5812] lookup_open.isra.0+0xce2/0x1400 [ 251.822913][ T5812] ? link_path_walk.part.0+0xd60/0xd60 [ 251.828409][ T5812] ? lookup_fast+0x14e/0x520 [ 251.833119][ T5812] path_openat+0x969/0x2710 [ 251.837659][ T5812] ? path_lookupat+0x840/0x840 [ 251.842452][ T5812] ? find_held_lock+0x2d/0x110 [ 251.847246][ T5812] do_filp_open+0x1ba/0x410 [ 251.851780][ T5812] ? may_open_dev+0xf0/0xf0 [ 251.856320][ T5812] ? find_held_lock+0x2d/0x110 [ 251.861113][ T5812] ? do_raw_spin_lock+0x124/0x2b0 [ 251.866172][ T5812] ? spin_bug+0x1c0/0x1c0 [ 251.870530][ T5812] ? _raw_spin_unlock+0x28/0x40 [ 251.875420][ T5812] ? alloc_fd+0x2e4/0x750 [ 251.879785][ T5812] do_sys_openat2+0x160/0x1c0 [ 251.884496][ T5812] ? build_open_flags+0x720/0x720 [ 251.889648][ T5812] ? ptrace_notify+0xfe/0x140 [ 251.894362][ T5812] ? lock_downgrade+0x690/0x690 [ 251.899240][ T5812] __x64_sys_openat+0x143/0x1f0 [ 251.904127][ T5812] ? __ia32_sys_open+0x1c0/0x1c0 [ 251.909095][ T5812] ? _raw_spin_unlock_irq+0x23/0x50 [ 251.914328][ T5812] ? lockdep_hardirqs_on+0x7d/0x100 [ 251.919558][ T5812] ? _raw_spin_unlock_irq+0x2e/0x50 [ 251.924789][ T5812] ? ptrace_notify+0xfe/0x140 [ 251.929516][ T5812] do_syscall_64+0x39/0xb0 [ 251.933956][ T5812] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 251.939890][ T5812] RIP: 0033:0x7f4f6dd107f9 [ 251.944323][ T5812] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 251.963955][ T5812] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 251.972479][ T5812] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 251.980475][ T5812] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [ 251.988473][ T5812] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 251.996471][ T5812] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 252.004470][ T5812] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 252.012468][ T5812] [pid 5820] ioctl(4, LOOP_CLR_FD [pid 5829] <... futex resumed>) = 1 [pid 5822] <... mount resumed>) = -1 EEXIST (File exists) [pid 5811] <... futex resumed>) = 0 [ 252.018223][ T5817] CPU: 0 PID: 5817 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 252.028705][ T5817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 252.038795][ T5817] Call Trace: [ 252.042104][ T5817] [ 252.045066][ T5817] dump_stack_lvl+0x136/0x150 [ 252.049810][ T5817] sysfs_warn_dup+0x80/0xa0 [ 252.054526][ T5817] sysfs_create_dir_ns+0x237/0x290 [ 252.059708][ T5817] ? sysfs_create_mount_point+0xb0/0xb0 [ 252.065310][ T5817] ? spin_bug+0x1c0/0x1c0 [ 252.069698][ T5817] ? do_raw_spin_unlock+0x175/0x230 [ 252.074959][ T5817] kobject_add_internal+0x2c9/0x9c0 [ 252.080232][ T5817] ? kfree+0x11/0x150 [ 252.084263][ T5817] kobject_init_and_add+0x101/0x170 [ 252.089514][ T5817] ? kobject_create_and_add+0xf0/0xf0 [ 252.094944][ T5817] ? lockdep_init_map_type+0x21e/0x810 [ 252.100459][ T5817] ? lockdep_hardirqs_on+0x7d/0x100 [ 252.105712][ T5817] ? lockdep_init_map_type+0x21e/0x810 [ 252.111227][ T5817] gfs2_sys_fs_add+0x1d5/0x450 [ 252.116039][ T5817] ? recover_store+0x170/0x170 [ 252.120829][ T5817] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 252.126600][ T5817] gfs2_fill_super+0x1312/0x2aa0 [ 252.131567][ T5817] ? gfs2_reconfigure+0xf90/0xf90 [ 252.136627][ T5817] ? snprintf+0xbf/0x100 [ 252.140981][ T5817] ? vsprintf+0x30/0x30 [ 252.145168][ T5817] ? wait_for_completion_io_timeout+0x20/0x20 [ 252.151268][ T5817] ? set_blocksize+0x2d8/0x370 [ 252.156064][ T5817] get_tree_bdev+0x43e/0x7d0 [ 252.160681][ T5817] ? gfs2_reconfigure+0xf90/0xf90 [ 252.165733][ T5817] gfs2_get_tree+0x4e/0x270 [ 252.170265][ T5817] vfs_get_tree+0x8d/0x350 [ 252.174811][ T5817] path_mount+0x136e/0x1e70 [ 252.179430][ T5817] ? putname+0x102/0x140 [ 252.183697][ T5817] ? lockdep_hardirqs_on+0x7d/0x100 [ 252.188925][ T5817] ? finish_automount+0xa30/0xa30 [ 252.193984][ T5817] ? putname+0x102/0x140 [ 252.198256][ T5817] __x64_sys_mount+0x283/0x300 [ 252.203050][ T5817] ? copy_mnt_ns+0xb30/0xb30 [ 252.207686][ T5817] ? lockdep_hardirqs_on+0x7d/0x100 [ 252.212915][ T5817] ? _raw_spin_unlock_irq+0x2e/0x50 [ 252.218150][ T5817] ? ptrace_notify+0xfe/0x140 [ 252.222871][ T5817] do_syscall_64+0x39/0xb0 [ 252.227311][ T5817] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 252.233247][ T5817] RIP: 0033:0x7f4f6dd11c5a [ 252.237696][ T5817] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 252.257325][ T5817] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 252.265763][ T5817] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 252.274222][ T5817] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 252.282226][ T5817] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 252.290216][ T5817] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 252.298210][ T5817] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 252.306212][ T5817] [pid 5822] ioctl(4, LOOP_CLR_FD [pid 5829] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5812] <... openat resumed>) = -1 EIO (Input/output error) [pid 5811] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5813] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5829] <... openat resumed>) = -1 EIO (Input/output error) [pid 5812] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5811] <... futex resumed>) = 0 [pid 5829] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5812] <... futex resumed>) = 0 [pid 5811] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5829] <... futex resumed>) = 0 [pid 5812] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5811] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5829] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5811] close(3) = 0 [pid 5811] close(4) = -1 EBADF (Bad file descriptor) [pid 5811] close(5) = -1 EBADF (Bad file descriptor) [pid 5811] close(6) = -1 EBADF (Bad file descriptor) [pid 5811] close(7) = -1 EBADF (Bad file descriptor) [pid 5811] close(8) = -1 EBADF (Bad file descriptor) [pid 5811] close(9) = -1 EBADF (Bad file descriptor) [pid 5811] close(10) = -1 EBADF (Bad file descriptor) [pid 5811] close(11) = -1 EBADF (Bad file descriptor) [pid 5811] close(12) = -1 EBADF (Bad file descriptor) [pid 5811] close(13) = -1 EBADF (Bad file descriptor) [pid 5811] close(14) = -1 EBADF (Bad file descriptor) [pid 5811] close(15) = -1 EBADF (Bad file descriptor) [pid 5811] close(16) = -1 EBADF (Bad file descriptor) [pid 5811] close(17) = -1 EBADF (Bad file descriptor) [pid 5811] close(18) = -1 EBADF (Bad file descriptor) [pid 5811] close(19) = -1 EBADF (Bad file descriptor) [pid 5811] close(20) = -1 EBADF (Bad file descriptor) [pid 5811] close(21) = -1 EBADF (Bad file descriptor) [pid 5811] close(22) = -1 EBADF (Bad file descriptor) [pid 5811] close(23) = -1 EBADF (Bad file descriptor) [pid 5811] close(24) = -1 EBADF (Bad file descriptor) [pid 5811] close(25) = -1 EBADF (Bad file descriptor) [pid 5811] close(26) = -1 EBADF (Bad file descriptor) [pid 5811] close(27) = -1 EBADF (Bad file descriptor) [pid 5811] close(28) = -1 EBADF (Bad file descriptor) [pid 5811] close(29) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5811] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5811] exit_group(0 [pid 5829] <... futex resumed>) = ? [pid 5812] <... futex resumed>) = ? [pid 5811] <... exit_group resumed>) = ? [pid 5829] +++ exited with 0 +++ [pid 5818] <... mount resumed>) = -1 EEXIST (File exists) [pid 5814] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5813] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5812] +++ exited with 0 +++ [pid 5811] +++ exited with 0 +++ [pid 5818] ioctl(4, LOOP_CLR_FD [ 252.316448][ T5817] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 5814] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5813] <... futex resumed>) = 0 [pid 5814] <... futex resumed>) = 0 [pid 5813] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5814] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5813] <... mmap resumed>) = 0x7f4f6607f000 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=87, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=66 /* 0.66 s */} --- [pid 5815] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5814] <... mmap resumed>) = 0x7f4f6607f000 [pid 5813] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5815] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5814] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5813] <... mprotect resumed>) = 0 [pid 5814] <... mprotect resumed>) = 0 [pid 5813] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5814] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5813] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5031] umount2("./29", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5814] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5813] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5814] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 5831 attached ./strace-static-x86_64: Process 5830 attached [pid 5031] openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5831] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5830] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5814] <... clone3 resumed> => {parent_tid=[91]}, 88) = 91 [pid 5813] <... clone3 resumed> => {parent_tid=[84]}, 88) = 84 [pid 5831] <... rseq resumed>) = 0 [pid 5830] <... rseq resumed>) = 0 [pid 5815] <... futex resumed>) = 0 [pid 5814] rt_sigprocmask(SIG_SETMASK, [], [pid 5813] rt_sigprocmask(SIG_SETMASK, [], [pid 5031] <... openat resumed>) = 3 [pid 5831] set_robust_list(0x7f4f6609f9a0, 24 [pid 5830] set_robust_list(0x7f4f6609f9a0, 24 [pid 5815] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5814] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5813] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5031] newfstatat(3, "", [pid 5831] <... set_robust_list resumed>) = 0 [pid 5830] <... set_robust_list resumed>) = 0 [pid 5816] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5814] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5813] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5831] rt_sigprocmask(SIG_SETMASK, [], [pid 5830] rt_sigprocmask(SIG_SETMASK, [], [pid 5816] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5814] <... futex resumed>) = 0 [pid 5813] <... futex resumed>) = 0 [pid 5031] getdents64(3, [pid 5831] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5830] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5816] <... futex resumed>) = 0 [pid 5814] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5813] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5831] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5830] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5815] <... mmap resumed>) = 0x7f4f6607f000 [pid 5031] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5831] <... openat resumed>) = 3 [pid 5830] <... openat resumed>) = 3 [pid 5031] umount2("./29/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5831] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5830] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5831] <... futex resumed>) = 1 [pid 5830] <... futex resumed>) = 1 [pid 5814] <... futex resumed>) = 0 [pid 5813] <... futex resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./29/cgroup.cpu", [pid 5831] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5830] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5814] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5813] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5831] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5830] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5814] <... futex resumed>) = 0 [pid 5813] <... futex resumed>) = 0 [pid 5816] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5815] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5831] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5813] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5831] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5819] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5031] unlink("./29/cgroup.cpu" [pid 5831] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5819] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5831] <... futex resumed>) = 1 [pid 5813] <... futex resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5831] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5816] <... mmap resumed>) = 0x7f4f6607f000 [pid 5813] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] umount2("./29/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5831] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5830] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5816] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5814] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5813] <... futex resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5831] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5819] <... futex resumed>) = 0 [pid 5813] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5031] newfstatat(AT_FDCWD, "./29/binderfs", [pid 5831] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5819] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5831] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5816] <... mprotect resumed>) = 0 [pid 5815] <... mprotect resumed>) = 0 [pid 5031] unlink("./29/binderfs" [pid 5831] <... futex resumed>) = 1 [pid 5830] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5819] <... mmap resumed>) = 0x7f4f6607f000 [pid 5816] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5815] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5813] <... futex resumed>) = 0 [pid 5831] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5816] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5815] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5815] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5031] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5832 attached [pid 5832] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5815] <... clone3 resumed> => {parent_tid=[89]}, 88) = 89 [pid 5832] <... rseq resumed>) = 0 [pid 5815] rt_sigprocmask(SIG_SETMASK, [], [pid 5832] set_robust_list(0x7f4f6609f9a0, 24 [pid 5815] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5832] <... set_robust_list resumed>) = 0 [pid 5815] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5832] rt_sigprocmask(SIG_SETMASK, [], [pid 5815] <... futex resumed>) = 0 [pid 5832] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5815] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5832] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 5832] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5815] <... futex resumed>) = 0 [pid 5832] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5815] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5832] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5819] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5815] <... futex resumed>) = 0 [pid 5832] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5819] <... mprotect resumed>) = 0 [pid 5815] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5832] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5830] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5819] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5832] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5815] <... futex resumed>) = 0 [pid 5832] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5815] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5832] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5815] <... futex resumed>) = 0 [pid 5832] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5815] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5832] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5832] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5815] <... futex resumed>) = 0 [pid 5832] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5814] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5816] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5833 attached => {parent_tid=[93]}, 88) = 93 [pid 5816] rt_sigprocmask(SIG_SETMASK, [], [pid 5833] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5816] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5816] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5833] <... rseq resumed>) = 0 [pid 5816] <... futex resumed>) = 0 [pid 5833] set_robust_list(0x7f4f6609f9a0, 24) = 0 [pid 5833] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5833] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 5833] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5833] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5830] <... futex resumed>) = 0 [pid 5814] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5830] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5814] <... futex resumed>) = 0 [pid 5830] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5814] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5830] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5819] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5816] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5819] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5816] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) ./strace-static-x86_64: Process 5834 attached [pid 5834] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5819] <... clone3 resumed> => {parent_tid=[96]}, 88) = 96 [pid 5834] <... rseq resumed>) = 0 [pid 5819] rt_sigprocmask(SIG_SETMASK, [], [pid 5834] set_robust_list(0x7f4f6609f9a0, 24 [pid 5819] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5834] <... set_robust_list resumed>) = 0 [pid 5819] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5834] rt_sigprocmask(SIG_SETMASK, [], [pid 5819] <... futex resumed>) = 0 [pid 5834] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5819] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5834] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 5834] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5819] <... futex resumed>) = 0 [pid 5834] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5819] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5834] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5819] <... futex resumed>) = 0 [pid 5834] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5819] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5834] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5834] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5819] <... futex resumed>) = 0 [pid 5834] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5819] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5834] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5819] <... futex resumed>) = 0 [pid 5834] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5819] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5816] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5830] <... futex resumed>) = 1 [pid 5814] <... futex resumed>) = 0 [pid 5834] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5834] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5819] <... futex resumed>) = 0 [ 252.656167][ T5817] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 5834] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5833] <... futex resumed>) = 0 [pid 5816] <... futex resumed>) = 1 [pid 5817] <... mount resumed>) = -1 EEXIST (File exists) [pid 5817] ioctl(4, LOOP_CLR_FD [pid 5833] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5816] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5833] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5833] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5816] <... futex resumed>) = 0 [pid 5816] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5833] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5816] <... futex resumed>) = 0 [pid 5816] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5833] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5830] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5833] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5816] <... futex resumed>) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 5833] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5031] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5820] <... ioctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./29/file0", [pid 5820] close(4) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5820] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5815] close(3 [pid 5031] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5820] <... futex resumed>) = 0 [pid 5815] <... close resumed>) = 0 [pid 5820] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5815] close(4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5815] close(5) = -1 EBADF (Bad file descriptor) [pid 5031] <... openat resumed>) = 4 [pid 5815] close(6 [pid 5031] newfstatat(4, "", [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] close(7 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] getdents64(4, [pid 5815] close(8) = -1 EBADF (Bad file descriptor) [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5815] close(9 [pid 5031] getdents64(4, [pid 5821] <... ioctl resumed>) = 0 [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5821] close(4 [pid 5815] close(10 [pid 5031] close(4 [pid 5821] <... close resumed>) = 0 [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5821] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5815] close(11 [pid 5031] <... close resumed>) = 0 [pid 5821] <... futex resumed>) = 0 [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] rmdir("./29/file0" [pid 5821] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5818] <... ioctl resumed>) = 0 [pid 5816] close(3 [pid 5815] close(12 [pid 5818] close(4 [pid 5816] <... close resumed>) = 0 [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... rmdir resumed>) = 0 [pid 5818] <... close resumed>) = 0 [pid 5816] close(4 [pid 5815] close(13 [pid 5031] umount2("./29/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5818] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5818] <... futex resumed>) = 0 [pid 5816] close(5 [pid 5815] close(14 [pid 5814] <... close resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./29/cgroup", [pid 5818] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5816] close(6 [pid 5815] close(15 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] unlink("./29/cgroup" [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(5 [pid 5816] close(7 [pid 5815] close(16 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... unlink resumed>) = 0 [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(6 [pid 5031] umount2("./29/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5816] close(8 [pid 5815] close(17 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(7 [pid 5031] newfstatat(AT_FDCWD, "./29/cgroup.net", [pid 5816] close(9 [pid 5815] close(18 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(8 [pid 5031] unlink("./29/cgroup.net" [pid 5816] close(10 [pid 5815] close(19 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(9 [pid 5031] <... unlink resumed>) = 0 [pid 5816] close(11 [pid 5815] close(20 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] getdents64(3, [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(10 [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5816] close(12 [pid 5815] close(21 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] close(3 [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(11 [pid 5031] <... close resumed>) = 0 [pid 5816] close(13 [pid 5815] close(22 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] rmdir("./29" [pid 5822] <... ioctl resumed>) = 0 [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(12 [pid 5816] close(14 [pid 5815] close(23 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... rmdir resumed>) = 0 [pid 5822] close(4 [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(13 [pid 5031] mkdir("./30", 0777 [pid 5822] <... close resumed>) = 0 [pid 5816] close(15 [pid 5815] close(24 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(14 [pid 5822] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] <... mkdir resumed>) = 0 [pid 5822] <... futex resumed>) = 0 [pid 5816] close(16 [pid 5815] close(25 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5822] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5819] close(3 [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(15 [pid 5031] <... openat resumed>) = 3 [pid 5819] <... close resumed>) = 0 [pid 5816] close(17 [pid 5815] close(26 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5819] close(4 [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(16 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5816] close(18 [pid 5815] close(27 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] close(3 [pid 5819] close(5 [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(17 [pid 5031] <... close resumed>) = 0 [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5816] close(19 [pid 5815] close(28 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5819] close(6 [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(18 [pid 5815] close(29./strace-static-x86_64: Process 5835 attached [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5816] close(20 [pid 5815] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5819] close(7write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5814] close(19 [pid 5835] set_robust_list(0x55555654e6a0, 24 [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 90 [pid 5835] <... set_robust_list resumed>) = 0 [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5816] close(21 [pid 5815] <... write resumed>) = 156 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5835] chdir("./30" [pid 5819] close(8 [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5815] exit_group(0 [pid 5814] close(20 [pid 5835] <... chdir resumed>) = 0 [pid 5832] <... futex resumed>) = ? [pid 5820] <... futex resumed>) = ? [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5816] close(22 [pid 5815] <... exit_group resumed>) = ? [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5835] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5832] +++ exited with 0 +++ [pid 5819] close(9 [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5835] <... prctl resumed>) = 0 [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5816] close(23 [pid 5814] close(21 [pid 5835] setpgid(0, 0 [pid 5819] close(10 [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5835] <... setpgid resumed>) = 0 [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5816] close(24 [pid 5814] close(22 [pid 5835] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5819] close(11 [pid 5816] close(25 [pid 5835] <... symlink resumed>) = 0 [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(23 [pid 5835] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 5820] +++ exited with 0 +++ [pid 5819] close(12 [pid 5816] close(26 [pid 5815] +++ exited with 0 +++ [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5835] <... symlink resumed>) = 0 [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(24 [pid 5835] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 5819] close(13 [pid 5817] <... ioctl resumed>) = 0 [pid 5816] close(27 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5835] <... symlink resumed>) = 0 [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5817] close(4 [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(25 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=87, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=64 /* 0.64 s */} --- [pid 5835] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5819] close(14 [pid 5817] <... close resumed>) = 0 [pid 5816] close(28 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./30", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5835] <... openat resumed>) = 3 [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5817] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(26 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5835] write(3, "1000", 4 [pid 5819] close(15 [pid 5817] <... futex resumed>) = 0 [pid 5816] close(29 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5835] <... write resumed>) = 4 [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5817] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5816] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] close(27 [pid 5032] <... openat resumed>) = 3 [pid 5835] close(3 [pid 5819] close(16 [pid 5816] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5813] close(3 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5032] newfstatat(3, "", [pid 5835] <... close resumed>) = 0 [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5816] <... write resumed>) = 156 [pid 5814] close(28 [pid 5813] <... close resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5835] symlink("/dev/binderfs", "./binderfs" [pid 5819] close(17 [pid 5816] exit_group(0 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5813] close(4 [pid 5032] getdents64(3, [pid 5835] <... symlink resumed>) = 0 [pid 5833] <... futex resumed>) = ? [pid 5821] <... futex resumed>) = ? [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5816] <... exit_group resumed>) = ? [pid 5814] close(29 [pid 5813] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5835] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5833] +++ exited with 0 +++ [pid 5819] close(18 [pid 5814] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5813] close(5write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5032] umount2("./30/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5835] <... futex resumed>) = 0 [pid 5821] +++ exited with 0 +++ [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5816] +++ exited with 0 +++ [pid 5814] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5813] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5835] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5819] close(19 [pid 5814] <... write resumed>) = 156 [pid 5813] close(6 [pid 5032] newfstatat(AT_FDCWD, "./30/cgroup.cpu", [pid 5835] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5814] exit_group(0 [pid 5813] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=91, si_uid=0, si_status=0, si_utime=0, si_stime=55 /* 0.55 s */} --- [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5835] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5830] <... futex resumed>) = ? [pid 5819] close(20 [pid 5818] <... futex resumed>) = ? [pid 5814] <... exit_group resumed>) = ? [pid 5813] close(7 [pid 5034] umount2("./30", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] unlink("./30/cgroup.cpu" [pid 5830] +++ exited with 0 +++ [pid 5813] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5835] <... mprotect resumed>) = 0 [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5813] close(8 [pid 5034] openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... unlink resumed>) = 0 [pid 5813] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... openat resumed>) = 3 [pid 5813] close(9 [pid 5034] newfstatat(3, "", [pid 5818] +++ exited with 0 +++ [pid 5814] +++ exited with 0 +++ [pid 5813] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5813] close(10 [pid 5034] getdents64(3, [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=89, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=56 /* 0.56 s */} --- [pid 5813] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5813] close(11 [pid 5034] umount2("./30/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... restart_syscall resumed>) = 0 [pid 5819] close(21 [pid 5813] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./30/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5835] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5813] close(12 [pid 5034] newfstatat(AT_FDCWD, "./30/cgroup.cpu", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5835] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5819] close(22 [pid 5813] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./31", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(AT_FDCWD, "./30/binderfs", [pid 5835] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5813] close(13 [pid 5034] unlink("./30/cgroup.cpu" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5819] close(23 [pid 5813] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... unlink resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] unlink("./30/binderfs"./strace-static-x86_64: Process 5836 attached [pid 5835] <... clone3 resumed> => {parent_tid=[91]}, 88) = 91 [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5813] close(14 [pid 5034] umount2("./30/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... openat resumed>) = 3 [pid 5032] <... unlink resumed>) = 0 [pid 5836] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5835] rt_sigprocmask(SIG_SETMASK, [], [pid 5819] close(24 [pid 5813] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(3, "", [pid 5032] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5836] <... rseq resumed>) = 0 [pid 5835] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5813] close(15 [pid 5034] newfstatat(AT_FDCWD, "./30/binderfs", [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5836] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5835] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5819] close(25 [pid 5813] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] getdents64(3, [pid 5032] newfstatat(AT_FDCWD, "./30/file0", [pid 5836] <... set_robust_list resumed>) = 0 [pid 5835] <... futex resumed>) = 0 [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5813] close(16 [pid 5034] unlink("./30/binderfs" [pid 5033] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5836] rt_sigprocmask(SIG_SETMASK, [], [pid 5835] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5819] close(26 [pid 5813] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5836] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5813] close(17 [pid 5034] <... unlink resumed>) = 0 [pid 5033] umount2("./31/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5813] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5813] close(18 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./31/cgroup.cpu", [pid 5836] memfd_create("syzkaller", 0 [pid 5819] close(27 [pid 5813] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] newfstatat(AT_FDCWD, "./30/file0", [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5836] <... memfd_create resumed>) = 3 [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5813] close(19 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./31/cgroup.cpu" [pid 5032] <... openat resumed>) = 4 [pid 5836] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5819] close(28 [pid 5813] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(4, "", [pid 5030] kill(-82, SIGKILL [pid 5836] <... mmap resumed>) = 0x7f4f650a0000 [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5831] <... futex resumed>) = ? [pid 5817] <... futex resumed>) = ? [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... unlink resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... kill resumed>) = 0 [pid 5831] +++ killed by SIGKILL +++ [pid 5819] close(29 [pid 5817] +++ killed by SIGKILL +++ [pid 5813] +++ killed by SIGKILL +++ [pid 5034] openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] umount2("./31/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5819] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... openat resumed>) = 4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] getdents64(4, [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=82, si_uid=0, si_status=SIGKILL, si_utime=4 /* 0.04 s */, si_stime=79 /* 0.79 s */} --- write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5819] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5034] newfstatat(4, "", [pid 5033] newfstatat(AT_FDCWD, "./31/binderfs", [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] kill(82, SIGKILL [pid 5819] <... write resumed>) = 156 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] getdents64(4, [pid 5030] <... kill resumed>) = 0 [pid 5819] exit_group(0 [pid 5034] getdents64(4, [pid 5033] unlink("./31/binderfs" [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5834] <... futex resumed>) = ? [pid 5822] <... futex resumed>) = ? [pid 5819] <... exit_group resumed>) = ? [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5033] <... unlink resumed>) = 0 [pid 5032] close(4 [pid 5834] +++ exited with 0 +++ [pid 5034] getdents64(4, [pid 5033] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] close(4 [pid 5033] newfstatat(AT_FDCWD, "./31/file0", [pid 5034] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] rmdir("./30/file0" [pid 5033] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./30/file0" [pid 5030] umount2("./29", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] umount2("./30/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] umount2("./30/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... openat resumed>) = 4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./30/cgroup", [pid 5033] newfstatat(4, "", [pid 5030] <... openat resumed>) = 3 [pid 5822] +++ exited with 0 +++ [pid 5819] +++ exited with 0 +++ [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] newfstatat(AT_FDCWD, "./30/cgroup", [pid 5034] unlink("./30/cgroup" [pid 5033] getdents64(4, [pid 5034] <... unlink resumed>) = 0 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5034] umount2("./30/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(4, [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5034] newfstatat(AT_FDCWD, "./30/cgroup.net", [pid 5033] close(4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... close resumed>) = 0 [pid 5034] unlink("./30/cgroup.net" [pid 5033] rmdir("./31/file0" [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] newfstatat(3, "", [pid 5034] <... unlink resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] unlink("./30/cgroup" [pid 5034] getdents64(3, [pid 5033] umount2("./31/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=94, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=55 /* 0.55 s */} --- [pid 5034] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... unlink resumed>) = 0 [pid 5030] getdents64(3, [pid 5034] close(3 [pid 5033] newfstatat(AT_FDCWD, "./31/cgroup", [pid 5032] umount2("./30/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./29", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] rmdir("./30" [pid 5033] unlink("./31/cgroup" [pid 5032] newfstatat(AT_FDCWD, "./30/cgroup.net", [pid 5030] umount2("./29/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 5034] mkdir("./31", 0777 [pid 5033] umount2("./31/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... mkdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... openat resumed>) = 3 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] newfstatat(AT_FDCWD, "./31/cgroup.net", [pid 5034] <... openat resumed>) = 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./30/cgroup.net" [pid 5030] newfstatat(AT_FDCWD, "./29/cgroup.cpu", [pid 5029] newfstatat(3, "", [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] unlink("./31/cgroup.net" [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] <... unlink resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] close(3 [pid 5033] getdents64(3, [pid 5032] getdents64(3, [pid 5030] unlink("./29/cgroup.cpu" [pid 5029] getdents64(3, [pid 5034] <... close resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] close(3./strace-static-x86_64: Process 5837 attached ) = 0 [pid 5032] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5837] set_robust_list(0x55555654e6a0, 24 [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 94 [pid 5033] rmdir("./31" [pid 5032] close(3 [pid 5030] umount2("./29/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./29/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5837] <... set_robust_list resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5837] chdir("./31" [pid 5033] mkdir("./32", 0777 [pid 5029] newfstatat(AT_FDCWD, "./29/cgroup.cpu", [pid 5837] <... chdir resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5032] rmdir("./30" [pid 5030] newfstatat(AT_FDCWD, "./29/binderfs", [pid 5837] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5032] <... rmdir resumed>) = 0 [pid 5837] <... prctl resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./29/cgroup.cpu" [pid 5837] setpgid(0, 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] mkdir("./31", 0777 [pid 5030] unlink("./29/binderfs" [pid 5837] <... setpgid resumed>) = 0 [pid 5033] close(3 [pid 5029] <... unlink resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5838 attached [pid 5837] symlink("/syzcgroup/unified/syz5", "./cgroup" [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5030] <... unlink resumed>) = 0 [pid 5029] umount2("./29/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5838] set_robust_list(0x55555654e6a0, 24 [pid 5837] <... symlink resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 92 [pid 5030] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5838] <... set_robust_list resumed>) = 0 [pid 5837] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu" [pid 5032] <... openat resumed>) = 3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./29/binderfs", [pid 5838] chdir("./32") = 0 [pid 5837] <... symlink resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5030] newfstatat(AT_FDCWD, "./29/file0", [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5838] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5838] setpgid(0, 0) = 0 [pid 5838] symlink("/syzcgroup/unified/syz2", "./cgroup") = 0 [pid 5837] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 5838] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu" [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./29/binderfs" [pid 5838] <... symlink resumed>) = 0 [pid 5837] <... symlink resumed>) = 0 [pid 5838] symlink("/syzcgroup/net/syz2", "./cgroup.net" [pid 5032] close(3 [pid 5030] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5838] <... symlink resumed>) = 0 [pid 5837] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] <... unlink resumed>) = 0 [pid 5838] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5837] <... openat resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5838] write(3, "1000", 4 [pid 5837] write(3, "1000", 4 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5838] <... write resumed>) = 4 [pid 5837] <... write resumed>) = 4 [pid 5838] close(3) = 0 [pid 5838] symlink("/dev/binderfs", "./binderfs"./strace-static-x86_64: Process 5839 attached ) = 0 [pid 5837] close(3 [pid 5030] <... openat resumed>) = 4 [pid 5029] newfstatat(AT_FDCWD, "./29/file0", [pid 5839] set_robust_list(0x55555654e6a0, 24 [pid 5838] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5837] <... close resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 90 [pid 5030] newfstatat(4, "", [pid 5839] <... set_robust_list resumed>) = 0 [pid 5838] <... futex resumed>) = 0 [pid 5837] symlink("/dev/binderfs", "./binderfs" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5839] chdir("./31" [pid 5838] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5839] <... chdir resumed>) = 0 [pid 5838] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5837] <... symlink resumed>) = 0 [pid 5030] getdents64(4, [pid 5029] umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5839] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5838] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5837] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5839] <... prctl resumed>) = 0 [pid 5838] <... mprotect resumed>) = 0 [pid 5837] <... futex resumed>) = 0 [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5839] setpgid(0, 0 [pid 5838] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5837] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5030] getdents64(4, [pid 5029] openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5839] <... setpgid resumed>) = 0 [pid 5838] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5837] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5839] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 5838] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5837] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5030] close(4 [pid 5029] <... openat resumed>) = 4 ./strace-static-x86_64: Process 5840 attached [pid 5839] <... symlink resumed>) = 0 [pid 5840] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5839] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 5838] <... clone3 resumed> => {parent_tid=[93]}, 88) = 93 [pid 5029] newfstatat(4, "", [pid 5840] <... rseq resumed>) = 0 [pid 5839] <... symlink resumed>) = 0 [pid 5838] rt_sigprocmask(SIG_SETMASK, [], [pid 5837] <... mprotect resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5840] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5839] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 5838] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5837] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5030] rmdir("./29/file0" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5840] <... set_robust_list resumed>) = 0 [pid 5839] <... symlink resumed>) = 0 [pid 5838] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5837] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5840] rt_sigprocmask(SIG_SETMASK, [], [pid 5839] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5838] <... futex resumed>) = 0 [pid 5837] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5030] <... rmdir resumed>) = 0 [pid 5029] getdents64(4, ./strace-static-x86_64: Process 5841 attached [pid 5840] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5839] <... openat resumed>) = 3 [pid 5838] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5030] umount2("./29/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5841] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5840] memfd_create("syzkaller", 0 [pid 5839] write(3, "1000", 4 [pid 5837] <... clone3 resumed> => {parent_tid=[95]}, 88) = 95 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(4, [pid 5841] <... rseq resumed>) = 0 [pid 5840] <... memfd_create resumed>) = 3 [pid 5839] <... write resumed>) = 4 [pid 5837] rt_sigprocmask(SIG_SETMASK, [], [pid 5030] newfstatat(AT_FDCWD, "./29/cgroup", [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5841] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5840] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5839] close(3 [pid 5837] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5841] <... set_robust_list resumed>) = 0 [pid 5840] <... mmap resumed>) = 0x7f4f650a0000 [pid 5839] <... close resumed>) = 0 [pid 5837] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] unlink("./29/cgroup" [pid 5029] close(4 [pid 5841] rt_sigprocmask(SIG_SETMASK, [], [pid 5839] symlink("/dev/binderfs", "./binderfs" [pid 5841] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5839] <... symlink resumed>) = 0 [pid 5837] <... futex resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5839] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5839] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5841] memfd_create("syzkaller", 0 [pid 5839] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5837] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5030] umount2("./29/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] rmdir("./29/file0" [pid 5839] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5839] <... mprotect resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./29/cgroup.net", [pid 5029] <... rmdir resumed>) = 0 [pid 5841] <... memfd_create resumed>) = 3 [pid 5839] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5841] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5839] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./29/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5841] <... mmap resumed>) = 0x7f4f650a0000 [pid 5839] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5030] unlink("./29/cgroup.net" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 5842 attached [pid 5842] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5839] <... clone3 resumed> => {parent_tid=[91]}, 88) = 91 [pid 5842] <... rseq resumed>) = 0 [pid 5839] rt_sigprocmask(SIG_SETMASK, [], [pid 5030] <... unlink resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./29/cgroup", [pid 5842] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5839] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5030] getdents64(3, [pid 5842] <... set_robust_list resumed>) = 0 [pid 5839] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5842] rt_sigprocmask(SIG_SETMASK, [], [pid 5839] <... futex resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5029] unlink("./29/cgroup" [pid 5842] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5839] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5030] close(3 [pid 5842] memfd_create("syzkaller", 0 [pid 5029] <... unlink resumed>) = 0 [pid 5842] <... memfd_create resumed>) = 3 [pid 5030] <... close resumed>) = 0 [pid 5029] umount2("./29/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5842] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] rmdir("./29" [pid 5842] <... mmap resumed>) = 0x7f4f650a0000 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... rmdir resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./29/cgroup.net", [pid 5030] mkdir("./30", 0777 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5029] unlink("./29/cgroup.net" [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5029] <... unlink resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5029] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5029] close(3 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./29" [pid 5030] close(3 [pid 5029] <... rmdir resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5029] mkdir("./30", 0777 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5843 attached , child_tidptr=0x55555654e690) = 85 [pid 5029] <... mkdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5843] set_robust_list(0x55555654e6a0, 24 [pid 5029] <... openat resumed>) = 3 [pid 5843] <... set_robust_list resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5843] chdir("./30" [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5843] <... chdir resumed>) = 0 [pid 5029] close(3) = 0 [pid 5843] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5844 attached [pid 5844] set_robust_list(0x55555654e6a0, 24 [pid 5843] setpgid(0, 0 [pid 5844] <... set_robust_list resumed>) = 0 [pid 5844] chdir("./30") = 0 [pid 5844] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5843] <... setpgid resumed>) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 97 [pid 5844] setpgid(0, 0) = 0 [pid 5844] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 5843] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 5844] <... symlink resumed>) = 0 [pid 5844] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu" [pid 5843] <... symlink resumed>) = 0 [pid 5844] <... symlink resumed>) = 0 [pid 5844] symlink("/syzcgroup/net/syz0", "./cgroup.net" [pid 5843] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu" [pid 5844] <... symlink resumed>) = 0 [pid 5844] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5843] <... symlink resumed>) = 0 [pid 5844] write(3, "1000", 4) = 4 [pid 5844] close(3) = 0 [pid 5843] symlink("/syzcgroup/net/syz3", "./cgroup.net" [pid 5844] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5843] <... symlink resumed>) = 0 [pid 5844] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5843] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5844] <... futex resumed>) = 0 [pid 5844] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5843] <... openat resumed>) = 3 [pid 5844] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5843] write(3, "1000", 4 [pid 5844] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5843] <... write resumed>) = 4 [pid 5844] <... mprotect resumed>) = 0 [pid 5843] close(3 [pid 5844] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5843] <... close resumed>) = 0 [pid 5844] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5843] symlink("/dev/binderfs", "./binderfs" [pid 5844] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5845 attached [pid 5843] <... symlink resumed>) = 0 [pid 5845] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5844] <... clone3 resumed> => {parent_tid=[98]}, 88) = 98 [pid 5843] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5845] <... rseq resumed>) = 0 [pid 5844] rt_sigprocmask(SIG_SETMASK, [], [pid 5843] <... futex resumed>) = 0 [pid 5845] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5844] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5843] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5845] <... set_robust_list resumed>) = 0 [pid 5844] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5843] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5845] rt_sigprocmask(SIG_SETMASK, [], [pid 5844] <... futex resumed>) = 0 [pid 5843] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5845] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5844] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5845] memfd_create("syzkaller", 0 [pid 5843] <... mprotect resumed>) = 0 [pid 5845] <... memfd_create resumed>) = 3 [pid 5843] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5845] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5843] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5845] <... mmap resumed>) = 0x7f4f650a0000 [pid 5843] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5846 attached [pid 5846] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5843] <... clone3 resumed> => {parent_tid=[86]}, 88) = 86 [pid 5846] <... rseq resumed>) = 0 [pid 5843] rt_sigprocmask(SIG_SETMASK, [], [pid 5846] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5843] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5846] <... set_robust_list resumed>) = 0 [pid 5843] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5846] rt_sigprocmask(SIG_SETMASK, [], [pid 5843] <... futex resumed>) = 0 [pid 5846] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5843] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5846] memfd_create("syzkaller", 0) = 3 [pid 5846] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5836] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5841] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5840] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5842] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5845] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5846] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5841] <... write resumed>) = 16777216 [pid 5841] munmap(0x7f4f650a0000, 16777216 [pid 5836] <... write resumed>) = 16777216 [pid 5836] munmap(0x7f4f650a0000, 16777216 [pid 5842] <... write resumed>) = 16777216 [pid 5842] munmap(0x7f4f650a0000, 16777216 [pid 5841] <... munmap resumed>) = 0 [pid 5840] <... write resumed>) = 16777216 [pid 5840] munmap(0x7f4f650a0000, 16777216 [pid 5841] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5836] <... munmap resumed>) = 0 [pid 5841] ioctl(4, LOOP_SET_FD, 3 [pid 5836] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5836] ioctl(4, LOOP_SET_FD, 3 [pid 5841] <... ioctl resumed>) = 0 [pid 5841] close(3 [pid 5845] <... write resumed>) = 16777216 [pid 5841] <... close resumed>) = 0 [pid 5845] munmap(0x7f4f650a0000, 16777216 [pid 5841] mkdir("./file0", 0777) = 0 [ 255.197247][ T5841] loop5: detected capacity change from 0 to 32768 [ 255.212573][ T5836] loop4: detected capacity change from 0 to 32768 [pid 5841] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5836] <... ioctl resumed>) = 0 [pid 5836] close(3) = 0 [pid 5836] mkdir("./file0", 0777) = 0 [ 255.240647][ T5841] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 255.262390][ T5836] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 255.271836][ T5841] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 255.286254][ T5836] CPU: 1 PID: 5836 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 255.296739][ T5836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 255.306830][ T5836] Call Trace: [ 255.310133][ T5836] [ 255.313082][ T5836] dump_stack_lvl+0x136/0x150 [ 255.317805][ T5836] sysfs_warn_dup+0x80/0xa0 [ 255.322344][ T5836] sysfs_create_dir_ns+0x237/0x290 [ 255.327483][ T5836] ? sysfs_create_mount_point+0xb0/0xb0 [ 255.333058][ T5836] ? spin_bug+0x1c0/0x1c0 [ 255.337419][ T5836] ? do_raw_spin_unlock+0x175/0x230 [ 255.342650][ T5836] kobject_add_internal+0x2c9/0x9c0 [ 255.347875][ T5836] ? kfree+0x11/0x150 [ 255.351884][ T5836] kobject_init_and_add+0x101/0x170 [ 255.357110][ T5836] ? kobject_create_and_add+0xf0/0xf0 [ 255.362507][ T5836] ? lockdep_init_map_type+0x21e/0x810 [ 255.367997][ T5836] ? lockdep_hardirqs_on+0x7d/0x100 [ 255.373226][ T5836] ? lockdep_init_map_type+0x21e/0x810 [ 255.378726][ T5836] gfs2_sys_fs_add+0x1d5/0x450 [ 255.383516][ T5836] ? recover_store+0x170/0x170 [ 255.388314][ T5836] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 255.394074][ T5836] gfs2_fill_super+0x1312/0x2aa0 [ 255.399042][ T5836] ? gfs2_reconfigure+0xf90/0xf90 [ 255.404094][ T5836] ? snprintf+0xbf/0x100 [ 255.408382][ T5836] ? vsprintf+0x30/0x30 [ 255.412585][ T5836] ? wait_for_completion_io_timeout+0x20/0x20 [ 255.418689][ T5836] ? set_blocksize+0x2d8/0x370 [ 255.423506][ T5836] get_tree_bdev+0x43e/0x7d0 [ 255.428143][ T5836] ? gfs2_reconfigure+0xf90/0xf90 [ 255.433204][ T5836] gfs2_get_tree+0x4e/0x270 [ 255.437738][ T5836] vfs_get_tree+0x8d/0x350 [ 255.442185][ T5836] path_mount+0x136e/0x1e70 [ 255.446737][ T5836] ? putname+0x102/0x140 [ 255.451012][ T5836] ? lockdep_hardirqs_on+0x7d/0x100 [ 255.456243][ T5836] ? finish_automount+0xa30/0xa30 [ 255.461302][ T5836] ? putname+0x102/0x140 [ 255.465574][ T5836] __x64_sys_mount+0x283/0x300 [ 255.470368][ T5836] ? copy_mnt_ns+0xb30/0xb30 [ 255.475005][ T5836] ? lockdep_hardirqs_on+0x7d/0x100 [ 255.480232][ T5836] ? _raw_spin_unlock_irq+0x2e/0x50 [ 255.485472][ T5836] ? ptrace_notify+0xfe/0x140 [ 255.490193][ T5836] do_syscall_64+0x39/0xb0 [ 255.494644][ T5836] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 255.500585][ T5836] RIP: 0033:0x7f4f6dd11c5a [ 255.505023][ T5836] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 255.524662][ T5836] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 255.533103][ T5836] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 255.541097][ T5836] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 255.549091][ T5836] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 255.557083][ T5836] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 255.565075][ T5836] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 255.573073][ T5836] [pid 5836] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5842] <... munmap resumed>) = 0 [pid 5842] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5845] <... munmap resumed>) = 0 [ 255.601364][ T5841] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 255.606527][ T5836] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 255.624420][ T5084] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 255.632963][ T5084] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 255.640930][ T5842] loop1: detected capacity change from 0 to 32768 [pid 5842] ioctl(4, LOOP_SET_FD, 3 [pid 5845] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5842] <... ioctl resumed>) = 0 [pid 5845] <... openat resumed>) = 4 [pid 5842] close(3 [pid 5845] ioctl(4, LOOP_SET_FD, 3 [pid 5842] <... close resumed>) = 0 [pid 5842] mkdir("./file0", 0777 [pid 5845] <... ioctl resumed>) = 0 [pid 5842] <... mkdir resumed>) = 0 [pid 5836] <... mount resumed>) = -1 EEXIST (File exists) [pid 5845] close(3 [pid 5842] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5840] <... munmap resumed>) = 0 [pid 5836] ioctl(4, LOOP_CLR_FD [pid 5845] <... close resumed>) = 0 [pid 5846] <... write resumed>) = 16777216 [pid 5845] mkdir("./file0", 0777) = 0 [pid 5840] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5845] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5840] <... openat resumed>) = 4 [ 255.647660][ T5836] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 255.662696][ T5845] loop0: detected capacity change from 0 to 32768 [pid 5840] ioctl(4, LOOP_SET_FD, 3 [pid 5846] munmap(0x7f4f650a0000, 16777216 [pid 5840] <... ioctl resumed>) = 0 [pid 5840] close(3) = 0 [pid 5840] mkdir("./file0", 0777) = 0 [ 255.693449][ T5840] loop2: detected capacity change from 0 to 32768 [ 255.702071][ T5842] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 255.714884][ T5845] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 255.724009][ T5842] CPU: 0 PID: 5842 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 255.734490][ T5842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 255.744592][ T5842] Call Trace: [ 255.747908][ T5842] [ 255.750906][ T5842] dump_stack_lvl+0x136/0x150 [ 255.755690][ T5842] sysfs_warn_dup+0x80/0xa0 [ 255.760246][ T5842] sysfs_create_dir_ns+0x237/0x290 [ 255.765420][ T5842] ? sysfs_create_mount_point+0xb0/0xb0 [ 255.771036][ T5842] ? spin_bug+0x1c0/0x1c0 [ 255.775453][ T5842] ? do_raw_spin_unlock+0x175/0x230 [ 255.780712][ T5842] kobject_add_internal+0x2c9/0x9c0 [ 255.786059][ T5842] ? kfree+0x11/0x150 [ 255.790095][ T5842] kobject_init_and_add+0x101/0x170 [ 255.795360][ T5842] ? kobject_create_and_add+0xf0/0xf0 [ 255.800787][ T5842] ? lockdep_init_map_type+0x21e/0x810 [ 255.806301][ T5842] ? lockdep_hardirqs_on+0x7d/0x100 [ 255.811552][ T5842] ? lockdep_init_map_type+0x21e/0x810 [ 255.817074][ T5842] gfs2_sys_fs_add+0x1d5/0x450 [ 255.821888][ T5842] ? recover_store+0x170/0x170 [ 255.826705][ T5842] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 255.832490][ T5842] gfs2_fill_super+0x1312/0x2aa0 [ 255.837484][ T5842] ? gfs2_reconfigure+0xf90/0xf90 [ 255.842577][ T5842] ? snprintf+0xbf/0x100 [ 255.846895][ T5842] ? vsprintf+0x30/0x30 [ 255.851108][ T5842] ? wait_for_completion_io_timeout+0x20/0x20 [ 255.853922][ T5846] loop3: detected capacity change from 0 to 32768 [ 255.857215][ T5842] ? set_blocksize+0x2d8/0x370 [ 255.857260][ T5842] get_tree_bdev+0x43e/0x7d0 [ 255.857302][ T5842] ? gfs2_reconfigure+0xf90/0xf90 [ 255.878178][ T5842] gfs2_get_tree+0x4e/0x270 [ 255.882733][ T5842] vfs_get_tree+0x8d/0x350 [ 255.887206][ T5842] path_mount+0x136e/0x1e70 [ 255.891767][ T5842] ? putname+0x102/0x140 [ 255.896161][ T5842] ? lockdep_hardirqs_on+0x7d/0x100 [ 255.901415][ T5842] ? finish_automount+0xa30/0xa30 [ 255.906481][ T5842] ? putname+0x102/0x140 [ 255.910772][ T5842] __x64_sys_mount+0x283/0x300 [ 255.915595][ T5842] ? copy_mnt_ns+0xb30/0xb30 [ 255.920247][ T5842] ? lockdep_hardirqs_on+0x7d/0x100 [ 255.925499][ T5842] ? _raw_spin_unlock_irq+0x2e/0x50 [ 255.930775][ T5842] ? ptrace_notify+0xfe/0x140 [ 255.935513][ T5842] do_syscall_64+0x39/0xb0 [ 255.939963][ T5842] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 255.945922][ T5842] RIP: 0033:0x7f4f6dd11c5a [ 255.950388][ T5842] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 255.970052][ T5842] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 255.978531][ T5842] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 255.986544][ T5842] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [pid 5840] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5846] <... munmap resumed>) = 0 [pid 5846] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5846] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5846] close(3) = 0 [pid 5846] mkdir("./file0", 0777) = 0 [ 255.994566][ T5842] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 256.002586][ T5842] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 256.010600][ T5842] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 256.018633][ T5842] [ 256.046210][ T5840] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 256.053692][ T5840] CPU: 1 PID: 5840 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 256.064159][ T5840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 256.068080][ T5842] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 256.074241][ T5840] Call Trace: [ 256.074253][ T5840] [ 256.088291][ T5842] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 256.091449][ T5840] dump_stack_lvl+0x136/0x150 [ 256.106035][ T5840] sysfs_warn_dup+0x80/0xa0 [ 256.110567][ T5840] sysfs_create_dir_ns+0x237/0x290 [ 256.115707][ T5840] ? sysfs_create_mount_point+0xb0/0xb0 [ 256.121285][ T5840] ? spin_bug+0x1c0/0x1c0 [ 256.125650][ T5840] ? do_raw_spin_unlock+0x175/0x230 [ 256.130884][ T5840] kobject_add_internal+0x2c9/0x9c0 [ 256.136112][ T5840] ? kfree+0x11/0x150 [ 256.140119][ T5840] kobject_init_and_add+0x101/0x170 [ 256.145346][ T5840] ? kobject_create_and_add+0xf0/0xf0 [ 256.150744][ T5840] ? lockdep_init_map_type+0x21e/0x810 [ 256.156253][ T5840] ? lockdep_hardirqs_on+0x7d/0x100 [ 256.161479][ T5840] ? lockdep_init_map_type+0x21e/0x810 [ 256.166974][ T5840] gfs2_sys_fs_add+0x1d5/0x450 [ 256.171763][ T5840] ? recover_store+0x170/0x170 [ 256.176553][ T5840] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 256.182328][ T5840] gfs2_fill_super+0x1312/0x2aa0 [ 256.187293][ T5840] ? gfs2_reconfigure+0xf90/0xf90 [ 256.192343][ T5840] ? snprintf+0xbf/0x100 [ 256.196614][ T5840] ? vsprintf+0x30/0x30 [ 256.200795][ T5840] ? wait_for_completion_io_timeout+0x20/0x20 [ 256.206891][ T5840] ? set_blocksize+0x2d8/0x370 [ 256.211688][ T5840] get_tree_bdev+0x43e/0x7d0 [ 256.216333][ T5840] ? gfs2_reconfigure+0xf90/0xf90 [ 256.221390][ T5840] gfs2_get_tree+0x4e/0x270 [ 256.225921][ T5840] vfs_get_tree+0x8d/0x350 [ 256.230366][ T5840] path_mount+0x136e/0x1e70 [ 256.234900][ T5840] ? putname+0x102/0x140 [ 256.239174][ T5840] ? lockdep_hardirqs_on+0x7d/0x100 [ 256.244408][ T5840] ? finish_automount+0xa30/0xa30 [ 256.249463][ T5840] ? putname+0x102/0x140 [ 256.253735][ T5840] __x64_sys_mount+0x283/0x300 [ 256.258530][ T5840] ? copy_mnt_ns+0xb30/0xb30 [ 256.263151][ T5840] ? lockdep_hardirqs_on+0x7d/0x100 [ 256.268383][ T5840] ? _raw_spin_unlock_irq+0x2e/0x50 [ 256.273624][ T5840] ? ptrace_notify+0xfe/0x140 [ 256.278344][ T5840] do_syscall_64+0x39/0xb0 [ 256.282783][ T5840] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 256.288742][ T5840] RIP: 0033:0x7f4f6dd11c5a [ 256.293178][ T5840] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 256.312815][ T5840] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 256.321253][ T5840] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 256.329246][ T5840] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 256.337245][ T5840] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 256.345241][ T5840] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 256.353237][ T5840] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 256.361235][ T5840] [ 256.370600][ T5845] CPU: 0 PID: 5845 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 256.370682][ T5846] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 256.381054][ T5845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 256.381075][ T5845] Call Trace: [ 256.381084][ T5845] [ 256.381095][ T5845] dump_stack_lvl+0x136/0x150 [ 256.409506][ T5845] sysfs_warn_dup+0x80/0xa0 [ 256.414067][ T5845] sysfs_create_dir_ns+0x237/0x290 [ 256.419232][ T5845] ? sysfs_create_mount_point+0xb0/0xb0 [ 256.424841][ T5845] ? spin_bug+0x1c0/0x1c0 [ 256.429239][ T5845] ? do_raw_spin_unlock+0x175/0x230 [ 256.434501][ T5845] kobject_add_internal+0x2c9/0x9c0 [ 256.439753][ T5845] ? kfree+0x11/0x150 [ 256.443783][ T5845] kobject_init_and_add+0x101/0x170 [ 256.449036][ T5845] ? kobject_create_and_add+0xf0/0xf0 [ 256.454463][ T5845] ? lockdep_init_map_type+0x21e/0x810 [ 256.459978][ T5845] ? lockdep_hardirqs_on+0x7d/0x100 [ 256.465227][ T5845] ? lockdep_init_map_type+0x21e/0x810 [ 256.470736][ T5845] gfs2_sys_fs_add+0x1d5/0x450 [ 256.475530][ T5845] ? recover_store+0x170/0x170 [ 256.480334][ T5845] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 256.486127][ T5845] gfs2_fill_super+0x1312/0x2aa0 [ 256.491124][ T5845] ? gfs2_reconfigure+0xf90/0xf90 [ 256.496205][ T5845] ? snprintf+0xbf/0x100 [ 256.500501][ T5845] ? vsprintf+0x30/0x30 [ 256.504712][ T5845] ? wait_for_completion_io_timeout+0x20/0x20 [ 256.510835][ T5845] ? set_blocksize+0x2d8/0x370 [ 256.515647][ T5845] get_tree_bdev+0x43e/0x7d0 [ 256.520320][ T5845] ? gfs2_reconfigure+0xf90/0xf90 [ 256.525401][ T5845] gfs2_get_tree+0x4e/0x270 [ 256.529959][ T5845] vfs_get_tree+0x8d/0x350 [ 256.534512][ T5845] path_mount+0x136e/0x1e70 [ 256.539055][ T5845] ? putname+0x102/0x140 [ 256.543325][ T5845] ? lockdep_hardirqs_on+0x7d/0x100 [ 256.548564][ T5845] ? finish_automount+0xa30/0xa30 [ 256.553650][ T5845] ? putname+0x102/0x140 [ 256.558032][ T5845] __x64_sys_mount+0x283/0x300 [ 256.562853][ T5845] ? copy_mnt_ns+0xb30/0xb30 [ 256.567497][ T5845] ? lockdep_hardirqs_on+0x7d/0x100 [ 256.572755][ T5845] ? _raw_spin_unlock_irq+0x2e/0x50 [ 256.578021][ T5845] ? ptrace_notify+0xfe/0x140 [ 256.582757][ T5845] do_syscall_64+0x39/0xb0 [ 256.587209][ T5845] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 256.593167][ T5845] RIP: 0033:0x7f4f6dd11c5a [ 256.597624][ T5845] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 256.617303][ T5845] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 256.625765][ T5845] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 256.633789][ T5845] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [pid 5846] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5842] <... mount resumed>) = -1 EEXIST (File exists) [ 256.641808][ T5845] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 256.649832][ T5845] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 256.657838][ T5845] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 256.665859][ T5845] [ 256.670341][ T5084] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 1037ms [ 256.683696][ T5084] gfs2: fsid=syz:syz.0: jid=0: Done [ 256.685640][ T5846] CPU: 1 PID: 5846 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 256.690360][ T5841] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 256.699764][ T5846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 256.699785][ T5846] Call Trace: [ 256.699794][ T5846] [ 256.699805][ T5846] dump_stack_lvl+0x136/0x150 [ 256.699860][ T5846] sysfs_warn_dup+0x80/0xa0 [ 256.714993][ T5845] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 256.717105][ T5846] sysfs_create_dir_ns+0x237/0x290 [ 256.717147][ T5846] ? sysfs_create_mount_point+0xb0/0xb0 [ 256.720443][ T5845] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 256.723369][ T5846] ? spin_bug+0x1c0/0x1c0 [ 256.728289][ T5840] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 256.732541][ T5846] ? do_raw_spin_unlock+0x175/0x230 [ 256.754350][ T5840] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 256.757075][ T5846] kobject_add_internal+0x2c9/0x9c0 [ 256.757117][ T5846] ? kfree+0x11/0x150 [ 256.757151][ T5846] kobject_init_and_add+0x101/0x170 [ 256.757186][ T5846] ? kobject_create_and_add+0xf0/0xf0 [ 256.813818][ T5846] ? lockdep_init_map_type+0x21e/0x810 [ 256.819317][ T5846] ? lockdep_hardirqs_on+0x7d/0x100 [ 256.824551][ T5846] ? lockdep_init_map_type+0x21e/0x810 [ 256.830047][ T5846] gfs2_sys_fs_add+0x1d5/0x450 [ 256.834853][ T5846] ? recover_store+0x170/0x170 [ 256.839656][ T5846] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 256.845514][ T5846] gfs2_fill_super+0x1312/0x2aa0 [ 256.850490][ T5846] ? gfs2_reconfigure+0xf90/0xf90 [ 256.855562][ T5846] ? snprintf+0xbf/0x100 [ 256.859854][ T5846] ? vsprintf+0x30/0x30 [ 256.864051][ T5846] ? wait_for_completion_io_timeout+0x20/0x20 [ 256.870157][ T5846] ? set_blocksize+0x2d8/0x370 [ 256.874952][ T5846] get_tree_bdev+0x43e/0x7d0 [ 256.879575][ T5846] ? gfs2_reconfigure+0xf90/0xf90 [ 256.884625][ T5846] gfs2_get_tree+0x4e/0x270 [ 256.889156][ T5846] vfs_get_tree+0x8d/0x350 [ 256.893601][ T5846] path_mount+0x136e/0x1e70 [ 256.898144][ T5846] ? putname+0x102/0x140 [ 256.902412][ T5846] ? lockdep_hardirqs_on+0x7d/0x100 [ 256.907640][ T5846] ? finish_automount+0xa30/0xa30 [ 256.912696][ T5846] ? putname+0x102/0x140 [ 256.916970][ T5846] __x64_sys_mount+0x283/0x300 [ 256.921778][ T5846] ? copy_mnt_ns+0xb30/0xb30 [ 256.926403][ T5846] ? lockdep_hardirqs_on+0x7d/0x100 [ 256.931651][ T5846] ? _raw_spin_unlock_irq+0x2e/0x50 [ 256.936884][ T5846] ? ptrace_notify+0xfe/0x140 [ 256.941602][ T5846] do_syscall_64+0x39/0xb0 [ 256.946040][ T5846] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 256.951977][ T5846] RIP: 0033:0x7f4f6dd11c5a [ 256.956410][ T5846] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 256.976045][ T5846] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 256.984486][ T5846] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 256.992475][ T5846] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [pid 5845] <... mount resumed>) = -1 EEXIST (File exists) [pid 5842] ioctl(4, LOOP_CLR_FD [pid 5841] <... mount resumed>) = 0 [pid 5840] <... mount resumed>) = -1 EEXIST (File exists) [pid 5845] ioctl(4, LOOP_CLR_FD [pid 5841] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5840] ioctl(4, LOOP_CLR_FD [pid 5841] <... openat resumed>) = 3 [pid 5841] chdir("./file0") = 0 [ 257.000464][ T5846] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 257.008472][ T5846] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 257.016475][ T5846] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 257.024469][ T5846] [pid 5841] ioctl(4, LOOP_CLR_FD) = 0 [pid 5841] close(4) = 0 [pid 5836] <... ioctl resumed>) = 0 [pid 5836] close(4) = 0 [pid 5836] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5836] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5841] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5835] <... futex resumed>) = 0 [pid 5841] <... futex resumed>) = 1 [pid 5837] <... futex resumed>) = 0 [pid 5835] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5841] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5837] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5835] <... futex resumed>) = 1 [pid 5836] <... futex resumed>) = 0 [pid 5837] <... futex resumed>) = 0 [pid 5836] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 5836] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5836] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5835] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 EAGAIN (Resource temporarily unavailable) [pid 5835] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5836] <... futex resumed>) = 0 [pid 5835] <... futex resumed>) = 1 [pid 5836] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5835] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5836] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5836] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5835] <... futex resumed>) = 0 [pid 5836] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5835] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5836] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5835] <... futex resumed>) = 0 [pid 5836] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5835] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5836] <... futex resumed>) = 0 [pid 5835] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5836] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5835] close(3) = 0 [ 257.056211][ T5846] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 257.075076][ T5846] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 257.085609][ T5841] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [pid 5835] close(4) = -1 EBADF (Bad file descriptor) [pid 5835] close(5) = -1 EBADF (Bad file descriptor) [pid 5835] close(6) = -1 EBADF (Bad file descriptor) [pid 5835] close(7) = -1 EBADF (Bad file descriptor) [pid 5835] close(8) = -1 EBADF (Bad file descriptor) [pid 5835] close(9) = -1 EBADF (Bad file descriptor) [pid 5835] close(10) = -1 EBADF (Bad file descriptor) [pid 5835] close(11) = -1 EBADF (Bad file descriptor) [pid 5835] close(12) = -1 EBADF (Bad file descriptor) [pid 5835] close(13 [pid 5846] <... mount resumed>) = -1 EEXIST (File exists) [pid 5835] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5846] ioctl(4, LOOP_CLR_FD [pid 5835] close(14) = -1 EBADF (Bad file descriptor) [pid 5835] close(15) = -1 EBADF (Bad file descriptor) [pid 5835] close(16) = -1 EBADF (Bad file descriptor) [pid 5835] close(17) = -1 EBADF (Bad file descriptor) [pid 5835] close(18 [pid 5837] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5835] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5835] close(19) = -1 EBADF (Bad file descriptor) [pid 5835] close(20) = -1 EBADF (Bad file descriptor) [pid 5835] close(21) = -1 EBADF (Bad file descriptor) [pid 5835] close(22) = -1 EBADF (Bad file descriptor) [pid 5835] close(23) = -1 EBADF (Bad file descriptor) [pid 5835] close(24) = -1 EBADF (Bad file descriptor) [pid 5835] close(25) = -1 EBADF (Bad file descriptor) [pid 5835] close(26) = -1 EBADF (Bad file descriptor) [pid 5835] close(27) = -1 EBADF (Bad file descriptor) [pid 5835] close(28) = -1 EBADF (Bad file descriptor) [pid 5835] close(29) = -1 EBADF (Bad file descriptor) [ 257.175938][ T5841] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 257.175938][ T5841] inode = 12 2341 [ 257.175938][ T5841] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [pid 5835] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory ) = 156 [pid 5835] exit_group(0 [pid 5836] <... futex resumed>) = ? [pid 5835] <... exit_group resumed>) = ? [pid 5836] +++ exited with 0 +++ [pid 5835] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=90, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=58 /* 0.58 s */} --- [pid 5031] umount2("./30", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 257.236130][ T5841] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5031] umount2("./30/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./30/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./30/cgroup.cpu") = 0 [pid 5031] umount2("./30/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./30/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./30/binderfs") = 0 [pid 5031] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./30/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./30/file0") = 0 [pid 5031] umount2("./30/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./30/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 257.293795][ T5841] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5841 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 257.329200][ T5841] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [pid 5837] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5031] unlink("./30/cgroup") = 0 [pid 5031] umount2("./30/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./30/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./30/cgroup.net" [pid 5838] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5031] <... unlink resumed>) = 0 [pid 5838] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] getdents64(3, [pid 5838] <... futex resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5838] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5031] close(3 [pid 5838] <... mmap resumed>) = 0x7f4f6607f000 [pid 5031] <... close resumed>) = 0 [pid 5838] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5031] rmdir("./30" [pid 5838] <... mprotect resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5838] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5031] mkdir("./31", 0777 [pid 5838] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5837] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] <... mkdir resumed>) = 0 [pid 5838] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5838] <... clone3 resumed> => {parent_tid=[94]}, 88) = 94 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5838] rt_sigprocmask(SIG_SETMASK, [], [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5838] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5031] close(3 [pid 5838] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] <... close resumed>) = 0 [pid 5838] <... futex resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5854 attached [pid 5838] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5854] set_robust_list(0x55555654e6a0, 24 [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 92 [pid 5854] <... set_robust_list resumed>) = 0 [pid 5854] chdir("./31") = 0 [pid 5854] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5854] setpgid(0, 0) = 0 ./strace-static-x86_64: Process 5853 attached [pid 5854] symlink("/syzcgroup/unified/syz4", "./cgroup") = 0 [pid 5854] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu") = 0 [pid 5854] symlink("/syzcgroup/net/syz4", "./cgroup.net") = 0 [pid 5853] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5854] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [ 257.365939][ T5841] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 257.373691][ T5841] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [pid 5854] write(3, "1000", 4 [pid 5837] <... futex resumed>) = 0 [pid 5854] <... write resumed>) = 4 [pid 5854] close(3) = 0 [pid 5854] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5854] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5854] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5854] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5853] <... rseq resumed>) = 0 [pid 5854] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5854] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5853] set_robust_list(0x7f4f6609f9a0, 24./strace-static-x86_64: Process 5855 attached [pid 5855] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5854] <... clone3 resumed> => {parent_tid=[93]}, 88) = 93 [pid 5853] <... set_robust_list resumed>) = 0 [pid 5855] <... rseq resumed>) = 0 [pid 5854] rt_sigprocmask(SIG_SETMASK, [], [pid 5855] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5854] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5853] rt_sigprocmask(SIG_SETMASK, [], [pid 5839] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5838] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5855] <... set_robust_list resumed>) = 0 [pid 5854] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5838] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5837] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5855] rt_sigprocmask(SIG_SETMASK, [], [pid 5854] <... futex resumed>) = 0 [pid 5838] <... futex resumed>) = 0 [pid 5855] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5854] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5838] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5855] memfd_create("syzkaller", 0 [pid 5839] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5838] <... mmap resumed>) = 0x7f4f6605e000 [pid 5837] <... mmap resumed>) = 0x7f4f6607f000 [pid 5855] <... memfd_create resumed>) = 3 [pid 5838] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE [pid 5855] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5853] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5838] <... mprotect resumed>) = 0 [pid 5855] <... mmap resumed>) = 0x7f4f650a0000 [ 257.430267][ T5841] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 257.457226][ T5841] gfs2: fsid=syz:syz.0: File system withdrawn [ 257.487479][ T5841] CPU: 0 PID: 5841 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 257.497981][ T5841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 257.508078][ T5841] Call Trace: [ 257.511387][ T5841] [ 257.514373][ T5841] dump_stack_lvl+0x136/0x150 [ 257.519115][ T5841] gfs2_withdraw+0xb33/0x1060 [ 257.523838][ T5841] ? gfs2_consist_inode_i+0x104/0x150 [ 257.529265][ T5841] gfs2_dirent_scan+0x32a/0x3d0 [ 257.534172][ T5841] ? gfs2_dirent_prev+0x210/0x210 [ 257.539273][ T5841] ? gfs2_dirent_prev+0x210/0x210 [ 257.544360][ T5841] gfs2_dirent_search+0x47d/0x580 [ 257.549442][ T5841] ? get_first_leaf+0x190/0x190 [ 257.554367][ T5841] ? gfs2_permission+0x256/0x3e0 [ 257.559363][ T5841] gfs2_dir_search+0x8d/0x2d0 [ 257.564095][ T5841] ? gfs2_dir_read+0x14e0/0x14e0 [ 257.569092][ T5841] gfs2_lookupi+0x481/0x640 [ 257.573650][ T5841] ? gfs2_lookup_by_inum+0x100/0x100 [ 257.578989][ T5841] ? __gfs2_lookup+0x83/0x280 [ 257.583718][ T5841] ? d_alloc_parallel+0x693/0x1530 [ 257.588887][ T5841] __gfs2_lookup+0x83/0x280 [ 257.593439][ T5841] ? gfs2_lookupi+0x640/0x640 [ 257.598177][ T5841] ? __d_lookup_rcu+0x4e0/0x4e0 [ 257.603079][ T5841] ? __d_lookup+0x289/0x4c0 [ 257.607631][ T5841] gfs2_atomic_open+0xde/0x250 [ 257.612457][ T5841] ? __gfs2_lookup+0x280/0x280 [ 257.617271][ T5841] lookup_open.isra.0+0xce2/0x1400 [ 257.622441][ T5841] ? link_path_walk.part.0+0xd60/0xd60 [ 257.627968][ T5841] ? lookup_fast+0x14e/0x520 [ 257.632610][ T5841] path_openat+0x969/0x2710 [ 257.637228][ T5841] ? path_lookupat+0x840/0x840 [ 257.642045][ T5841] do_filp_open+0x1ba/0x410 [ 257.646627][ T5841] ? may_open_dev+0xf0/0xf0 [ 257.651180][ T5841] ? find_held_lock+0x2d/0x110 [ 257.655989][ T5841] ? do_raw_spin_lock+0x124/0x2b0 [ 257.661068][ T5841] ? spin_bug+0x1c0/0x1c0 [ 257.665536][ T5841] ? _raw_spin_unlock+0x28/0x40 [ 257.670450][ T5841] ? alloc_fd+0x2e4/0x750 [ 257.674842][ T5841] do_sys_openat2+0x160/0x1c0 [ 257.679586][ T5841] ? build_open_flags+0x720/0x720 [ 257.684684][ T5841] ? ptrace_notify+0xfe/0x140 [ 257.689458][ T5841] ? lock_downgrade+0x690/0x690 [ 257.694379][ T5841] __x64_sys_openat+0x143/0x1f0 [ 257.699289][ T5841] ? __ia32_sys_open+0x1c0/0x1c0 [ 257.704281][ T5841] ? _raw_spin_unlock_irq+0x23/0x50 [ 257.709587][ T5841] ? lockdep_hardirqs_on+0x7d/0x100 [ 257.714838][ T5841] ? _raw_spin_unlock_irq+0x2e/0x50 [ 257.720100][ T5841] ? ptrace_notify+0xfe/0x140 [ 257.725026][ T5841] do_syscall_64+0x39/0xb0 [ 257.729485][ T5841] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 257.735446][ T5841] RIP: 0033:0x7f4f6dd107f9 [ 257.739899][ T5841] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 257.759562][ T5841] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 257.768039][ T5841] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 257.776057][ T5841] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [pid 5853] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5837] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5839] <... futex resumed>) = 0 [pid 5839] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5839] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5839] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5838] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5838] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} => {parent_tid=[95]}, 88) = 95 [pid 5838] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5838] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5838] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5856 attached [pid 5856] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053) = 0 [pid 5856] set_robust_list(0x7f4f6607e9a0, 24) = 0 [pid 5856] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5856] ioctl(-1, VFAT_IOCTL_READDIR_SHORT, 0) = -1 EBADF (Bad file descriptor) [pid 5856] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5838] <... futex resumed>) = 0 [pid 5856] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5838] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 5856] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5838] <... futex resumed>) = 0 [pid 5839] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5856] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5838] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5856] <... futex resumed>) = 0 [pid 5838] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5856] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5844] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5844] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5844] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5844] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5839] <... clone3 resumed> => {parent_tid=[92]}, 88) = 92 [pid 5844] <... mprotect resumed>) = 0 [pid 5844] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5844] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5858 attached [pid 5858] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5844] <... clone3 resumed> => {parent_tid=[99]}, 88) = 99 [pid 5858] <... rseq resumed>) = 0 [pid 5844] rt_sigprocmask(SIG_SETMASK, [], [pid 5839] rt_sigprocmask(SIG_SETMASK, [], [pid 5858] set_robust_list(0x7f4f6609f9a0, 24 [pid 5844] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5858] <... set_robust_list resumed>) = 0 [pid 5858] rt_sigprocmask(SIG_SETMASK, [], [pid 5844] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5858] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5858] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5844] <... futex resumed>) = 0 [pid 5858] <... openat resumed>) = 3 [pid 5858] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5844] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5858] <... futex resumed>) = 0 [pid 5858] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5844] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5858] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5844] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5858] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5844] <... futex resumed>) = 0 [pid 5858] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5844] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5858] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5844] <... futex resumed>) = 0 [pid 5858] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5844] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5858] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5858] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5844] <... futex resumed>) = 0 [pid 5858] <... futex resumed>) = 0 [pid 5844] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5858] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5844] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5839] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5839] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5839] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5853] <... openat resumed>) = 3 [pid 5853] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5853] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5839] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5839] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5839] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6605e000 [pid 5839] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5839] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5839] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} [pid 5842] <... ioctl resumed>) = 0 ./strace-static-x86_64: Process 5857 attached [pid 5843] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5857] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5843] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5857] <... rseq resumed>) = 0 [pid 5843] <... futex resumed>) = 0 [pid 5857] set_robust_list(0x7f4f6609f9a0, 24 [pid 5843] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5857] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5859 attached [pid 5857] rt_sigprocmask(SIG_SETMASK, [], [pid 5843] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5842] close(4 [pid 5839] <... clone3 resumed> => {parent_tid=[93]}, 88) = 93 [pid 5857] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5857] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5859] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 5843] <... mprotect resumed>) = 0 [pid 5842] <... close resumed>) = 0 [pid 5839] rt_sigprocmask(SIG_SETMASK, [], [pid 5859] <... rseq resumed>) = 0 [pid 5842] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5839] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5859] set_robust_list(0x7f4f6607e9a0, 24 [pid 5842] <... futex resumed>) = 0 [pid 5839] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 5859] <... set_robust_list resumed>) = 0 [pid 5842] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5839] <... futex resumed>) = 0 [pid 5859] rt_sigprocmask(SIG_SETMASK, [], [pid 5839] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5859] <... rt_sigprocmask resumed>NULL, 8) = 0 [ 257.784074][ T5841] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 257.792102][ T5841] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 257.800130][ T5841] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 257.808259][ T5841] [pid 5859] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5857] <... openat resumed>) = 3 [pid 5843] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5859] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5857] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5843] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5859] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5857] <... futex resumed>) = 0 [pid 5843] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5860 attached [pid 5859] <... futex resumed>) = 1 [pid 5857] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5839] <... futex resumed>) = 0 [pid 5860] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5859] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5845] <... ioctl resumed>) = 0 [pid 5843] <... clone3 resumed> => {parent_tid=[87]}, 88) = 87 [pid 5840] <... ioctl resumed>) = 0 [pid 5839] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5842] <... futex resumed>) = 0 [pid 5839] <... futex resumed>) = 1 [pid 5842] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5839] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5842] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5842] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5839] <... futex resumed>) = 0 [pid 5842] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5839] close(3 [pid 5860] <... rseq resumed>) = 0 [pid 5845] close(4 [pid 5843] rt_sigprocmask(SIG_SETMASK, [], [pid 5841] <... openat resumed>) = -1 EIO (Input/output error) [pid 5840] close(4 [pid 5839] <... close resumed>) = 0 [pid 5837] <... mprotect resumed>) = 0 [pid 5860] set_robust_list(0x7f4f6609f9a0, 24 [pid 5843] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5839] close(4) = -1 EBADF (Bad file descriptor) [pid 5845] <... close resumed>) = 0 [pid 5840] <... close resumed>) = 0 [pid 5839] close(5) = -1 EBADF (Bad file descriptor) [pid 5839] close(6) = -1 EBADF (Bad file descriptor) [pid 5839] close(7) = -1 EBADF (Bad file descriptor) [pid 5839] close(8) = -1 EBADF (Bad file descriptor) [pid 5839] close(9) = -1 EBADF (Bad file descriptor) [pid 5839] close(10) = -1 EBADF (Bad file descriptor) [pid 5839] close(11) = -1 EBADF (Bad file descriptor) [pid 5860] <... set_robust_list resumed>) = 0 [pid 5845] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5843] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5840] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5839] close(12 [pid 5860] rt_sigprocmask(SIG_SETMASK, [], [pid 5845] <... futex resumed>) = 0 [pid 5844] close(3 [pid 5843] <... futex resumed>) = 0 [pid 5840] <... futex resumed>) = 0 [pid 5839] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5845] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5844] <... close resumed>) = 0 [pid 5840] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5839] close(13 [pid 5837] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5841] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5843] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5860] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5844] close(4 [pid 5839] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(3 [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5841] <... futex resumed>) = 0 [pid 5839] close(14 [pid 5838] <... close resumed>) = 0 [pid 5837] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5860] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5844] close(5 [pid 5841] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5839] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(4 [pid 5837] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5861 attached [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5839] close(15 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5861] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5844] close(6 [pid 5839] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(5 [pid 5861] <... rseq resumed>) = 0 [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5839] close(16 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5861] set_robust_list(0x7f4f6609f9a0, 24 [pid 5860] <... openat resumed>) = 3 [pid 5846] <... ioctl resumed>) = 0 [pid 5844] close(7 [pid 5839] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(6 [pid 5837] <... clone3 resumed> => {parent_tid=[96]}, 88) = 96 [pid 5861] <... set_robust_list resumed>) = 0 [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5839] close(17 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] rt_sigprocmask(SIG_SETMASK, [], [pid 5861] rt_sigprocmask(SIG_SETMASK, [], [pid 5860] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5846] close(4 [pid 5844] close(8 [pid 5839] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(7 [pid 5837] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5861] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5860] <... futex resumed>) = 1 [pid 5846] <... close resumed>) = 0 [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5843] <... futex resumed>) = 0 [pid 5839] close(18 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5861] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5860] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5846] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5844] close(9 [pid 5843] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5839] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(8 [pid 5837] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5861] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5860] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5846] <... futex resumed>) = 0 [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5843] <... futex resumed>) = 0 [pid 5839] close(19 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... futex resumed>) = 0 [pid 5861] ioctl(0, VFAT_IOCTL_READDIR_SHORT [pid 5844] close(10 [pid 5843] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5839] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5860] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5838] close(9 [pid 5846] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5837] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5861] <... ioctl resumed>, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5839] close(20 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5861] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5844] close(11 [pid 5839] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(10 [pid 5861] <... futex resumed>) = 0 [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5839] close(21 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5861] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5844] close(12 [pid 5839] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(11 [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5839] close(22 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5844] close(13 [pid 5839] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(12 [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5839] close(23 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5844] close(14 [pid 5839] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(13 [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5839] close(24 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5844] close(15 [pid 5839] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(14 [pid 5860] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5839] close(25 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5860] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5844] close(16 [pid 5839] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(15 [pid 5837] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5860] <... futex resumed>) = 1 [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5843] <... futex resumed>) = 0 [pid 5839] close(26 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... futex resumed>) = 1 [pid 5841] <... futex resumed>) = 0 [pid 5860] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5844] close(17 [pid 5843] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5839] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(16 [pid 5841] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5837] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5846] <... futex resumed>) = 0 [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5843] <... futex resumed>) = 1 [pid 5841] <... openat resumed>) = -1 EIO (Input/output error) [pid 5839] close(27 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5846] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5844] close(18 [pid 5843] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5841] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5839] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(17 [pid 5846] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5841] <... futex resumed>) = 1 [pid 5839] close(28 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... futex resumed>) = 0 [pid 5846] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5844] close(19 [pid 5841] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5839] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(18 [pid 5837] close(3 [pid 5846] <... futex resumed>) = 1 [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5843] <... futex resumed>) = 0 [pid 5839] close(29 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = 0 [pid 5846] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5844] close(20 [pid 5843] close(3 [pid 5839] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(19 [pid 5837] close(4 [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5843] <... close resumed>) = 0 [pid 5839] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5844] close(21 [pid 5843] close(4 [pid 5839] <... write resumed>) = 156 [pid 5838] close(20 [pid 5837] close(5 [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5839] exit_group(0 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5859] <... futex resumed>) = ? [pid 5857] <... futex resumed>) = ? [pid 5844] close(22 [pid 5843] close(5 [pid 5842] <... futex resumed>) = ? [pid 5839] <... exit_group resumed>) = ? [pid 5838] close(21 [pid 5837] close(6 [pid 5859] +++ exited with 0 +++ [pid 5857] +++ exited with 0 +++ [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5842] +++ exited with 0 +++ [pid 5839] +++ exited with 0 +++ [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5844] close(23 [pid 5843] close(6 [pid 5838] close(22 [pid 5837] close(7 [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=90, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=61 /* 0.61 s */} --- [pid 5844] close(24 [pid 5843] close(7 [pid 5838] close(23 [pid 5837] close(8 [pid 5032] umount2("./31", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] close(25 [pid 5838] close(24 [pid 5032] openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... openat resumed>) = 3 [pid 5844] close(26 [pid 5838] close(25 [pid 5032] newfstatat(3, "", [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5843] close(8 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] close(9 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5844] close(27 [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(26 [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] getdents64(3, [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5843] close(9 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] close(10 [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5844] close(28 [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(27 [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./31/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5843] close(10 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] close(11 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5844] close(29 [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(28 [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] newfstatat(AT_FDCWD, "./31/cgroup.cpu", [pid 5844] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5843] close(11 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] close(12 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5844] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] close(29 [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] unlink("./31/cgroup.cpu" [pid 5844] <... write resumed>) = 156 [pid 5843] close(12 [pid 5838] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] close(13 [pid 5032] <... unlink resumed>) = 0 [pid 5844] exit_group(0 [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./31/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5858] <... futex resumed>) = ? [pid 5845] <... futex resumed>) = ? [pid 5844] <... exit_group resumed>) = ? [pid 5843] close(13 [pid 5838] <... write resumed>) = 156 [pid 5837] close(14 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5858] +++ exited with 0 +++ [pid 5845] +++ exited with 0 +++ [pid 5844] +++ exited with 0 +++ [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] exit_group(0 [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] newfstatat(AT_FDCWD, "./31/binderfs", [pid 5856] <... futex resumed>) = ? [pid 5853] <... futex resumed>) = ? [pid 5843] close(14 [pid 5840] <... futex resumed>) = ? [pid 5838] <... exit_group resumed>) = ? [pid 5837] close(15 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=97, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=68 /* 0.68 s */} --- [pid 5856] +++ exited with 0 +++ [pid 5853] +++ exited with 0 +++ [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5840] +++ exited with 0 +++ [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5843] close(15 [pid 5837] close(16 [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5838] +++ exited with 0 +++ [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] unlink("./31/binderfs" [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 5843] close(16 [pid 5837] close(17 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=92, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=58 /* 0.58 s */} --- [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... unlink resumed>) = 0 [pid 5029] <... restart_syscall resumed>) = 0 [pid 5843] close(17 [pid 5837] close(18 [pid 5032] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] close(18 [pid 5837] close(19 [pid 5032] newfstatat(AT_FDCWD, "./31/file0", [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5843] close(19 [pid 5837] close(20 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./30", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./32", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] close(20 [pid 5837] close(21 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] close(21 [pid 5837] close(22 [pid 5029] <... openat resumed>) = 3 [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... openat resumed>) = 3 [pid 5843] close(22 [pid 5837] close(23 [pid 5033] newfstatat(3, "", [pid 5032] <... openat resumed>) = 4 [pid 5029] newfstatat(3, "", [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] newfstatat(4, "", [pid 5843] close(23 [pid 5837] close(24 [pid 5033] getdents64(3, [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5843] close(24 [pid 5837] close(25 [pid 5033] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5032] getdents64(4, [pid 5029] getdents64(3, [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./32/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5843] close(25 [pid 5837] close(26 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] getdents64(4, [pid 5029] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(AT_FDCWD, "./32/cgroup.cpu", [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5029] umount2("./30/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5843] close(26 [pid 5837] close(27 [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] close(4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] close(27 [pid 5837] close(28 [pid 5033] unlink("./32/cgroup.cpu" [pid 5032] <... close resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./30/cgroup.cpu", [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5843] close(28 [pid 5837] close(29 [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5843] close(29 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5837] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5843] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5837] <... write resumed>) = 156 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5843] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5837] exit_group(0 [pid 5843] <... write resumed>) = 156 [pid 5841] <... futex resumed>) = ? [pid 5837] <... exit_group resumed>) = ? [pid 5843] exit_group(0 [pid 5841] +++ exited with 0 +++ [pid 5860] <... futex resumed>) = ? [pid 5846] <... futex resumed>) = ? [pid 5843] <... exit_group resumed>) = ? [pid 5861] <... futex resumed>) = ? [pid 5860] +++ exited with 0 +++ [pid 5846] +++ exited with 0 +++ [pid 5843] +++ exited with 0 +++ [pid 5033] <... unlink resumed>) = 0 [pid 5032] rmdir("./31/file0" [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5861] +++ exited with 0 +++ [pid 5837] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=94, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=55 /* 0.55 s */} --- [pid 5032] umount2("./31/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./32/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] unlink("./30/cgroup.cpu" [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=85, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=71 /* 0.71 s */} --- [pid 5034] <... restart_syscall resumed>) = 0 [pid 5030] umount2("./30", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... unlink resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] umount2("./31", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] newfstatat(AT_FDCWD, "./32/binderfs", [pid 5032] newfstatat(AT_FDCWD, "./31/cgroup", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./30/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5034] umount2("./31/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./31/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./31/cgroup.cpu") = 0 [pid 5034] umount2("./31/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./31/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./31/binderfs") = 0 [pid 5034] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] unlink("./31/cgroup" [pid 5033] unlink("./32/binderfs" [pid 5030] <... openat resumed>) = 3 [pid 5029] newfstatat(AT_FDCWD, "./30/binderfs", [pid 5033] <... unlink resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5030] newfstatat(3, "", [pid 5029] unlink("./30/binderfs" [pid 5033] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./31/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5030] getdents64(3, [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5033] newfstatat(AT_FDCWD, "./32/file0", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./30/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(AT_FDCWD, "./31/cgroup.net", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] newfstatat(AT_FDCWD, "./30/cgroup.cpu", [pid 5029] newfstatat(AT_FDCWD, "./30/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... openat resumed>) = 4 [pid 5032] unlink("./31/cgroup.net" [pid 5029] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] newfstatat(4, "", [pid 5032] <... unlink resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 5030] unlink("./30/cgroup.cpu" [pid 5029] openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] getdents64(4, [pid 5029] <... openat resumed>) = 4 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5029] newfstatat(4, "", [pid 5032] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, [pid 5032] close(3 [pid 5030] umount2("./30/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(4, [pid 5855] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5032] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5033] close(4) = 0 [pid 5032] rmdir("./31" [pid 5029] getdents64(4, [pid 5032] <... rmdir resumed>) = 0 [pid 5033] rmdir("./32/file0" [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5029] close(4) = 0 [pid 5033] umount2("./32/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] mkdir("./32", 0777 [pid 5029] rmdir("./30/file0" [pid 5030] newfstatat(AT_FDCWD, "./30/binderfs", [pid 5029] <... rmdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... mkdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./30/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] newfstatat(AT_FDCWD, "./32/cgroup", [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5030] unlink("./30/binderfs" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5030] <... unlink resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./30/cgroup", [pid 5033] unlink("./32/cgroup" [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5030] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] unlink("./30/cgroup" [pid 5033] umount2("./32/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] close(3 [pid 5030] newfstatat(AT_FDCWD, "./30/file0", [pid 5029] <... unlink resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./30/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] newfstatat(AT_FDCWD, "./32/cgroup.net", [pid 5032] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 5862 attached [pid 5033] unlink("./32/cgroup.net" [pid 5030] <... openat resumed>) = 4 [pid 5862] set_robust_list(0x55555654e6a0, 24 [pid 5033] <... unlink resumed>) = 0 [pid 5030] newfstatat(4, "", [pid 5029] newfstatat(AT_FDCWD, "./30/cgroup.net", [pid 5862] <... set_robust_list resumed>) = 0 [pid 5033] getdents64(3, [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] getdents64(4, [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5862] chdir("./32" [pid 5033] close(3 [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5029] unlink("./30/cgroup.net" [pid 5862] <... chdir resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 94 [pid 5030] getdents64(4, [pid 5862] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] rmdir("./32" [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 5862] <... prctl resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5030] close(4 [pid 5862] setpgid(0, 0 [pid 5033] mkdir("./33", 0777 [pid 5030] <... close resumed>) = 0 [pid 5029] getdents64(3, [pid 5862] <... setpgid resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5030] rmdir("./30/file0" [pid 5862] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] <... rmdir resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5862] <... symlink resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5030] umount2("./30/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5862] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] close(3 [pid 5862] <... symlink resumed>) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] newfstatat(AT_FDCWD, "./30/cgroup", [pid 5862] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 5033] close(3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... close resumed>) = 0 [pid 5862] <... symlink resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5030] unlink("./30/cgroup" [pid 5862] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] rmdir("./30"./strace-static-x86_64: Process 5863 attached [pid 5862] <... openat resumed>) = 3 [pid 5863] set_robust_list(0x55555654e6a0, 24 [pid 5862] write(3, "1000", 4 [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 96 [pid 5863] <... set_robust_list resumed>) = 0 [pid 5862] <... write resumed>) = 4 [pid 5863] chdir("./33" [pid 5862] close(3 [pid 5863] <... chdir resumed>) = 0 [pid 5862] <... close resumed>) = 0 [pid 5863] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5862] symlink("/dev/binderfs", "./binderfs" [pid 5863] <... prctl resumed>) = 0 [pid 5863] setpgid(0, 0) = 0 [pid 5863] symlink("/syzcgroup/unified/syz2", "./cgroup" [pid 5030] <... unlink resumed>) = 0 [pid 5863] <... symlink resumed>) = 0 [pid 5862] <... symlink resumed>) = 0 [pid 5030] umount2("./30/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./30/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./30/cgroup.net") = 0 [pid 5030] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./30" [pid 5863] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu" [pid 5862] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] <... rmdir resumed>) = 0 [pid 5029] mkdir("./31", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3 [pid 5863] <... symlink resumed>) = 0 [pid 5862] <... futex resumed>) = 0 [pid 5030] mkdir("./31", 0777 [pid 5029] <... close resumed>) = 0 [pid 5863] symlink("/syzcgroup/net/syz2", "./cgroup.net" [pid 5862] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5864 attached [pid 5863] <... symlink resumed>) = 0 [pid 5862] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5030] <... mkdir resumed>) = 0 [pid 5863] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5862] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 100 [pid 5864] set_robust_list(0x55555654e6a0, 24 [pid 5863] <... openat resumed>) = 3 [pid 5862] <... mprotect resumed>) = 0 [pid 5864] <... set_robust_list resumed>) = 0 [pid 5862] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5864] chdir("./31" [pid 5862] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5864] <... chdir resumed>) = 0 [pid 5862] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5864] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5863] write(3, "1000", 4./strace-static-x86_64: Process 5865 attached [pid 5864] <... prctl resumed>) = 0 [pid 5863] <... write resumed>) = 4 [pid 5864] setpgid(0, 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5863] close(3 [pid 5864] <... setpgid resumed>) = 0 [pid 5862] <... clone3 resumed> => {parent_tid=[95]}, 88) = 95 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5863] <... close resumed>) = 0 [pid 5865] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053) = 0 [pid 5865] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5864] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 5863] symlink("/dev/binderfs", "./binderfs" [pid 5862] rt_sigprocmask(SIG_SETMASK, [], [pid 5030] close(3 [pid 5865] <... set_robust_list resumed>) = 0 [pid 5864] <... symlink resumed>) = 0 [pid 5865] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5863] <... symlink resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5862] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5864] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu" [pid 5863] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5862] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5865] memfd_create("syzkaller", 0 [pid 5864] <... symlink resumed>) = 0 [pid 5865] <... memfd_create resumed>) = 3 [pid 5865] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 ./strace-static-x86_64: Process 5866 attached [pid 5864] symlink("/syzcgroup/net/syz0", "./cgroup.net" [pid 5863] <... futex resumed>) = 0 [pid 5862] <... futex resumed>) = 0 [pid 5863] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5862] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5864] <... symlink resumed>) = 0 [pid 5866] set_robust_list(0x55555654e6a0, 24 [pid 5864] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5863] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 88 [pid 5863] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5863] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5866] <... set_robust_list resumed>) = 0 [pid 5864] <... openat resumed>) = 3 [pid 5863] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5863] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5867 attached [pid 5867] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053) = 0 [pid 5867] set_robust_list(0x7f4f6d4c09a0, 24) = 0 [pid 5867] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5864] write(3, "1000", 4 [pid 5867] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5866] chdir("./31" [pid 5864] <... write resumed>) = 4 [pid 5863] <... clone3 resumed> => {parent_tid=[97]}, 88) = 97 [pid 5866] <... chdir resumed>) = 0 [pid 5864] close(3 [pid 5863] rt_sigprocmask(SIG_SETMASK, [], [pid 5866] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5864] <... close resumed>) = 0 [pid 5863] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5864] symlink("/dev/binderfs", "./binderfs" [pid 5866] <... prctl resumed>) = 0 [pid 5863] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5864] <... symlink resumed>) = 0 [pid 5867] <... futex resumed>) = 0 [pid 5866] setpgid(0, 0 [pid 5864] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5863] <... futex resumed>) = 1 [pid 5867] memfd_create("syzkaller", 0) = 3 [pid 5866] <... setpgid resumed>) = 0 [pid 5864] <... futex resumed>) = 0 [pid 5863] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5867] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5866] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 5864] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5866] <... symlink resumed>) = 0 [pid 5864] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5866] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu" [pid 5864] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5866] <... symlink resumed>) = 0 [pid 5864] <... mprotect resumed>) = 0 [pid 5866] symlink("/syzcgroup/net/syz3", "./cgroup.net" [pid 5864] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5866] <... symlink resumed>) = 0 [pid 5864] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5866] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5864] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5866] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5868 attached [pid 5866] write(3, "1000", 4 [pid 5868] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5864] <... clone3 resumed> => {parent_tid=[101]}, 88) = 101 [pid 5866] <... write resumed>) = 4 [pid 5864] rt_sigprocmask(SIG_SETMASK, [], [pid 5868] <... rseq resumed>) = 0 [pid 5866] close(3 [pid 5868] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5864] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5866] <... close resumed>) = 0 [pid 5868] <... set_robust_list resumed>) = 0 [pid 5866] symlink("/dev/binderfs", "./binderfs" [pid 5864] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5868] rt_sigprocmask(SIG_SETMASK, [], [pid 5866] <... symlink resumed>) = 0 [pid 5868] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5864] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5866] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5868] memfd_create("syzkaller", 0 [pid 5866] <... futex resumed>) = 0 [pid 5866] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5868] <... memfd_create resumed>) = 3 [pid 5866] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5868] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5866] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5868] <... mmap resumed>) = 0x7f4f650a0000 [pid 5866] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5866] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5869 attached [pid 5869] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053) = 0 [pid 5869] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5866] <... clone3 resumed> => {parent_tid=[89]}, 88) = 89 [pid 5869] <... set_robust_list resumed>) = 0 [pid 5866] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5869] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5866] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5869] memfd_create("syzkaller", 0 [pid 5866] <... futex resumed>) = 0 [pid 5866] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5869] <... memfd_create resumed>) = 3 [pid 5869] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5034] <... umount2 resumed>) = 0 [pid 5034] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./31/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./31/file0") = 0 [pid 5034] umount2("./31/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./31/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./31/cgroup") = 0 [pid 5034] umount2("./31/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./31/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./31/cgroup.net") = 0 [pid 5034] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./31") = 0 [pid 5034] mkdir("./32", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5870 attached , child_tidptr=0x55555654e690) = 97 [pid 5870] set_robust_list(0x55555654e6a0, 24) = 0 [pid 5870] chdir("./32") = 0 [pid 5870] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5870] setpgid(0, 0) = 0 [pid 5870] symlink("/syzcgroup/unified/syz5", "./cgroup") = 0 [pid 5870] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu") = 0 [pid 5870] symlink("/syzcgroup/net/syz5", "./cgroup.net") = 0 [pid 5870] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5870] write(3, "1000", 4) = 4 [pid 5870] close(3) = 0 [pid 5870] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5870] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5870] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5870] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5870] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5870] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5871 attached [pid 5871] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5870] <... clone3 resumed> => {parent_tid=[98]}, 88) = 98 [pid 5871] <... rseq resumed>) = 0 [pid 5870] rt_sigprocmask(SIG_SETMASK, [], [pid 5871] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5870] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5871] <... set_robust_list resumed>) = 0 [pid 5870] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5871] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5870] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5871] memfd_create("syzkaller", 0) = 3 [pid 5871] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5855] <... write resumed>) = 16777216 [pid 5855] munmap(0x7f4f650a0000, 16777216) = 0 [pid 5855] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5855] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5855] close(3) = 0 [pid 5855] mkdir("./file0", 0777) = 0 [pid 5855] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [ 259.198383][ T5855] loop4: detected capacity change from 0 to 32768 [pid 5869] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5865] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [ 259.266353][ T5855] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 259.274587][ T5855] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [pid 5868] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [ 259.335325][ T5855] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 259.390139][ T5084] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 259.398641][ T5084] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 259.570123][ T5084] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 171ms [ 259.620531][ T5084] gfs2: fsid=syz:syz.0: jid=0: Done [pid 5867] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5855] <... mount resumed>) = 0 [pid 5855] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5855] chdir("./file0") = 0 [pid 5855] ioctl(4, LOOP_CLR_FD) = 0 [pid 5855] close(4) = 0 [pid 5855] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5854] <... futex resumed>) = 0 [pid 5855] openat(AT_FDCWD, "./file0", O_RDONLY [ 259.655864][ T5855] gfs2: fsid=syz:syz.0: first mount done, others may mount [pid 5854] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5854] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5871] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5854] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 259.697090][ T5855] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 259.705564][ T5855] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 259.705564][ T5855] inode = 12 2341 [ 259.705564][ T5855] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [pid 5854] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5854] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5854] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5854] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5854] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[94]}, 88) = 94 [pid 5854] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5854] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5854] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5873 attached [pid 5873] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053) = 0 [pid 5873] set_robust_list(0x7f4f6609f9a0, 24) = 0 [pid 5873] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5873] ioctl(0, VFAT_IOCTL_READDIR_SHORT, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 5873] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5854] <... futex resumed>) = 0 [pid 5873] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5854] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5873] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5854] <... futex resumed>) = 0 [ 259.802097][ T5855] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [pid 5873] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [ 259.854540][ T5873] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 259.864077][ T5855] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5855 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 259.887595][ T5873] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 259.887595][ T5873] inode = 12 2341 [ 259.887595][ T5873] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 259.912344][ T5855] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5873 [syz-executor676] __gfs2_lookup+0x83/0x280 [pid 5854] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [ 259.981502][ T5855] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 260.026704][ T5873] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:4 m:20 p:1 [ 260.065379][ T5855] gfs2: fsid=syz:syz.0: about to withdraw this file system [pid 5869] <... write resumed>) = 16777216 [pid 5869] munmap(0x7f4f650a0000, 16777216 [pid 5868] <... write resumed>) = 16777216 [pid 5868] munmap(0x7f4f650a0000, 16777216 [pid 5865] <... write resumed>) = 16777216 [ 260.107815][ T5873] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5855 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 260.146004][ T5855] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 260.188109][ T5873] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5873 [syz-executor676] __gfs2_lookup+0x83/0x280 [pid 5865] munmap(0x7f4f650a0000, 16777216 [pid 5869] <... munmap resumed>) = 0 [ 260.236713][ T5855] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 260.250691][ T5873] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [pid 5869] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5868] <... munmap resumed>) = 0 [pid 5869] <... openat resumed>) = 4 [pid 5869] ioctl(4, LOOP_SET_FD, 3) = 0 [ 260.300831][ T5855] gfs2: fsid=syz:syz.0: File system withdrawn [ 260.319021][ T5869] loop3: detected capacity change from 0 to 32768 [ 260.330349][ T5855] CPU: 0 PID: 5855 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 260.340836][ T5855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 260.350951][ T5855] Call Trace: [ 260.354263][ T5855] [ 260.357228][ T5855] dump_stack_lvl+0x136/0x150 [ 260.361975][ T5855] gfs2_withdraw+0xb33/0x1060 [ 260.366703][ T5855] ? gfs2_consist_inode_i+0x104/0x150 [ 260.372130][ T5855] gfs2_dirent_scan+0x32a/0x3d0 [ 260.377043][ T5855] ? gfs2_dirent_prev+0x210/0x210 [ 260.382135][ T5855] ? gfs2_dirent_prev+0x210/0x210 [ 260.387231][ T5855] gfs2_dirent_search+0x47d/0x580 [ 260.392329][ T5855] ? get_first_leaf+0x190/0x190 [ 260.397240][ T5855] ? gfs2_permission+0x256/0x3e0 [ 260.402232][ T5855] gfs2_dir_search+0x8d/0x2d0 [ 260.406976][ T5855] ? gfs2_dir_read+0x14e0/0x14e0 [ 260.411977][ T5855] gfs2_lookupi+0x481/0x640 [ 260.416537][ T5855] ? gfs2_lookup_by_inum+0x100/0x100 [ 260.421880][ T5855] ? __gfs2_lookup+0x83/0x280 [ 260.426611][ T5855] ? d_alloc_parallel+0x693/0x1530 [ 260.431781][ T5855] __gfs2_lookup+0x83/0x280 [ 260.436339][ T5855] ? gfs2_lookupi+0x640/0x640 [ 260.441069][ T5855] ? __d_lookup_rcu+0x4e0/0x4e0 [ 260.445969][ T5855] ? __d_lookup+0x289/0x4c0 [ 260.450521][ T5855] gfs2_atomic_open+0xde/0x250 [ 260.455337][ T5855] ? __gfs2_lookup+0x280/0x280 [ 260.460150][ T5855] lookup_open.isra.0+0xce2/0x1400 [ 260.465323][ T5855] ? link_path_walk.part.0+0xd60/0xd60 [ 260.470840][ T5855] ? lookup_fast+0x14e/0x520 [ 260.475487][ T5855] path_openat+0x969/0x2710 [ 260.480044][ T5855] ? path_lookupat+0x840/0x840 [ 260.484869][ T5855] do_filp_open+0x1ba/0x410 [ 260.489455][ T5855] ? may_open_dev+0xf0/0xf0 [ 260.494010][ T5855] ? find_held_lock+0x2d/0x110 [pid 5867] <... write resumed>) = 16777216 [ 260.498829][ T5855] ? do_raw_spin_lock+0x124/0x2b0 [ 260.503928][ T5855] ? spin_bug+0x1c0/0x1c0 [ 260.508323][ T5855] ? _raw_spin_unlock+0x28/0x40 [ 260.513226][ T5855] ? alloc_fd+0x2e4/0x750 [ 260.517621][ T5855] do_sys_openat2+0x160/0x1c0 [ 260.522370][ T5855] ? build_open_flags+0x720/0x720 [ 260.527473][ T5855] ? ptrace_notify+0xfe/0x140 [ 260.532221][ T5855] ? lock_downgrade+0x690/0x690 [ 260.537136][ T5855] __x64_sys_openat+0x143/0x1f0 [ 260.542051][ T5855] ? __ia32_sys_open+0x1c0/0x1c0 [ 260.547047][ T5855] ? _raw_spin_unlock_irq+0x23/0x50 [ 260.552309][ T5855] ? lockdep_hardirqs_on+0x7d/0x100 [ 260.557564][ T5855] ? _raw_spin_unlock_irq+0x2e/0x50 [ 260.562827][ T5855] ? ptrace_notify+0xfe/0x140 [ 260.567566][ T5855] do_syscall_64+0x39/0xb0 [ 260.572029][ T5855] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 260.578004][ T5855] RIP: 0033:0x7f4f6dd107f9 [ 260.582461][ T5855] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [pid 5867] munmap(0x7f4f650a0000, 16777216 [pid 5871] <... write resumed>) = 16777216 [ 260.602128][ T5855] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 260.610606][ T5855] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 260.618652][ T5855] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [ 260.626675][ T5855] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 260.634696][ T5855] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 260.642718][ T5855] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [pid 5871] munmap(0x7f4f650a0000, 16777216 [pid 5873] <... openat resumed>) = -1 EIO (Input/output error) [pid 5869] close(3 [pid 5868] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5865] <... munmap resumed>) = 0 [pid 5855] <... openat resumed>) = -1 EIO (Input/output error) [pid 5873] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5869] <... close resumed>) = 0 [pid 5868] <... openat resumed>) = 4 [pid 5865] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5855] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5854] close(3 [pid 5873] <... futex resumed>) = 0 [pid 5869] mkdir("./file0", 0777 [pid 5868] ioctl(4, LOOP_SET_FD, 3 [pid 5865] <... openat resumed>) = 4 [pid 5855] <... futex resumed>) = 0 [pid 5854] <... close resumed>) = 0 [pid 5873] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5869] <... mkdir resumed>) = 0 [ 260.650742][ T5855] [pid 5854] close(4) = -1 EBADF (Bad file descriptor) [pid 5869] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5865] ioctl(4, LOOP_SET_FD, 3 [pid 5855] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5854] close(5) = -1 EBADF (Bad file descriptor) [pid 5854] close(6) = -1 EBADF (Bad file descriptor) [pid 5854] close(7 [pid 5868] <... ioctl resumed>) = 0 [pid 5854] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5868] close(3 [pid 5854] close(8 [pid 5868] <... close resumed>) = 0 [pid 5865] <... ioctl resumed>) = 0 [pid 5854] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5868] mkdir("./file0", 0777 [pid 5865] close(3 [pid 5854] close(9 [pid 5868] <... mkdir resumed>) = 0 [pid 5865] <... close resumed>) = 0 [pid 5854] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5868] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5867] <... munmap resumed>) = 0 [pid 5865] mkdir("./file0", 0777 [pid 5854] close(10) = -1 EBADF (Bad file descriptor) [pid 5865] <... mkdir resumed>) = 0 [pid 5854] close(11) = -1 EBADF (Bad file descriptor) [pid 5854] close(12) = -1 EBADF (Bad file descriptor) [pid 5854] close(13) = -1 EBADF (Bad file descriptor) [pid 5854] close(14) = -1 EBADF (Bad file descriptor) [pid 5854] close(15) = -1 EBADF (Bad file descriptor) [pid 5854] close(16) = -1 EBADF (Bad file descriptor) [pid 5854] close(17) = -1 EBADF (Bad file descriptor) [pid 5854] close(18) = -1 EBADF (Bad file descriptor) [pid 5854] close(19) = -1 EBADF (Bad file descriptor) [pid 5854] close(20) = -1 EBADF (Bad file descriptor) [ 260.683541][ T5868] loop0: detected capacity change from 0 to 32768 [ 260.692258][ T5865] loop1: detected capacity change from 0 to 32768 [ 260.716637][ T5869] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [pid 5854] close(21) = -1 EBADF (Bad file descriptor) [pid 5854] close(22) = -1 EBADF (Bad file descriptor) [pid 5854] close(23) = -1 EBADF (Bad file descriptor) [pid 5854] close(24) = -1 EBADF (Bad file descriptor) [pid 5854] close(25) = -1 EBADF (Bad file descriptor) [pid 5854] close(26) = -1 EBADF (Bad file descriptor) [pid 5854] close(27) = -1 EBADF (Bad file descriptor) [pid 5854] close(28) = -1 EBADF (Bad file descriptor) [pid 5854] close(29) = -1 EBADF (Bad file descriptor) [pid 5854] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory ) = 156 [pid 5854] exit_group(0 [pid 5873] <... futex resumed>) = ? [pid 5854] <... exit_group resumed>) = ? [pid 5873] +++ exited with 0 +++ [ 260.724082][ T5869] CPU: 0 PID: 5869 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 260.734559][ T5869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 260.744662][ T5869] Call Trace: [ 260.748001][ T5869] [ 260.750983][ T5869] dump_stack_lvl+0x136/0x150 [ 260.755831][ T5869] sysfs_warn_dup+0x80/0xa0 [ 260.760417][ T5869] sysfs_create_dir_ns+0x237/0x290 [ 260.765579][ T5869] ? sysfs_create_mount_point+0xb0/0xb0 [ 260.771174][ T5869] ? spin_bug+0x1c0/0x1c0 [ 260.775561][ T5869] ? do_raw_spin_unlock+0x175/0x230 [ 260.780829][ T5869] kobject_add_internal+0x2c9/0x9c0 [ 260.786062][ T5869] ? kfree+0x11/0x150 [ 260.790072][ T5869] kobject_init_and_add+0x101/0x170 [ 260.795307][ T5869] ? kobject_create_and_add+0xf0/0xf0 [ 260.800723][ T5869] ? lockdep_init_map_type+0x21e/0x810 [ 260.806234][ T5869] ? lockdep_hardirqs_on+0x7d/0x100 [ 260.811505][ T5869] ? lockdep_init_map_type+0x21e/0x810 [ 260.817013][ T5869] gfs2_sys_fs_add+0x1d5/0x450 [ 260.821819][ T5869] ? recover_store+0x170/0x170 [ 260.826636][ T5869] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 260.832572][ T5869] gfs2_fill_super+0x1312/0x2aa0 [ 260.837575][ T5869] ? gfs2_reconfigure+0xf90/0xf90 [ 260.842660][ T5869] ? snprintf+0xbf/0x100 [ 260.846933][ T5869] ? vsprintf+0x30/0x30 [ 260.851119][ T5869] ? wait_for_completion_io_timeout+0x20/0x20 [ 260.857216][ T5869] ? set_blocksize+0x2d8/0x370 [ 260.862009][ T5869] get_tree_bdev+0x43e/0x7d0 [ 260.866628][ T5869] ? gfs2_reconfigure+0xf90/0xf90 [ 260.871681][ T5869] gfs2_get_tree+0x4e/0x270 [ 260.876213][ T5869] vfs_get_tree+0x8d/0x350 [ 260.880666][ T5869] path_mount+0x136e/0x1e70 [ 260.885201][ T5869] ? putname+0x102/0x140 [ 260.889463][ T5869] ? lockdep_hardirqs_on+0x7d/0x100 [ 260.894688][ T5869] ? finish_automount+0xa30/0xa30 [ 260.899756][ T5869] ? putname+0x102/0x140 [ 260.904023][ T5869] __x64_sys_mount+0x283/0x300 [ 260.908828][ T5869] ? copy_mnt_ns+0xb30/0xb30 [ 260.913445][ T5869] ? lockdep_hardirqs_on+0x7d/0x100 [ 260.918673][ T5869] ? _raw_spin_unlock_irq+0x2e/0x50 [ 260.923907][ T5869] ? ptrace_notify+0xfe/0x140 [ 260.928655][ T5869] do_syscall_64+0x39/0xb0 [ 260.933368][ T5869] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 260.939316][ T5869] RIP: 0033:0x7f4f6dd11c5a [ 260.943755][ T5869] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 260.963390][ T5869] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 260.971830][ T5869] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 260.979823][ T5869] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 260.987899][ T5869] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 260.995900][ T5869] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 261.003891][ T5869] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 261.011889][ T5869] [ 261.017986][ T1232] ieee802154 phy0 wpan0: encryption failed: -22 [pid 5871] <... munmap resumed>) = 0 [pid 5867] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5865] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5855] <... futex resumed>) = ? [pid 5867] <... openat resumed>) = 4 [pid 5855] +++ exited with 0 +++ [pid 5854] +++ exited with 0 +++ [pid 5867] ioctl(4, LOOP_SET_FD, 3 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=92, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=57 /* 0.57 s */} --- [ 261.020548][ T5869] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 261.024305][ T1232] ieee802154 phy1 wpan1: encryption failed: -22 [ 261.044786][ T5868] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 261.058246][ T5868] CPU: 0 PID: 5868 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 261.059646][ T5867] loop2: detected capacity change from 0 to 32768 [ 261.068816][ T5868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 261.068836][ T5868] Call Trace: [ 261.068846][ T5868] [ 261.068856][ T5868] dump_stack_lvl+0x136/0x150 [ 261.088728][ T5869] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 261.091630][ T5868] sysfs_warn_dup+0x80/0xa0 [ 261.107403][ T5868] sysfs_create_dir_ns+0x237/0x290 [ 261.112568][ T5868] ? sysfs_create_mount_point+0xb0/0xb0 [ 261.118159][ T5868] ? spin_bug+0x1c0/0x1c0 [ 261.122524][ T5868] ? do_raw_spin_unlock+0x175/0x230 [ 261.127775][ T5868] kobject_add_internal+0x2c9/0x9c0 [ 261.133006][ T5868] ? kfree+0x11/0x150 [ 261.137009][ T5868] kobject_init_and_add+0x101/0x170 [ 261.142233][ T5868] ? kobject_create_and_add+0xf0/0xf0 [ 261.147631][ T5868] ? lockdep_init_map_type+0x21e/0x810 [ 261.153122][ T5868] ? lockdep_hardirqs_on+0x7d/0x100 [ 261.158351][ T5868] ? lockdep_init_map_type+0x21e/0x810 [ 261.163843][ T5868] gfs2_sys_fs_add+0x1d5/0x450 [ 261.168636][ T5868] ? recover_store+0x170/0x170 [ 261.173490][ T5868] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 261.179247][ T5868] gfs2_fill_super+0x1312/0x2aa0 [ 261.184215][ T5868] ? gfs2_reconfigure+0xf90/0xf90 [ 261.189268][ T5868] ? snprintf+0xbf/0x100 [ 261.193561][ T5868] ? vsprintf+0x30/0x30 [ 261.197750][ T5868] ? wait_for_completion_io_timeout+0x20/0x20 [ 261.203853][ T5868] ? set_blocksize+0x2d8/0x370 [ 261.208685][ T5868] get_tree_bdev+0x43e/0x7d0 [ 261.213308][ T5868] ? gfs2_reconfigure+0xf90/0xf90 [ 261.218360][ T5868] gfs2_get_tree+0x4e/0x270 [ 261.222895][ T5868] vfs_get_tree+0x8d/0x350 [ 261.227346][ T5868] path_mount+0x136e/0x1e70 [ 261.231889][ T5868] ? putname+0x102/0x140 [ 261.236154][ T5868] ? lockdep_hardirqs_on+0x7d/0x100 [ 261.241387][ T5868] ? finish_automount+0xa30/0xa30 [ 261.246444][ T5868] ? putname+0x102/0x140 [ 261.250713][ T5868] __x64_sys_mount+0x283/0x300 [ 261.255510][ T5868] ? copy_mnt_ns+0xb30/0xb30 [ 261.260132][ T5868] ? lockdep_hardirqs_on+0x7d/0x100 [ 261.265536][ T5868] ? _raw_spin_unlock_irq+0x2e/0x50 [ 261.270774][ T5868] ? ptrace_notify+0xfe/0x140 [ 261.275580][ T5868] do_syscall_64+0x39/0xb0 [ 261.280019][ T5868] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 261.285957][ T5868] RIP: 0033:0x7f4f6dd11c5a [ 261.290394][ T5868] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 261.310030][ T5868] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 261.318470][ T5868] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 261.326465][ T5868] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 5871] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5869] <... mount resumed>) = -1 EEXIST (File exists) [pid 5867] <... ioctl resumed>) = 0 [pid 5031] <... restart_syscall resumed>) = 0 [ 261.334457][ T5868] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 261.342447][ T5868] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 261.350459][ T5868] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 261.358454][ T5868] [ 261.366241][ T5868] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 5871] <... openat resumed>) = 4 [pid 5869] ioctl(4, LOOP_CLR_FD [pid 5867] close(3 [pid 5871] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5871] close(3) = 0 [pid 5871] mkdir("./file0", 0777) = 0 [ 261.380680][ T5865] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 261.381736][ T5868] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 261.391152][ T5865] CPU: 1 PID: 5865 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 261.405278][ T5865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 261.406255][ T5871] loop5: detected capacity change from 0 to 32768 [ 261.415351][ T5865] Call Trace: [ 261.415367][ T5865] [ 261.428035][ T5865] dump_stack_lvl+0x136/0x150 [ 261.432784][ T5865] sysfs_warn_dup+0x80/0xa0 [pid 5871] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5867] <... close resumed>) = 0 [pid 5867] mkdir("./file0", 0777) = 0 [pid 5867] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5031] umount2("./31", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5031] umount2("./31/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./31/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./31/cgroup.cpu") = 0 [pid 5031] umount2("./31/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 261.437353][ T5865] sysfs_create_dir_ns+0x237/0x290 [ 261.442530][ T5865] ? sysfs_create_mount_point+0xb0/0xb0 [ 261.448135][ T5865] ? spin_bug+0x1c0/0x1c0 [ 261.452532][ T5865] ? do_raw_spin_unlock+0x175/0x230 [ 261.457792][ T5865] kobject_add_internal+0x2c9/0x9c0 [ 261.463053][ T5865] ? kfree+0x11/0x150 [ 261.467091][ T5865] kobject_init_and_add+0x101/0x170 [ 261.472351][ T5865] ? kobject_create_and_add+0xf0/0xf0 [ 261.477874][ T5865] ? lockdep_init_map_type+0x21e/0x810 [ 261.483394][ T5865] ? lockdep_hardirqs_on+0x7d/0x100 [ 261.484834][ T5871] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 261.488634][ T5865] ? lockdep_init_map_type+0x21e/0x810 [ 261.488684][ T5865] gfs2_sys_fs_add+0x1d5/0x450 [ 261.488718][ T5865] ? recover_store+0x170/0x170 [ 261.488751][ T5865] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 261.488799][ T5865] gfs2_fill_super+0x1312/0x2aa0 [ 261.521978][ T5865] ? gfs2_reconfigure+0xf90/0xf90 [ 261.527043][ T5865] ? snprintf+0xbf/0x100 [ 261.531319][ T5865] ? vsprintf+0x30/0x30 [ 261.535510][ T5865] ? wait_for_completion_io_timeout+0x20/0x20 [ 261.541616][ T5865] ? set_blocksize+0x2d8/0x370 [ 261.546417][ T5865] get_tree_bdev+0x43e/0x7d0 [ 261.551039][ T5865] ? gfs2_reconfigure+0xf90/0xf90 [ 261.556090][ T5865] gfs2_get_tree+0x4e/0x270 [ 261.560616][ T5865] vfs_get_tree+0x8d/0x350 [ 261.565058][ T5865] path_mount+0x136e/0x1e70 [ 261.569678][ T5865] ? putname+0x102/0x140 [ 261.573957][ T5865] ? lockdep_hardirqs_on+0x7d/0x100 [ 261.579194][ T5865] ? finish_automount+0xa30/0xa30 [ 261.584251][ T5865] ? putname+0x102/0x140 [ 261.588535][ T5865] __x64_sys_mount+0x283/0x300 [ 261.593346][ T5865] ? copy_mnt_ns+0xb30/0xb30 [ 261.598006][ T5865] ? lockdep_hardirqs_on+0x7d/0x100 [ 261.603254][ T5865] ? _raw_spin_unlock_irq+0x2e/0x50 [ 261.608495][ T5865] ? ptrace_notify+0xfe/0x140 [ 261.613233][ T5865] do_syscall_64+0x39/0xb0 [ 261.617688][ T5865] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 261.623644][ T5865] RIP: 0033:0x7f4f6dd11c5a [ 261.628088][ T5865] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 261.647727][ T5865] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 261.656167][ T5865] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 261.664164][ T5865] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 261.672155][ T5865] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [pid 5031] newfstatat(AT_FDCWD, "./31/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./31/binderfs") = 0 [pid 5031] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5868] <... mount resumed>) = -1 EEXIST (File exists) [ 261.681813][ T5865] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 261.689815][ T5865] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 261.697845][ T5865] [ 261.705646][ T5871] CPU: 1 PID: 5871 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 261.716220][ T5871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 261.724752][ T5867] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 261.726301][ T5871] Call Trace: [ 261.726314][ T5871] [ 261.726326][ T5871] dump_stack_lvl+0x136/0x150 [ 261.726386][ T5871] sysfs_warn_dup+0x80/0xa0 [ 261.726421][ T5871] sysfs_create_dir_ns+0x237/0x290 [ 261.726457][ T5871] ? sysfs_create_mount_point+0xb0/0xb0 [ 261.734011][ T5865] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 261.737117][ T5871] ? spin_bug+0x1c0/0x1c0 [ 261.737159][ T5871] ? do_raw_spin_unlock+0x175/0x230 [ 261.737201][ T5871] kobject_add_internal+0x2c9/0x9c0 [ 261.756883][ T5865] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 261.759976][ T5871] ? kfree+0x11/0x150 [ 261.760017][ T5871] kobject_init_and_add+0x101/0x170 [ 261.804463][ T5871] ? kobject_create_and_add+0xf0/0xf0 [ 261.809886][ T5871] ? lockdep_init_map_type+0x21e/0x810 [ 261.815394][ T5871] ? lockdep_hardirqs_on+0x7d/0x100 [ 261.820662][ T5871] ? lockdep_init_map_type+0x21e/0x810 [ 261.826177][ T5871] gfs2_sys_fs_add+0x1d5/0x450 [ 261.830978][ T5871] ? recover_store+0x170/0x170 [ 261.835786][ T5871] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 261.841562][ T5871] gfs2_fill_super+0x1312/0x2aa0 [ 261.846542][ T5871] ? gfs2_reconfigure+0xf90/0xf90 [ 261.851610][ T5871] ? snprintf+0xbf/0x100 [ 261.855909][ T5871] ? vsprintf+0x30/0x30 [ 261.860110][ T5871] ? wait_for_completion_io_timeout+0x20/0x20 [ 261.866208][ T5871] ? set_blocksize+0x2d8/0x370 [ 261.871007][ T5871] get_tree_bdev+0x43e/0x7d0 [ 261.875638][ T5871] ? gfs2_reconfigure+0xf90/0xf90 [ 261.880715][ T5871] gfs2_get_tree+0x4e/0x270 [ 261.885273][ T5871] vfs_get_tree+0x8d/0x350 [ 261.889733][ T5871] path_mount+0x136e/0x1e70 [ 261.894297][ T5871] ? putname+0x102/0x140 [ 261.898577][ T5871] ? lockdep_hardirqs_on+0x7d/0x100 [ 261.903817][ T5871] ? finish_automount+0xa30/0xa30 [ 261.908901][ T5871] ? putname+0x102/0x140 [ 261.913195][ T5871] __x64_sys_mount+0x283/0x300 [ 261.918001][ T5871] ? copy_mnt_ns+0xb30/0xb30 [ 261.922636][ T5871] ? lockdep_hardirqs_on+0x7d/0x100 [ 261.927892][ T5871] ? _raw_spin_unlock_irq+0x2e/0x50 [ 261.933149][ T5871] ? ptrace_notify+0xfe/0x140 [ 261.937883][ T5871] do_syscall_64+0x39/0xb0 [ 261.942356][ T5871] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 261.948316][ T5871] RIP: 0033:0x7f4f6dd11c5a [ 261.952779][ T5871] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 261.972446][ T5871] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 261.980923][ T5871] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 261.988978][ T5871] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 261.996994][ T5871] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 262.005006][ T5871] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 262.013028][ T5871] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 262.021046][ T5871] [ 262.049754][ T5871] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 262.076129][ T5871] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 262.088191][ T5867] CPU: 1 PID: 5867 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [pid 5868] ioctl(4, LOOP_CLR_FD [pid 5865] <... mount resumed>) = -1 EEXIST (File exists) [ 262.098686][ T5867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 262.108792][ T5867] Call Trace: [ 262.112150][ T5867] [ 262.115121][ T5867] dump_stack_lvl+0x136/0x150 [ 262.119879][ T5867] sysfs_warn_dup+0x80/0xa0 [ 262.124443][ T5867] sysfs_create_dir_ns+0x237/0x290 [ 262.129613][ T5867] ? sysfs_create_mount_point+0xb0/0xb0 [ 262.135212][ T5867] ? spin_bug+0x1c0/0x1c0 [ 262.139615][ T5867] ? do_raw_spin_unlock+0x175/0x230 [ 262.144881][ T5867] kobject_add_internal+0x2c9/0x9c0 [ 262.150149][ T5867] ? kfree+0x11/0x150 [ 262.154179][ T5867] kobject_init_and_add+0x101/0x170 [ 262.159432][ T5867] ? kobject_create_and_add+0xf0/0xf0 [ 262.164863][ T5867] ? lockdep_init_map_type+0x21e/0x810 [ 262.170483][ T5867] ? lockdep_hardirqs_on+0x7d/0x100 [ 262.175744][ T5867] ? lockdep_init_map_type+0x21e/0x810 [ 262.181263][ T5867] gfs2_sys_fs_add+0x1d5/0x450 [ 262.186080][ T5867] ? recover_store+0x170/0x170 [ 262.190903][ T5867] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 262.196696][ T5867] gfs2_fill_super+0x1312/0x2aa0 [ 262.201699][ T5867] ? gfs2_reconfigure+0xf90/0xf90 [ 262.206781][ T5867] ? snprintf+0xbf/0x100 [ 262.211085][ T5867] ? vsprintf+0x30/0x30 [ 262.215304][ T5867] ? wait_for_completion_io_timeout+0x20/0x20 [ 262.221441][ T5867] ? set_blocksize+0x2d8/0x370 [ 262.226272][ T5867] get_tree_bdev+0x43e/0x7d0 [ 262.230932][ T5867] ? gfs2_reconfigure+0xf90/0xf90 [ 262.236021][ T5867] gfs2_get_tree+0x4e/0x270 [ 262.240577][ T5867] vfs_get_tree+0x8d/0x350 [ 262.245045][ T5867] path_mount+0x136e/0x1e70 [ 262.249617][ T5867] ? putname+0x102/0x140 [ 262.253918][ T5867] ? lockdep_hardirqs_on+0x7d/0x100 [ 262.259187][ T5867] ? finish_automount+0xa30/0xa30 [ 262.264271][ T5867] ? putname+0x102/0x140 [ 262.268572][ T5867] __x64_sys_mount+0x283/0x300 [ 262.273400][ T5867] ? copy_mnt_ns+0xb30/0xb30 [ 262.278049][ T5867] ? lockdep_hardirqs_on+0x7d/0x100 [ 262.283318][ T5867] ? _raw_spin_unlock_irq+0x2e/0x50 [ 262.288615][ T5867] ? ptrace_notify+0xfe/0x140 [ 262.293379][ T5867] do_syscall_64+0x39/0xb0 [ 262.297850][ T5867] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 262.303819][ T5867] RIP: 0033:0x7f4f6dd11c5a [ 262.308282][ T5867] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 262.327956][ T5867] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 262.336433][ T5867] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [pid 5865] ioctl(4, LOOP_CLR_FD [pid 5871] <... mount resumed>) = -1 EEXIST (File exists) [ 262.344449][ T5867] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 262.352471][ T5867] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 262.360492][ T5867] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 262.368526][ T5867] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 262.376550][ T5867] [pid 5871] ioctl(4, LOOP_CLR_FD [ 262.416061][ T5867] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 5862] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5862] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5864] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5863] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5863] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5866] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5866] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5863] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5866] <... futex resumed>) = 0 [pid 5864] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5863] <... mmap resumed>) = 0x7f4f6607f000 [pid 5862] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5866] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5863] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5866] <... mmap resumed>) = 0x7f4f6607f000 [pid 5863] <... mprotect resumed>) = 0 [pid 5862] <... mmap resumed>) = 0x7f4f6607f000 [pid 5866] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5863] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5866] <... mprotect resumed>) = 0 [pid 5863] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5866] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5863] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5879 attached [pid 5866] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5879] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5866] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5863] <... clone3 resumed> => {parent_tid=[98]}, 88) = 98 ./strace-static-x86_64: Process 5880 attached [pid 5879] <... rseq resumed>) = 0 [pid 5864] <... futex resumed>) = 0 [pid 5863] rt_sigprocmask(SIG_SETMASK, [], [pid 5880] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5879] set_robust_list(0x7f4f6609f9a0, 24 [pid 5868] <... ioctl resumed>) = 0 [pid 5866] <... clone3 resumed> => {parent_tid=[90]}, 88) = 90 [pid 5863] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5880] <... rseq resumed>) = 0 [pid 5879] <... set_robust_list resumed>) = 0 [pid 5866] rt_sigprocmask(SIG_SETMASK, [], [pid 5863] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5862] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5880] set_robust_list(0x7f4f6609f9a0, 24 [pid 5879] rt_sigprocmask(SIG_SETMASK, [], [pid 5866] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5863] <... futex resumed>) = 0 [pid 5880] <... set_robust_list resumed>) = 0 [pid 5879] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5866] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5863] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5880] rt_sigprocmask(SIG_SETMASK, [], [pid 5879] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5866] <... futex resumed>) = 0 [pid 5880] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5879] <... openat resumed>) = 3 [pid 5866] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5862] <... mprotect resumed>) = 0 [pid 5880] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5879] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5880] <... openat resumed>) = 3 [pid 5879] <... futex resumed>) = 1 [pid 5863] <... futex resumed>) = 0 [pid 5862] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5880] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5879] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5868] close(4 [pid 5864] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5863] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5862] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5880] <... futex resumed>) = 1 [pid 5879] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5868] <... close resumed>) = 0 [pid 5866] <... futex resumed>) = 0 [pid 5864] <... mmap resumed>) = 0x7f4f6607f000 [pid 5863] <... futex resumed>) = 0 [pid 5880] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5879] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5868] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5866] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5864] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5863] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5880] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5879] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5868] <... futex resumed>) = 0 [pid 5866] <... futex resumed>) = 0 [pid 5864] <... mprotect resumed>) = 0 [pid 5880] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5879] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5868] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5866] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5864] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5880] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5879] <... futex resumed>) = 1 [pid 5864] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5863] <... futex resumed>) = 0 [pid 5880] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5879] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5864] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5863] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5881 attached [pid 5880] <... futex resumed>) = 1 [pid 5879] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5866] <... futex resumed>) = 0 [pid 5863] <... futex resumed>) = 0 [pid 5881] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5880] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5879] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5866] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5864] <... clone3 resumed> => {parent_tid=[102]}, 88) = 102 [pid 5863] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5881] <... rseq resumed>) = 0 [pid 5880] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5879] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5866] <... futex resumed>) = 0 [pid 5864] rt_sigprocmask(SIG_SETMASK, [], [pid 5881] set_robust_list(0x7f4f6609f9a0, 24 [pid 5880] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5879] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5866] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5864] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5881] <... set_robust_list resumed>) = 0 [pid 5880] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5879] <... futex resumed>) = 1 [pid 5864] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5863] <... futex resumed>) = 0 [pid 5881] rt_sigprocmask(SIG_SETMASK, [], [pid 5880] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5879] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5864] <... futex resumed>) = 0 [pid 5881] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5880] <... futex resumed>) = 1 [pid 5866] <... futex resumed>) = 0 [pid 5864] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5881] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5880] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5881] <... openat resumed>) = 3 [pid 5862] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5881] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5882 attached ) = 1 [pid 5864] <... futex resumed>) = 0 [pid 5882] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5881] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5864] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5882] <... rseq resumed>) = 0 [pid 5868] <... futex resumed>) = 0 [pid 5864] <... futex resumed>) = 1 [pid 5882] set_robust_list(0x7f4f6609f9a0, 24 [pid 5868] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5864] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5862] <... clone3 resumed> => {parent_tid=[96]}, 88) = 96 [pid 5882] <... set_robust_list resumed>) = 0 [pid 5868] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5882] rt_sigprocmask(SIG_SETMASK, [], [pid 5868] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5882] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5868] <... futex resumed>) = 1 [pid 5864] <... futex resumed>) = 0 [pid 5882] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5868] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5864] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5862] rt_sigprocmask(SIG_SETMASK, [], [pid 5868] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5864] <... futex resumed>) = 0 [pid 5868] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5864] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5868] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5862] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5868] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5862] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5868] <... futex resumed>) = 1 [pid 5864] <... futex resumed>) = 0 [pid 5868] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5864] close(3) = 0 [pid 5864] close(4) = -1 EBADF (Bad file descriptor) [pid 5864] close(5 [pid 5882] <... futex resumed>) = 0 [pid 5864] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... futex resumed>) = 1 [pid 5882] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5864] close(6 [pid 5862] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5882] <... openat resumed>) = 3 [pid 5864] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5882] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5864] close(7 [pid 5882] <... futex resumed>) = 1 [pid 5864] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... futex resumed>) = 0 [pid 5882] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5864] close(8 [pid 5862] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5882] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5864] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... futex resumed>) = 0 [pid 5882] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5864] close(9 [pid 5862] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5882] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5864] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5882] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5864] close(10 [pid 5882] <... futex resumed>) = 1 [pid 5864] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... futex resumed>) = 0 [pid 5882] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5864] close(11 [pid 5862] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5882] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5864] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... futex resumed>) = 0 [pid 5882] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5864] close(12 [pid 5862] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5882] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5864] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5882] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5864] close(13 [pid 5882] <... futex resumed>) = 1 [pid 5864] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... futex resumed>) = 0 [pid 5882] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5864] close(14) = -1 EBADF (Bad file descriptor) [pid 5864] close(15) = -1 EBADF (Bad file descriptor) [pid 5864] close(16) = -1 EBADF (Bad file descriptor) [pid 5864] close(17) = -1 EBADF (Bad file descriptor) [pid 5864] close(18) = -1 EBADF (Bad file descriptor) [pid 5864] close(19) = -1 EBADF (Bad file descriptor) [pid 5864] close(20) = -1 EBADF (Bad file descriptor) [pid 5864] close(21) = -1 EBADF (Bad file descriptor) [pid 5864] close(22) = -1 EBADF (Bad file descriptor) [pid 5864] close(23) = -1 EBADF (Bad file descriptor) [pid 5864] close(24write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory ) = -1 EBADF (Bad file descriptor) [pid 5864] close(25) = -1 EBADF (Bad file descriptor) [pid 5864] close(26) = -1 EBADF (Bad file descriptor) [pid 5864] close(27) = -1 EBADF (Bad file descriptor) [pid 5864] close(28) = -1 EBADF (Bad file descriptor) [pid 5864] close(29) = -1 EBADF (Bad file descriptor) [pid 5864] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5864] exit_group(0 [pid 5881] <... futex resumed>) = ? [pid 5868] <... futex resumed>) = ? [pid 5864] <... exit_group resumed>) = ? [pid 5881] +++ exited with 0 +++ [pid 5868] +++ exited with 0 +++ [pid 5864] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=100, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=61 /* 0.61 s */} --- [pid 5029] umount2("./31", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5029] umount2("./31/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./31/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./31/cgroup.cpu") = 0 [pid 5029] umount2("./31/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./31/binderfs", [pid 5869] <... ioctl resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./31/binderfs" [pid 5869] close(4 [pid 5029] <... unlink resumed>) = 0 [pid 5869] <... close resumed>) = 0 [pid 5869] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5869] <... futex resumed>) = 0 [pid 5869] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5866] close(3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5866] <... close resumed>) = 0 [pid 5866] close(4 [pid 5029] newfstatat(AT_FDCWD, "./31/file0", [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5866] close(5 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5866] close(6) = -1 EBADF (Bad file descriptor) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5866] close(7 [pid 5029] openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5866] close(8) = -1 EBADF (Bad file descriptor) [pid 5866] close(9 [pid 5029] <... openat resumed>) = 4 [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5866] close(10) = -1 EBADF (Bad file descriptor) [pid 5866] close(11 [pid 5029] newfstatat(4, "", [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5866] close(12 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5866] close(13 [pid 5029] getdents64(4, [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5866] close(14 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] getdents64(4, [pid 5866] close(15 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] close(4 [pid 5866] close(16) = -1 EBADF (Bad file descriptor) [pid 5029] <... close resumed>) = 0 [pid 5866] close(17 [pid 5029] rmdir("./31/file0" [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5866] close(18 [pid 5029] <... rmdir resumed>) = 0 [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5866] close(19 [pid 5029] umount2("./31/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5866] close(20 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5870] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [ 262.805912][ T5867] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 5029] newfstatat(AT_FDCWD, "./31/cgroup", [pid 5870] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5866] close(21 [pid 5870] <... futex resumed>) = 0 [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5870] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5866] close(22 [pid 5029] unlink("./31/cgroup" [pid 5870] <... mmap resumed>) = 0x7f4f6607f000 [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... umount2 resumed>) = 0 [pid 5870] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5866] close(23 [pid 5029] <... unlink resumed>) = 0 [pid 5870] <... mprotect resumed>) = 0 [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./31/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5870] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5866] close(24 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5870] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] newfstatat(AT_FDCWD, "./31/file0", [pid 5029] newfstatat(AT_FDCWD, "./31/cgroup.net", [pid 5870] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5866] close(25./strace-static-x86_64: Process 5883 attached [pid 5867] <... mount resumed>) = -1 EEXIST (File exists) [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5883] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5870] <... clone3 resumed> => {parent_tid=[99]}, 88) = 99 [pid 5867] ioctl(4, LOOP_CLR_FD [pid 5866] close(26 [pid 5031] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] unlink("./31/cgroup.net" [pid 5883] <... rseq resumed>) = 0 [pid 5870] rt_sigprocmask(SIG_SETMASK, [], [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5883] set_robust_list(0x7f4f6609f9a0, 24 [pid 5870] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5866] close(27 [pid 5031] openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... unlink resumed>) = 0 [pid 5883] <... set_robust_list resumed>) = 0 [pid 5870] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5883] rt_sigprocmask(SIG_SETMASK, [], [pid 5870] <... futex resumed>) = 0 [pid 5866] close(28 [pid 5031] <... openat resumed>) = 4 [pid 5029] getdents64(3, [pid 5883] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5870] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] newfstatat(4, "", [pid 5883] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5866] close(29write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5029] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5883] <... openat resumed>) = 3 [pid 5866] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5883] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5866] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5031] getdents64(4, [pid 5029] close(3 [pid 5883] <... futex resumed>) = 1 [pid 5870] <... futex resumed>) = 0 [pid 5866] <... write resumed>) = 156 [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5029] <... close resumed>) = 0 [pid 5883] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5870] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5866] exit_group(0 [pid 5031] getdents64(4, [pid 5029] rmdir("./31" [pid 5883] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5880] <... futex resumed>) = ? [pid 5870] <... futex resumed>) = 0 [pid 5869] <... futex resumed>) = ? [pid 5866] <... exit_group resumed>) = ? [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5883] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5880] +++ exited with 0 +++ [pid 5870] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5869] +++ exited with 0 +++ [pid 5866] +++ exited with 0 +++ [pid 5031] close(4 [pid 5029] <... rmdir resumed>) = 0 [pid 5883] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5031] <... close resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=88, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=52 /* 0.52 s */} --- [pid 5029] mkdir("./32", 0777 [pid 5883] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] rmdir("./31/file0" [pid 5883] <... futex resumed>) = 1 [pid 5870] <... futex resumed>) = 0 [pid 5883] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5870] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] <... mkdir resumed>) = 0 [pid 5883] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5870] <... futex resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5883] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5870] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5031] umount2("./31/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5883] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... openat resumed>) = 3 [pid 5883] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] newfstatat(AT_FDCWD, "./31/cgroup", [pid 5030] umount2("./31", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5883] <... futex resumed>) = 1 [pid 5870] <... futex resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5883] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5031] unlink("./31/cgroup" [pid 5030] openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... openat resumed>) = 3 [pid 5031] <... unlink resumed>) = 0 [pid 5030] newfstatat(3, "", [pid 5029] close(3 [pid 5031] umount2("./31/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5871] <... ioctl resumed>) = 0 [pid 5865] <... ioctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] getdents64(3, [pid 5029] <... close resumed>) = 0 [pid 5871] close(4 [pid 5865] close(4 [pid 5031] newfstatat(AT_FDCWD, "./31/cgroup.net", [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5884 attached [pid 5871] <... close resumed>) = 0 [pid 5865] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./31/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5884] set_robust_list(0x55555654e6a0, 24 [pid 5871] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5870] close(3 [pid 5865] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5862] close(3 [pid 5031] unlink("./31/cgroup.net" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 103 [pid 5884] <... set_robust_list resumed>) = 0 [pid 5871] <... futex resumed>) = 0 [pid 5870] <... close resumed>) = 0 [pid 5865] <... futex resumed>) = 0 [pid 5862] <... close resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./31/cgroup.cpu", [pid 5884] chdir("./32" [pid 5871] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5870] close(4 [pid 5865] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5862] close(4 [pid 5031] getdents64(3, [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5884] <... chdir resumed>) = 0 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] unlink("./31/cgroup.cpu" [pid 5884] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5870] close(5 [pid 5862] close(5 [pid 5031] close(3 [pid 5030] <... unlink resumed>) = 0 [pid 5884] <... prctl resumed>) = 0 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... close resumed>) = 0 [pid 5030] umount2("./31/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5884] setpgid(0, 0 [pid 5870] close(6 [pid 5862] close(6 [pid 5031] rmdir("./31" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5884] <... setpgid resumed>) = 0 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... rmdir resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./31/binderfs", [pid 5884] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 5870] close(7 [pid 5862] close(7 [pid 5031] mkdir("./32", 0777 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5884] <... symlink resumed>) = 0 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... mkdir resumed>) = 0 [pid 5030] unlink("./31/binderfs" [pid 5884] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu" [pid 5870] close(8 [pid 5862] close(8 [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5884] <... symlink resumed>) = 0 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... openat resumed>) = 3 [pid 5030] <... unlink resumed>) = 0 [pid 5884] symlink("/syzcgroup/net/syz0", "./cgroup.net" [pid 5870] close(9 [pid 5862] close(9 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5030] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5884] <... symlink resumed>) = 0 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5884] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5870] close(10 [pid 5862] close(10 [pid 5031] close(3 [pid 5030] newfstatat(AT_FDCWD, "./31/file0", [pid 5884] <... openat resumed>) = 3 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... close resumed>) = 0 [pid 5884] write(3, "1000", 4 [pid 5870] close(11 [pid 5862] close(11 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 5885 attached [pid 5884] <... write resumed>) = 4 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5885] set_robust_list(0x55555654e6a0, 24 [pid 5884] close(3 [pid 5870] close(12 [pid 5862] close(12 [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 95 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5885] <... set_robust_list resumed>) = 0 [pid 5884] <... close resumed>) = 0 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5885] chdir("./32" [pid 5884] symlink("/dev/binderfs", "./binderfs" [pid 5870] close(13 [pid 5862] close(13 [pid 5885] <... chdir resumed>) = 0 [pid 5884] <... symlink resumed>) = 0 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] <... openat resumed>) = 4 [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5884] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5870] close(14 [pid 5862] close(14 [pid 5030] newfstatat(4, "", [pid 5885] <... prctl resumed>) = 0 [pid 5884] <... futex resumed>) = 0 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5885] setpgid(0, 0 [pid 5884] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5870] close(15 [pid 5862] close(15 [pid 5030] getdents64(4, [pid 5885] <... setpgid resumed>) = 0 [pid 5884] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5885] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 5884] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5870] close(16 [pid 5862] close(16 [pid 5030] getdents64(4, [pid 5885] <... symlink resumed>) = 0 [pid 5884] <... mprotect resumed>) = 0 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5885] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 5884] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5870] close(17 [pid 5862] close(17 [pid 5030] close(4 [pid 5885] <... symlink resumed>) = 0 [pid 5884] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] <... close resumed>) = 0 [pid 5885] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 5884] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5870] close(18 [pid 5862] close(18 [pid 5030] rmdir("./31/file0"./strace-static-x86_64: Process 5886 attached [pid 5885] <... symlink resumed>) = 0 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5886] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5885] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5884] <... clone3 resumed> => {parent_tid=[104]}, 88) = 104 [pid 5870] close(19 [pid 5862] close(19 [pid 5030] <... rmdir resumed>) = 0 [pid 5886] <... rseq resumed>) = 0 [pid 5885] <... openat resumed>) = 3 [pid 5884] rt_sigprocmask(SIG_SETMASK, [], [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] umount2("./31/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5886] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5885] write(3, "1000", 4 [pid 5884] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5870] close(20 [pid 5862] close(20 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5886] <... set_robust_list resumed>) = 0 [pid 5885] <... write resumed>) = 4 [pid 5884] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] newfstatat(AT_FDCWD, "./31/cgroup", [pid 5886] rt_sigprocmask(SIG_SETMASK, [], [pid 5885] close(3 [pid 5884] <... futex resumed>) = 0 [pid 5870] close(21 [pid 5862] close(21 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5886] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5885] <... close resumed>) = 0 [pid 5884] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] unlink("./31/cgroup" [pid 5886] memfd_create("syzkaller", 0 [pid 5885] symlink("/dev/binderfs", "./binderfs" [pid 5870] close(22 [pid 5862] close(22 [pid 5030] <... unlink resumed>) = 0 [pid 5886] <... memfd_create resumed>) = 3 [pid 5885] <... symlink resumed>) = 0 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] umount2("./31/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5886] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5885] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5870] close(23 [pid 5862] close(23 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5886] <... mmap resumed>) = 0x7f4f650a0000 [pid 5885] <... futex resumed>) = 0 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] newfstatat(AT_FDCWD, "./31/cgroup.net", [pid 5885] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5885] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5870] close(24 [pid 5862] close(24 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5885] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] unlink("./31/cgroup.net" [pid 5885] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5870] close(25 [pid 5862] close(25 [pid 5030] <... unlink resumed>) = 0 [pid 5885] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] getdents64(3, ./strace-static-x86_64: Process 5887 attached [pid 5887] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5885] <... clone3 resumed> => {parent_tid=[96]}, 88) = 96 [pid 5887] <... rseq resumed>) = 0 [pid 5885] rt_sigprocmask(SIG_SETMASK, [], [pid 5887] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5885] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5887] <... set_robust_list resumed>) = 0 [pid 5885] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5887] rt_sigprocmask(SIG_SETMASK, [], [pid 5885] <... futex resumed>) = 0 [pid 5887] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5885] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5887] memfd_create("syzkaller", 0 [pid 5870] close(26 [pid 5862] close(26 [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5887] <... memfd_create resumed>) = 3 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] close(3 [pid 5887] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5870] close(27 [pid 5862] close(27 [pid 5030] <... close resumed>) = 0 [pid 5887] <... mmap resumed>) = 0x7f4f650a0000 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] rmdir("./31" [pid 5870] close(28 [pid 5862] close(28 [pid 5030] <... rmdir resumed>) = 0 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5870] close(29 [pid 5030] mkdir("./32", 0777 [pid 5870] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5862] close(29) = -1 EBADF (Bad file descriptor) [pid 5030] <... mkdir resumed>) = 0 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5870] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5862] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5870] <... write resumed>) = 156 [pid 5862] <... write resumed>) = 156 [pid 5030] <... openat resumed>) = 3 [pid 5870] exit_group(0 [pid 5862] exit_group(0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5883] <... futex resumed>) = ? [pid 5882] <... futex resumed>) = ? [pid 5871] <... futex resumed>) = ? [pid 5870] <... exit_group resumed>) = ? [pid 5865] <... futex resumed>) = ? [pid 5862] <... exit_group resumed>) = ? [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5883] +++ exited with 0 +++ [pid 5882] +++ exited with 0 +++ [pid 5865] +++ exited with 0 +++ [pid 5862] +++ exited with 0 +++ [pid 5871] +++ exited with 0 +++ [pid 5870] +++ exited with 0 +++ [pid 5030] close(3 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=94, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=54 /* 0.54 s */} --- [pid 5030] <... close resumed>) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=97, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=65 /* 0.65 s */} --- [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] umount2("./32", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5888 attached ) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./32", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5888] set_robust_list(0x55555654e6a0, 24 [pid 5034] openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 91 [pid 5888] <... set_robust_list resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5032] openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5888] chdir("./32" [pid 5034] newfstatat(3, "", [pid 5032] <... openat resumed>) = 3 [pid 5888] <... chdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] newfstatat(3, "", [pid 5888] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5034] getdents64(3, [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5032] getdents64(3, [pid 5888] setpgid(0, 0 [pid 5034] umount2("./32/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5888] <... setpgid resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./32/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5888] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 5034] newfstatat(AT_FDCWD, "./32/cgroup.cpu", [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5888] <... symlink resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] newfstatat(AT_FDCWD, "./32/cgroup.cpu", [pid 5888] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu" [pid 5034] unlink("./32/cgroup.cpu" [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5888] <... symlink resumed>) = 0 [pid 5888] symlink("/syzcgroup/net/syz3", "./cgroup.net" [pid 5034] <... unlink resumed>) = 0 [pid 5032] unlink("./32/cgroup.cpu") = 0 [pid 5888] <... symlink resumed>) = 0 [pid 5034] umount2("./32/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./32/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5888] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5888] <... openat resumed>) = 3 [pid 5034] newfstatat(AT_FDCWD, "./32/binderfs", [pid 5032] newfstatat(AT_FDCWD, "./32/binderfs", [pid 5888] write(3, "1000", 4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5888] <... write resumed>) = 4 [pid 5034] unlink("./32/binderfs" [pid 5032] unlink("./32/binderfs" [pid 5888] close(3 [pid 5034] <... unlink resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5034] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5888] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5888] symlink("/dev/binderfs", "./binderfs" [pid 5034] newfstatat(AT_FDCWD, "./32/file0", [pid 5032] newfstatat(AT_FDCWD, "./32/file0", [pid 5888] <... symlink resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5888] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5888] <... futex resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5888] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5034] openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5888] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5032] openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5888] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5034] <... openat resumed>) = 4 [pid 5034] newfstatat(4, "", [pid 5032] <... openat resumed>) = 4 [pid 5888] <... mprotect resumed>) = 0 [pid 5032] newfstatat(4, "", [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 5888] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5032] getdents64(4, [pid 5888] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5888] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5034] getdents64(4, [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 ./strace-static-x86_64: Process 5889 attached [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5032] getdents64(4, [pid 5889] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5888] <... clone3 resumed> => {parent_tid=[92]}, 88) = 92 [pid 5034] close(4 [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5889] <... rseq resumed>) = 0 [pid 5888] rt_sigprocmask(SIG_SETMASK, [], [pid 5034] <... close resumed>) = 0 [pid 5032] close(4 [pid 5889] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5888] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5034] rmdir("./32/file0" [pid 5889] <... set_robust_list resumed>) = 0 [pid 5888] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] <... close resumed>) = 0 [pid 5889] rt_sigprocmask(SIG_SETMASK, [], [pid 5888] <... futex resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] rmdir("./32/file0" [pid 5034] umount2("./32/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... rmdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5889] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5888] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5034] newfstatat(AT_FDCWD, "./32/cgroup", [pid 5889] memfd_create("syzkaller", 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5889] <... memfd_create resumed>) = 3 [pid 5032] umount2("./32/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5889] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] unlink("./32/cgroup" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... unlink resumed>) = 0 [pid 5889] <... mmap resumed>) = 0x7f4f650a0000 [pid 5034] umount2("./32/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(AT_FDCWD, "./32/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] unlink("./32/cgroup" [pid 5034] newfstatat(AT_FDCWD, "./32/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5034] unlink("./32/cgroup.net" [pid 5032] umount2("./32/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... unlink resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] getdents64(3, [pid 5032] newfstatat(AT_FDCWD, "./32/cgroup.net", [pid 5034] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5034] close(3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... close resumed>) = 0 [pid 5032] unlink("./32/cgroup.net" [pid 5034] rmdir("./32" [pid 5032] <... unlink resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] getdents64(3, [pid 5034] mkdir("./33", 0777 [pid 5032] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5032] close(3 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] <... close resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5032] rmdir("./32" [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5032] <... rmdir resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] mkdir("./33", 0777 [pid 5034] close(3 [pid 5032] <... mkdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR./strace-static-x86_64: Process 5890 attached [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 100 [pid 5033] kill(-96, SIGKILL [pid 5032] <... openat resumed>) = 3 [pid 5879] <... futex resumed>) = ? [pid 5033] <... kill resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5890] set_robust_list(0x55555654e6a0, 24 [pid 5879] +++ killed by SIGKILL +++ [pid 5033] kill(96, SIGKILL [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5890] <... set_robust_list resumed>) = 0 [pid 5033] <... kill resumed>) = 0 [pid 5032] close(3) = 0 [pid 5890] chdir("./33" [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5891 attached [pid 5890] <... chdir resumed>) = 0 [pid 5891] set_robust_list(0x55555654e6a0, 24 [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 97 [pid 5891] <... set_robust_list resumed>) = 0 [pid 5890] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5891] chdir("./33" [pid 5890] <... prctl resumed>) = 0 [pid 5891] <... chdir resumed>) = 0 [pid 5891] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5890] setpgid(0, 0 [pid 5891] <... prctl resumed>) = 0 [pid 5890] <... setpgid resumed>) = 0 [pid 5891] setpgid(0, 0) = 0 [pid 5891] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 5890] symlink("/syzcgroup/unified/syz5", "./cgroup" [pid 5891] <... symlink resumed>) = 0 [pid 5891] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 5890] <... symlink resumed>) = 0 [pid 5891] <... symlink resumed>) = 0 [pid 5890] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu" [pid 5891] symlink("/syzcgroup/net/syz1", "./cgroup.net") = 0 [pid 5891] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5890] <... symlink resumed>) = 0 [pid 5891] <... openat resumed>) = 3 [pid 5890] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 5891] write(3, "1000", 4) = 4 [pid 5890] <... symlink resumed>) = 0 [pid 5891] close(3 [pid 5890] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5891] <... close resumed>) = 0 [pid 5891] symlink("/dev/binderfs", "./binderfs" [pid 5890] <... openat resumed>) = 3 [pid 5891] <... symlink resumed>) = 0 [pid 5890] write(3, "1000", 4 [pid 5891] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5890] <... write resumed>) = 4 [pid 5891] <... futex resumed>) = 0 [pid 5890] close(3 [pid 5891] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5890] <... close resumed>) = 0 [pid 5891] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5890] symlink("/dev/binderfs", "./binderfs" [pid 5891] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5890] <... symlink resumed>) = 0 [pid 5891] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5890] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5891] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5890] <... futex resumed>) = 0 [pid 5891] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5890] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0./strace-static-x86_64: Process 5892 attached ) = 0x7f4f6d4a0000 [pid 5892] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053) = 0 [pid 5890] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5892] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5891] <... clone3 resumed> => {parent_tid=[98]}, 88) = 98 [pid 5892] <... set_robust_list resumed>) = 0 [pid 5891] rt_sigprocmask(SIG_SETMASK, [], [pid 5890] <... mprotect resumed>) = 0 [pid 5892] rt_sigprocmask(SIG_SETMASK, [], [pid 5891] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5892] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5891] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5890] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5892] memfd_create("syzkaller", 0 [pid 5891] <... futex resumed>) = 0 [pid 5890] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5892] <... memfd_create resumed>) = 3 [pid 5891] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5890] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5892] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0./strace-static-x86_64: Process 5893 attached ) = 0x7f4f650a0000 [pid 5893] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5890] <... clone3 resumed> => {parent_tid=[101]}, 88) = 101 [pid 5890] rt_sigprocmask(SIG_SETMASK, [], [pid 5893] <... rseq resumed>) = 0 [pid 5890] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5893] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5890] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5893] <... set_robust_list resumed>) = 0 [pid 5890] <... futex resumed>) = 0 [pid 5893] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5890] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5893] memfd_create("syzkaller", 0) = 3 [pid 5893] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5867] <... ioctl resumed>) = ? [pid 5867] +++ killed by SIGKILL +++ [pid 5863] +++ killed by SIGKILL +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=96, si_uid=0, si_status=SIGKILL, si_utime=2 /* 0.02 s */, si_stime=75 /* 0.75 s */} --- [pid 5033] restart_syscall(<... resuming interrupted kill ...>) = 0 [pid 5033] umount2("./33", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5033] umount2("./33/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./33/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./33/cgroup.cpu") = 0 [pid 5033] umount2("./33/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./33/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./33/binderfs") = 0 [pid 5033] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5886] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5033] newfstatat(AT_FDCWD, "./33/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5887] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5033] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./33/file0") = 0 [pid 5033] umount2("./33/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./33/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./33/cgroup") = 0 [pid 5033] umount2("./33/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./33/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./33/cgroup.net") = 0 [pid 5033] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./33") = 0 [pid 5033] mkdir("./34", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5894 attached , child_tidptr=0x55555654e690) = 99 [pid 5894] set_robust_list(0x55555654e6a0, 24) = 0 [pid 5894] chdir("./34") = 0 [pid 5894] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5894] setpgid(0, 0) = 0 [pid 5894] symlink("/syzcgroup/unified/syz2", "./cgroup") = 0 [pid 5894] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu") = 0 [pid 5894] symlink("/syzcgroup/net/syz2", "./cgroup.net") = 0 [pid 5894] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5894] write(3, "1000", 4) = 4 [pid 5894] close(3) = 0 [pid 5894] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5894] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5894] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5894] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5894] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5894] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5895 attached => {parent_tid=[100]}, 88) = 100 [pid 5895] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053) = 0 [pid 5894] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5895] set_robust_list(0x7f4f6d4c09a0, 24) = 0 [pid 5894] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5895] rt_sigprocmask(SIG_SETMASK, [], [pid 5894] <... futex resumed>) = 0 [pid 5895] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5894] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5895] memfd_create("syzkaller", 0) = 3 [pid 5895] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5889] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5893] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5892] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5886] <... write resumed>) = 16777216 [pid 5886] munmap(0x7f4f650a0000, 16777216 [pid 5887] <... write resumed>) = 16777216 [pid 5887] munmap(0x7f4f650a0000, 16777216 [pid 5895] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5886] <... munmap resumed>) = 0 [pid 5886] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5886] ioctl(4, LOOP_SET_FD, 3 [pid 5887] <... munmap resumed>) = 0 [pid 5886] <... ioctl resumed>) = 0 [pid 5886] close(3) = 0 [pid 5886] mkdir("./file0", 0777 [pid 5887] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5886] <... mkdir resumed>) = 0 [pid 5887] <... openat resumed>) = 4 [pid 5886] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5887] ioctl(4, LOOP_SET_FD, 3) = 0 [ 264.910136][ T5886] loop0: detected capacity change from 0 to 32768 [ 264.946720][ T5887] loop4: detected capacity change from 0 to 32768 [pid 5887] close(3) = 0 [pid 5887] mkdir("./file0", 0777) = 0 [ 264.960766][ T5886] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 265.007690][ T5886] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 265.016389][ T5887] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 265.025388][ T5887] CPU: 1 PID: 5887 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 265.035872][ T5887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 265.045969][ T5887] Call Trace: [ 265.049279][ T5887] [ 265.052248][ T5887] dump_stack_lvl+0x136/0x150 [pid 5887] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5889] <... write resumed>) = 16777216 [ 265.057002][ T5887] sysfs_warn_dup+0x80/0xa0 [ 265.061560][ T5887] sysfs_create_dir_ns+0x237/0x290 [ 265.066730][ T5887] ? sysfs_create_mount_point+0xb0/0xb0 [ 265.072418][ T5887] ? spin_bug+0x1c0/0x1c0 [ 265.076810][ T5887] ? do_raw_spin_unlock+0x175/0x230 [ 265.081612][ T5886] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 265.082049][ T5887] kobject_add_internal+0x2c9/0x9c0 [ 265.095111][ T5887] ? kfree+0x11/0x150 [ 265.099145][ T5887] kobject_init_and_add+0x101/0x170 [ 265.104404][ T5887] ? kobject_create_and_add+0xf0/0xf0 [ 265.109838][ T5887] ? lockdep_init_map_type+0x21e/0x810 [ 265.115448][ T5887] ? lockdep_hardirqs_on+0x7d/0x100 [ 265.120710][ T5887] ? lockdep_init_map_type+0x21e/0x810 [ 265.126260][ T5887] gfs2_sys_fs_add+0x1d5/0x450 [ 265.131080][ T917] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 265.131086][ T5887] ? recover_store+0x170/0x170 [ 265.142672][ T5887] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 265.146449][ T917] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 265.148439][ T5887] gfs2_fill_super+0x1312/0x2aa0 [ 265.160131][ T5887] ? gfs2_reconfigure+0xf90/0xf90 [ 265.165213][ T5887] ? snprintf+0xbf/0x100 [ 265.169516][ T5887] ? vsprintf+0x30/0x30 [ 265.173733][ T5887] ? wait_for_completion_io_timeout+0x20/0x20 [ 265.179864][ T5887] ? set_blocksize+0x2d8/0x370 [ 265.184688][ T5887] get_tree_bdev+0x43e/0x7d0 [ 265.189344][ T5887] ? gfs2_reconfigure+0xf90/0xf90 [ 265.194431][ T5887] gfs2_get_tree+0x4e/0x270 [ 265.198998][ T5887] vfs_get_tree+0x8d/0x350 [ 265.203730][ T5887] path_mount+0x136e/0x1e70 [ 265.208293][ T5887] ? putname+0x102/0x140 [ 265.212588][ T5887] ? lockdep_hardirqs_on+0x7d/0x100 [ 265.217850][ T5887] ? finish_automount+0xa30/0xa30 [ 265.222941][ T5887] ? putname+0x102/0x140 [ 265.227240][ T5887] __x64_sys_mount+0x283/0x300 [ 265.232069][ T5887] ? copy_mnt_ns+0xb30/0xb30 [ 265.236722][ T5887] ? lockdep_hardirqs_on+0x7d/0x100 [ 265.241995][ T5887] ? _raw_spin_unlock_irq+0x2e/0x50 [ 265.247264][ T5887] ? ptrace_notify+0xfe/0x140 [ 265.252018][ T5887] do_syscall_64+0x39/0xb0 [pid 5889] munmap(0x7f4f650a0000, 16777216 [pid 5893] <... write resumed>) = 16777216 [ 265.256486][ T5887] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 265.262457][ T5887] RIP: 0033:0x7f4f6dd11c5a [ 265.266915][ T5887] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 265.286672][ T5887] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 265.295151][ T5887] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 265.303186][ T5887] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 265.311227][ T5887] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 265.319262][ T5887] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 265.327296][ T5887] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 265.335326][ T5887] [pid 5893] munmap(0x7f4f650a0000, 16777216 [pid 5892] <... write resumed>) = 16777216 [pid 5889] <... munmap resumed>) = 0 [pid 5889] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5889] ioctl(4, LOOP_SET_FD, 3 [ 265.385875][ T5887] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 265.423910][ T5887] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 5892] munmap(0x7f4f650a0000, 16777216 [pid 5889] <... ioctl resumed>) = 0 [pid 5889] close(3) = 0 [pid 5889] mkdir("./file0", 0777) = 0 [ 265.430850][ T5889] loop3: detected capacity change from 0 to 32768 [ 265.443386][ T917] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 296ms [ 265.465628][ T5889] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 265.476125][ T5889] CPU: 0 PID: 5889 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 265.486625][ T5889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 265.496733][ T5889] Call Trace: [ 265.500053][ T5889] [ 265.503024][ T5889] dump_stack_lvl+0x136/0x150 [ 265.507784][ T5889] sysfs_warn_dup+0x80/0xa0 [ 265.512340][ T5889] sysfs_create_dir_ns+0x237/0x290 [ 265.517509][ T5889] ? sysfs_create_mount_point+0xb0/0xb0 [ 265.523200][ T5889] ? spin_bug+0x1c0/0x1c0 [ 265.527591][ T5889] ? do_raw_spin_unlock+0x175/0x230 [ 265.532846][ T5889] kobject_add_internal+0x2c9/0x9c0 [ 265.538104][ T5889] ? kfree+0x11/0x150 [ 265.542134][ T5889] kobject_init_and_add+0x101/0x170 [ 265.547387][ T5889] ? kobject_create_and_add+0xf0/0xf0 [ 265.552812][ T5889] ? lockdep_init_map_type+0x21e/0x810 [ 265.558327][ T5889] ? lockdep_hardirqs_on+0x7d/0x100 [ 265.563579][ T5889] ? lockdep_init_map_type+0x21e/0x810 [ 265.569109][ T5889] gfs2_sys_fs_add+0x1d5/0x450 [ 265.573925][ T5889] ? recover_store+0x170/0x170 [ 265.578739][ T5889] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 265.584520][ T5889] gfs2_fill_super+0x1312/0x2aa0 [ 265.589603][ T5889] ? gfs2_reconfigure+0xf90/0xf90 [ 265.594687][ T5889] ? snprintf+0xbf/0x100 [ 265.598984][ T5889] ? vsprintf+0x30/0x30 [ 265.603196][ T5889] ? wait_for_completion_io_timeout+0x20/0x20 [ 265.609325][ T5889] ? set_blocksize+0x2d8/0x370 [ 265.614145][ T5889] get_tree_bdev+0x43e/0x7d0 [ 265.618797][ T5889] ? gfs2_reconfigure+0xf90/0xf90 [ 265.623927][ T5889] gfs2_get_tree+0x4e/0x270 [ 265.628485][ T5889] vfs_get_tree+0x8d/0x350 [ 265.632962][ T5889] path_mount+0x136e/0x1e70 [ 265.637525][ T5889] ? putname+0x102/0x140 [ 265.641814][ T5889] ? lockdep_hardirqs_on+0x7d/0x100 [ 265.647068][ T5889] ? finish_automount+0xa30/0xa30 [ 265.652165][ T5889] ? putname+0x102/0x140 [ 265.656474][ T5889] __x64_sys_mount+0x283/0x300 [ 265.657491][ T5893] loop5: detected capacity change from 0 to 32768 [ 265.661274][ T5889] ? copy_mnt_ns+0xb30/0xb30 [ 265.668074][ T5892] loop1: detected capacity change from 0 to 32768 [ 265.672266][ T5889] ? lockdep_hardirqs_on+0x7d/0x100 [ 265.683948][ T5889] ? _raw_spin_unlock_irq+0x2e/0x50 [ 265.689304][ T5889] ? ptrace_notify+0xfe/0x140 [ 265.694048][ T5889] do_syscall_64+0x39/0xb0 [ 265.698520][ T5889] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 265.704503][ T5889] RIP: 0033:0x7f4f6dd11c5a [ 265.708966][ T5889] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 265.728640][ T5889] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [pid 5889] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5895] <... write resumed>) = 16777216 [pid 5893] <... munmap resumed>) = 0 [pid 5892] <... munmap resumed>) = 0 [pid 5887] <... mount resumed>) = -1 EEXIST (File exists) [pid 5895] munmap(0x7f4f650a0000, 16777216 [pid 5893] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5892] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5887] ioctl(4, LOOP_CLR_FD [pid 5893] <... openat resumed>) = 4 [pid 5892] <... openat resumed>) = 4 [pid 5893] ioctl(4, LOOP_SET_FD, 3 [pid 5892] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5892] close(3) = 0 [pid 5892] mkdir("./file0", 0777) = 0 [pid 5893] <... ioctl resumed>) = 0 [pid 5893] close(3) = 0 [pid 5893] mkdir("./file0", 0777) = 0 [pid 5892] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [ 265.737121][ T5889] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 265.745155][ T5889] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 265.753179][ T5889] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 265.761203][ T5889] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 265.769227][ T5889] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 265.777254][ T5889] [pid 5893] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5895] <... munmap resumed>) = 0 [pid 5886] <... mount resumed>) = 0 [pid 5895] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5886] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5895] <... openat resumed>) = 4 [pid 5886] <... openat resumed>) = 3 [ 265.788795][ T917] gfs2: fsid=syz:syz.0: jid=0: Done [ 265.794106][ T5886] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 265.795969][ T5889] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 265.816539][ T5892] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 265.823978][ T5892] CPU: 1 PID: 5892 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [pid 5895] ioctl(4, LOOP_SET_FD, 3 [pid 5886] chdir("./file0") = 0 [pid 5886] ioctl(4, LOOP_CLR_FD) = 0 [pid 5886] close(4) = 0 [ 265.828044][ T5895] loop2: detected capacity change from 0 to 32768 [ 265.834424][ T5892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 265.834448][ T5892] Call Trace: [ 265.834459][ T5892] [ 265.834470][ T5892] dump_stack_lvl+0x136/0x150 [ 265.860675][ T5886] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 265.861892][ T5892] sysfs_warn_dup+0x80/0xa0 [ 265.874805][ T5892] sysfs_create_dir_ns+0x237/0x290 [ 265.879976][ T5892] ? sysfs_create_mount_point+0xb0/0xb0 [pid 5886] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5884] <... futex resumed>) = 0 [pid 5886] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5884] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5886] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5884] <... futex resumed>) = 0 [pid 5886] openat(AT_FDCWD, "./file0", O_RDONLY [ 265.884251][ T5886] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 265.884251][ T5886] inode = 12 2341 [ 265.884251][ T5886] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 265.885558][ T5892] ? spin_bug+0x1c0/0x1c0 [ 265.885611][ T5892] ? do_raw_spin_unlock+0x175/0x230 [ 265.913746][ T5892] kobject_add_internal+0x2c9/0x9c0 [ 265.918997][ T5892] ? kfree+0x11/0x150 [ 265.923005][ T5892] kobject_init_and_add+0x101/0x170 [ 265.928235][ T5892] ? kobject_create_and_add+0xf0/0xf0 [ 265.933635][ T5892] ? lockdep_init_map_type+0x21e/0x810 [ 265.939217][ T5892] ? lockdep_hardirqs_on+0x7d/0x100 [ 265.944447][ T5892] ? lockdep_init_map_type+0x21e/0x810 [ 265.949943][ T5892] gfs2_sys_fs_add+0x1d5/0x450 [ 265.954745][ T5892] ? recover_store+0x170/0x170 [ 265.959533][ T5892] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 265.965300][ T5892] gfs2_fill_super+0x1312/0x2aa0 [ 265.970274][ T5892] ? gfs2_reconfigure+0xf90/0xf90 [ 265.975327][ T5892] ? snprintf+0xbf/0x100 [ 265.979688][ T5892] ? vsprintf+0x30/0x30 [ 265.983873][ T5892] ? wait_for_completion_io_timeout+0x20/0x20 [ 265.990064][ T5892] ? set_blocksize+0x2d8/0x370 [ 265.994864][ T5892] get_tree_bdev+0x43e/0x7d0 [ 265.999490][ T5892] ? gfs2_reconfigure+0xf90/0xf90 [ 266.005414][ T5892] gfs2_get_tree+0x4e/0x270 [ 266.009946][ T5892] vfs_get_tree+0x8d/0x350 [ 266.014395][ T5892] path_mount+0x136e/0x1e70 [ 266.018931][ T5892] ? putname+0x102/0x140 [ 266.023212][ T5892] ? lockdep_hardirqs_on+0x7d/0x100 [ 266.028535][ T5892] ? finish_automount+0xa30/0xa30 [ 266.033597][ T5892] ? putname+0x102/0x140 [ 266.037871][ T5892] __x64_sys_mount+0x283/0x300 [ 266.042670][ T5892] ? copy_mnt_ns+0xb30/0xb30 [ 266.047292][ T5892] ? lockdep_hardirqs_on+0x7d/0x100 [ 266.052522][ T5892] ? _raw_spin_unlock_irq+0x2e/0x50 [ 266.057764][ T5892] ? ptrace_notify+0xfe/0x140 [ 266.062482][ T5892] do_syscall_64+0x39/0xb0 [ 266.066924][ T5892] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 266.072861][ T5892] RIP: 0033:0x7f4f6dd11c5a [ 266.077301][ T5892] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 266.096938][ T5892] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 266.105377][ T5892] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 266.113379][ T5892] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 266.121403][ T5892] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 266.129401][ T5892] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [pid 5884] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 5895] <... ioctl resumed>) = 0 [ 266.137398][ T5892] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 266.145396][ T5892] [ 266.150737][ T5889] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 266.155070][ T5886] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 266.169159][ T5893] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 266.179989][ T5886] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5886 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 266.186418][ T5893] CPU: 1 PID: 5893 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 266.190763][ T5886] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 266.200484][ T5893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 266.200505][ T5893] Call Trace: [ 266.200514][ T5893] [ 266.200526][ T5893] dump_stack_lvl+0x136/0x150 [ 266.200587][ T5893] sysfs_warn_dup+0x80/0xa0 [ 266.200623][ T5893] sysfs_create_dir_ns+0x237/0x290 [ 266.200659][ T5893] ? sysfs_create_mount_point+0xb0/0xb0 [ 266.200697][ T5893] ? spin_bug+0x1c0/0x1c0 [ 266.200738][ T5893] ? do_raw_spin_unlock+0x175/0x230 [ 266.200783][ T5893] kobject_add_internal+0x2c9/0x9c0 [ 266.200816][ T5893] ? kfree+0x11/0x150 [ 266.200849][ T5893] kobject_init_and_add+0x101/0x170 [ 266.200886][ T5893] ? kobject_create_and_add+0xf0/0xf0 [ 266.200923][ T5893] ? lockdep_init_map_type+0x21e/0x810 [ 266.210393][ T5886] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 266.219575][ T5893] ? lockdep_hardirqs_on+0x7d/0x100 [ 266.219620][ T5893] ? lockdep_init_map_type+0x21e/0x810 [ 266.219663][ T5893] gfs2_sys_fs_add+0x1d5/0x450 [ 266.222936][ T5886] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 266.225869][ T5893] ? recover_store+0x170/0x170 [ 266.225905][ T5893] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 266.225954][ T5893] gfs2_fill_super+0x1312/0x2aa0 [ 266.230621][ T5886] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 266.235116][ T5893] ? gfs2_reconfigure+0xf90/0xf90 [ 266.240463][ T5886] gfs2: fsid=syz:syz.0: File system withdrawn [ 266.245748][ T5893] ? snprintf+0xbf/0x100 [ 266.349113][ T5893] ? vsprintf+0x30/0x30 [ 266.353326][ T5893] ? wait_for_completion_io_timeout+0x20/0x20 [ 266.359435][ T5893] ? set_blocksize+0x2d8/0x370 [ 266.364234][ T5893] get_tree_bdev+0x43e/0x7d0 [ 266.368860][ T5893] ? gfs2_reconfigure+0xf90/0xf90 [ 266.373929][ T5893] gfs2_get_tree+0x4e/0x270 [ 266.378456][ T5893] vfs_get_tree+0x8d/0x350 [ 266.382902][ T5893] path_mount+0x136e/0x1e70 [ 266.387456][ T5893] ? putname+0x102/0x140 [ 266.391769][ T5893] ? lockdep_hardirqs_on+0x7d/0x100 [ 266.397014][ T5893] ? finish_automount+0xa30/0xa30 [ 266.402127][ T5893] ? putname+0x102/0x140 [ 266.406406][ T5893] __x64_sys_mount+0x283/0x300 [ 266.411208][ T5893] ? copy_mnt_ns+0xb30/0xb30 [ 266.416024][ T5893] ? lockdep_hardirqs_on+0x7d/0x100 [ 266.421294][ T5893] ? _raw_spin_unlock_irq+0x2e/0x50 [ 266.426546][ T5893] ? ptrace_notify+0xfe/0x140 [ 266.431294][ T5893] do_syscall_64+0x39/0xb0 [ 266.435737][ T5893] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 266.441685][ T5893] RIP: 0033:0x7f4f6dd11c5a [ 266.446121][ T5893] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 266.465761][ T5893] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 266.474211][ T5893] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 266.482222][ T5893] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [pid 5895] close(3 [pid 5889] <... mount resumed>) = -1 EEXIST (File exists) [pid 5889] ioctl(4, LOOP_CLR_FD [pid 5895] <... close resumed>) = 0 [pid 5895] mkdir("./file0", 0777 [pid 5884] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5884] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5884] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5895] <... mkdir resumed>) = 0 [ 266.490324][ T5893] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 266.498327][ T5893] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 266.506333][ T5893] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 266.514420][ T5893] [ 266.517511][ T5892] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 5895] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5884] <... mprotect resumed>) = 0 [pid 5884] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5884] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[105]}, 88) = 105 [pid 5884] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5884] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 266.565355][ T5895] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 266.598002][ T5886] CPU: 1 PID: 5886 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 266.608556][ T5886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 266.618756][ T5886] Call Trace: [ 266.622070][ T5886] [ 266.625053][ T5886] dump_stack_lvl+0x136/0x150 [ 266.629807][ T5886] gfs2_withdraw+0xb33/0x1060 [ 266.634549][ T5886] ? gfs2_consist_inode_i+0x104/0x150 [ 266.639997][ T5886] gfs2_dirent_scan+0x32a/0x3d0 [ 266.644918][ T5886] ? gfs2_dirent_prev+0x210/0x210 [ 266.646679][ T5892] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 266.649998][ T5886] ? gfs2_dirent_prev+0x210/0x210 [ 266.661581][ T5886] gfs2_dirent_search+0x47d/0x580 [ 266.666671][ T5886] ? get_first_leaf+0x190/0x190 [ 266.671588][ T5886] ? gfs2_permission+0x256/0x3e0 [ 266.676589][ T5886] gfs2_dir_search+0x8d/0x2d0 [ 266.681339][ T5886] ? gfs2_dir_read+0x14e0/0x14e0 [ 266.686355][ T5886] gfs2_lookupi+0x481/0x640 [ 266.690918][ T5886] ? gfs2_lookup_by_inum+0x100/0x100 [ 266.696259][ T5886] ? __gfs2_lookup+0x83/0x280 [ 266.701083][ T5886] ? d_alloc_parallel+0x693/0x1530 [ 266.706250][ T5886] __gfs2_lookup+0x83/0x280 [ 266.710812][ T5886] ? gfs2_lookupi+0x640/0x640 [ 266.715557][ T5886] ? __d_lookup_rcu+0x4e0/0x4e0 [ 266.720484][ T5886] ? __d_lookup+0x289/0x4c0 [ 266.725050][ T5886] gfs2_atomic_open+0xde/0x250 [ 266.729878][ T5886] ? __gfs2_lookup+0x280/0x280 [ 266.734720][ T5886] lookup_open.isra.0+0xce2/0x1400 [ 266.739896][ T5886] ? link_path_walk.part.0+0xd60/0xd60 [ 266.745435][ T5886] ? lookup_fast+0x14e/0x520 [ 266.750087][ T5886] path_openat+0x969/0x2710 [ 266.754669][ T5886] ? path_lookupat+0x840/0x840 [ 266.759497][ T5886] ? find_held_lock+0x2d/0x110 [ 266.764314][ T5886] do_filp_open+0x1ba/0x410 [ 266.768971][ T5886] ? may_open_dev+0xf0/0xf0 [ 266.773534][ T5886] ? find_held_lock+0x2d/0x110 [ 266.778355][ T5886] ? do_raw_spin_lock+0x124/0x2b0 [ 266.783530][ T5886] ? spin_bug+0x1c0/0x1c0 [ 266.787920][ T5886] ? _raw_spin_unlock+0x28/0x40 [ 266.792835][ T5886] ? alloc_fd+0x2e4/0x750 [ 266.797255][ T5886] do_sys_openat2+0x160/0x1c0 [ 266.801993][ T5886] ? build_open_flags+0x720/0x720 [ 266.807061][ T5886] ? ptrace_notify+0xfe/0x140 [ 266.811781][ T5886] ? lock_downgrade+0x690/0x690 [ 266.816671][ T5886] __x64_sys_openat+0x143/0x1f0 [ 266.821564][ T5886] ? __ia32_sys_open+0x1c0/0x1c0 [ 266.826553][ T5886] ? _raw_spin_unlock_irq+0x23/0x50 [ 266.831809][ T5886] ? lockdep_hardirqs_on+0x7d/0x100 [ 266.837061][ T5886] ? _raw_spin_unlock_irq+0x2e/0x50 [ 266.842319][ T5886] ? ptrace_notify+0xfe/0x140 [ 266.847048][ T5886] do_syscall_64+0x39/0xb0 [ 266.851506][ T5886] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 266.857467][ T5886] RIP: 0033:0x7f4f6dd107f9 [ 266.861909][ T5886] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 266.881553][ T5886] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 266.890086][ T5886] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 266.898094][ T5886] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [ 266.906103][ T5886] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [pid 5884] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5902 attached [pid 5889] <... ioctl resumed>) = 0 [pid 5887] <... ioctl resumed>) = 0 [pid 5884] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 266.914103][ T5886] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 266.922099][ T5886] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 266.930099][ T5886] [ 266.933848][ T5895] CPU: 0 PID: 5895 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 266.944349][ T5895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 266.954460][ T5895] Call Trace: [ 266.957776][ T5895] [ 266.960738][ T5895] dump_stack_lvl+0x136/0x150 [pid 5886] <... openat resumed>) = -1 EIO (Input/output error) [pid 5886] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5886] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5902] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5889] close(4 [pid 5884] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5902] <... rseq resumed>) = 0 [pid 5889] <... close resumed>) = 0 [pid 5886] <... futex resumed>) = 0 [pid 5884] <... futex resumed>) = 1 [pid 5902] set_robust_list(0x7f4f6609f9a0, 24 [pid 5889] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5886] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5884] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5902] <... set_robust_list resumed>) = 0 [pid 5889] <... futex resumed>) = 1 [pid 5886] <... openat resumed>) = -1 EIO (Input/output error) [pid 5902] rt_sigprocmask(SIG_SETMASK, [], [pid 5889] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5886] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5902] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5886] <... futex resumed>) = 1 [pid 5884] <... futex resumed>) = 0 [pid 5902] ioctl(0, VFAT_IOCTL_READDIR_SHORT [pid 5886] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5902] <... ioctl resumed>, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 5902] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5902] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [ 266.965480][ T5895] sysfs_warn_dup+0x80/0xa0 [ 266.970057][ T5895] sysfs_create_dir_ns+0x237/0x290 [ 266.975227][ T5895] ? sysfs_create_mount_point+0xb0/0xb0 [ 266.980840][ T5895] ? spin_bug+0x1c0/0x1c0 [ 266.984711][ T5893] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 266.985213][ T5895] ? do_raw_spin_unlock+0x175/0x230 [ 267.004521][ T5895] kobject_add_internal+0x2c9/0x9c0 [ 267.009817][ T5895] ? kfree+0x11/0x150 [pid 5884] close(3) = 0 [pid 5884] close(4) = -1 EBADF (Bad file descriptor) [pid 5884] close(5) = -1 EBADF (Bad file descriptor) [ 267.013876][ T5895] kobject_init_and_add+0x101/0x170 [ 267.019141][ T5895] ? kobject_create_and_add+0xf0/0xf0 [ 267.024576][ T5895] ? lockdep_init_map_type+0x21e/0x810 [ 267.030074][ T5895] ? lockdep_hardirqs_on+0x7d/0x100 [ 267.035307][ T5895] ? lockdep_init_map_type+0x21e/0x810 [ 267.040805][ T5895] gfs2_sys_fs_add+0x1d5/0x450 [ 267.045596][ T5895] ? recover_store+0x170/0x170 [ 267.050388][ T5895] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 267.056149][ T5895] gfs2_fill_super+0x1312/0x2aa0 [ 267.061122][ T5895] ? gfs2_reconfigure+0xf90/0xf90 [ 267.066174][ T5895] ? snprintf+0xbf/0x100 [ 267.070448][ T5895] ? vsprintf+0x30/0x30 [ 267.074634][ T5895] ? wait_for_completion_io_timeout+0x20/0x20 [ 267.080734][ T5895] ? set_blocksize+0x2d8/0x370 [ 267.085534][ T5895] get_tree_bdev+0x43e/0x7d0 [ 267.090158][ T5895] ? gfs2_reconfigure+0xf90/0xf90 [ 267.095218][ T5895] gfs2_get_tree+0x4e/0x270 [ 267.099751][ T5895] vfs_get_tree+0x8d/0x350 [ 267.104198][ T5895] path_mount+0x136e/0x1e70 [ 267.108733][ T5895] ? putname+0x102/0x140 [ 267.113002][ T5895] ? lockdep_hardirqs_on+0x7d/0x100 [ 267.118238][ T5895] ? finish_automount+0xa30/0xa30 [ 267.123298][ T5895] ? putname+0x102/0x140 [ 267.127568][ T5895] __x64_sys_mount+0x283/0x300 [ 267.132368][ T5895] ? copy_mnt_ns+0xb30/0xb30 [ 267.137011][ T5895] ? lockdep_hardirqs_on+0x7d/0x100 [ 267.142242][ T5895] ? _raw_spin_unlock_irq+0x2e/0x50 [ 267.147481][ T5895] ? ptrace_notify+0xfe/0x140 [ 267.152207][ T5895] do_syscall_64+0x39/0xb0 [ 267.156663][ T5895] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 267.162604][ T5895] RIP: 0033:0x7f4f6dd11c5a [ 267.167041][ T5895] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 267.186677][ T5895] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 267.195117][ T5895] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 267.203111][ T5895] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [pid 5892] <... mount resumed>) = -1 EEXIST (File exists) [pid 5888] <... futex resumed>) = 0 [pid 5887] close(4 [pid 5885] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5884] close(6 [pid 5892] ioctl(4, LOOP_CLR_FD [pid 5888] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5887] <... close resumed>) = 0 [pid 5885] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5889] <... futex resumed>) = 0 [pid 5888] <... futex resumed>) = 1 [pid 5887] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5885] <... futex resumed>) = 0 [pid 5884] close(7 [pid 5889] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5888] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5887] <... futex resumed>) = 0 [pid 5885] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [ 267.211108][ T5895] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 267.219103][ T5895] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 267.227097][ T5895] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 267.235094][ T5895] [ 267.240771][ T5895] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 5889] <... openat resumed>) = 3 [pid 5887] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5885] <... mmap resumed>) = 0x7f4f6607f000 [pid 5884] close(8 [pid 5889] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5885] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5889] <... futex resumed>) = 1 [pid 5885] <... mprotect resumed>) = 0 [pid 5884] close(9 [pid 5889] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5885] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5884] close(10 [pid 5885] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) ./strace-static-x86_64: Process 5903 attached [pid 5895] <... mount resumed>) = -1 EEXIST (File exists) [pid 5888] <... futex resumed>) = 0 [pid 5884] close(11 [pid 5903] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5885] <... clone3 resumed> => {parent_tid=[97]}, 88) = 97 [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5903] <... rseq resumed>) = 0 [pid 5885] rt_sigprocmask(SIG_SETMASK, [], [pid 5884] close(12 [pid 5903] set_robust_list(0x7f4f6609f9a0, 24 [pid 5895] ioctl(4, LOOP_CLR_FD [pid 5888] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5885] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5903] <... set_robust_list resumed>) = 0 [pid 5889] <... futex resumed>) = 0 [pid 5888] <... futex resumed>) = 1 [pid 5885] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5884] close(13 [pid 5903] rt_sigprocmask(SIG_SETMASK, [], [pid 5893] <... mount resumed>) = -1 EEXIST (File exists) [pid 5889] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5885] <... futex resumed>) = 0 [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5903] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5893] ioctl(4, LOOP_CLR_FD [pid 5889] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5888] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5885] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5884] close(14 [pid 5903] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5889] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5888] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5903] <... openat resumed>) = 3 [pid 5889] <... futex resumed>) = 0 [pid 5888] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5884] close(15 [pid 5903] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5889] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5888] <... futex resumed>) = 0 [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5903] <... futex resumed>) = 1 [pid 5889] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5888] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5885] <... futex resumed>) = 0 [pid 5884] close(16 [pid 5903] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5889] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5888] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5885] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5889] <... futex resumed>) = 0 [pid 5888] close(3 [pid 5887] <... futex resumed>) = 0 [pid 5885] <... futex resumed>) = 1 [pid 5884] close(17 [pid 5889] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5888] <... close resumed>) = 0 [pid 5887] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5885] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [ 267.267386][ T5895] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 267.287669][ T5893] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 5888] close(4 [pid 5887] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5884] close(18 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5887] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5888] close(5 [pid 5887] <... futex resumed>) = 1 [pid 5885] <... futex resumed>) = 0 [pid 5884] close(19 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5887] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5885] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5888] close(6 [pid 5887] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5885] <... futex resumed>) = 0 [pid 5884] close(20 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5887] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5885] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5888] close(7 [pid 5887] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5884] close(21 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5887] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5888] close(8 [pid 5884] close(22 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5887] <... futex resumed>) = 1 [pid 5885] <... futex resumed>) = 0 [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5888] close(9 [pid 5887] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5885] close(3 [pid 5884] close(23 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = 0 [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5888] close(10 [pid 5885] close(4 [pid 5884] close(24 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5888] close(11 [pid 5885] close(5 [pid 5884] close(25 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5888] close(12 [pid 5885] close(6 [pid 5884] close(26 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5888] close(13 [pid 5885] close(7 [pid 5884] close(27 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5888] close(14 [pid 5885] close(8 [pid 5884] close(28 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5888] close(15 [pid 5885] close(9 [pid 5884] close(29 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5884] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5888] close(16write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5885] close(10 [pid 5884] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5884] <... write resumed>) = 156 [pid 5888] close(17 [pid 5885] close(11 [pid 5884] exit_group(0 [pid 5902] <... futex resumed>) = ? [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5886] <... futex resumed>) = ? [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5884] <... exit_group resumed>) = ? [pid 5902] +++ exited with 0 +++ [pid 5888] close(18 [pid 5886] +++ exited with 0 +++ [pid 5885] close(12 [pid 5884] +++ exited with 0 +++ [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5888] close(19 [pid 5885] close(13 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=103, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=65 /* 0.65 s */} --- [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 5888] close(20 [pid 5885] close(14 [pid 5029] <... restart_syscall resumed>) = 0 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5888] close(21 [pid 5885] close(15 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./32", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5888] close(22 [pid 5885] close(16 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5888] close(23 [pid 5885] close(17 [pid 5029] <... openat resumed>) = 3 [pid 5890] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] newfstatat(3, "", [pid 5890] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5888] close(24 [pid 5885] close(18 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5890] <... futex resumed>) = 0 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] getdents64(3, [pid 5890] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5888] close(25 [pid 5885] close(19 [pid 5029] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5891] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5890] <... mmap resumed>) = 0x7f4f6607f000 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./32/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5890] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5888] close(26 [pid 5885] close(20 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5890] <... mprotect resumed>) = 0 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] newfstatat(AT_FDCWD, "./32/cgroup.cpu", [pid 5890] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5888] close(27 [pid 5885] close(21 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5890] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] unlink("./32/cgroup.cpu" [pid 5890] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5888] close(28 [pid 5885] close(22 [pid 5029] <... unlink resumed>) = 0 ./strace-static-x86_64: Process 5904 attached [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./32/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5904] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5891] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5890] <... clone3 resumed> => {parent_tid=[102]}, 88) = 102 [pid 5888] close(29 [pid 5885] close(23 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5904] <... rseq resumed>) = 0 [pid 5890] rt_sigprocmask(SIG_SETMASK, [], [pid 5888] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] newfstatat(AT_FDCWD, "./32/binderfs", [pid 5904] set_robust_list(0x7f4f6609f9a0, 24 [pid 5890] <... rt_sigprocmask resumed>NULL, 8) = 0 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5888] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5885] close(24 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5904] <... set_robust_list resumed>) = 0 [pid 5890] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5888] <... write resumed>) = 156 [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] unlink("./32/binderfs" [pid 5904] rt_sigprocmask(SIG_SETMASK, [], [pid 5891] <... futex resumed>) = 0 [pid 5890] <... futex resumed>) = 0 [pid 5888] exit_group(0 [pid 5885] close(25 [pid 5029] <... unlink resumed>) = 0 [pid 5904] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5891] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5890] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5889] <... futex resumed>) = ? [pid 5888] <... exit_group resumed>) = ? [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5904] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5891] <... mmap resumed>) = 0x7f4f6607f000 [pid 5889] +++ exited with 0 +++ [pid 5888] +++ exited with 0 +++ [pid 5885] close(26 [pid 5904] <... openat resumed>) = 3 [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=91, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=59 /* 0.59 s */} --- [pid 5904] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5885] close(27 [pid 5904] <... futex resumed>) = 1 [pid 5890] <... futex resumed>) = 0 [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5904] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5890] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5885] close(28 [pid 5904] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5890] <... futex resumed>) = 0 [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5904] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5890] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5885] close(29 [pid 5904] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5891] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5885] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] umount2("./32", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5904] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5891] <... mprotect resumed>) = 0 [pid 5885] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5904] <... futex resumed>) = 1 [pid 5891] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5890] <... futex resumed>) = 0 [pid 5885] <... write resumed>) = 156 [pid 5030] openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5904] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5891] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5890] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5885] exit_group(0 [pid 5030] <... openat resumed>) = 3 [pid 5904] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5903] <... futex resumed>) = ? [pid 5891] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5890] <... futex resumed>) = 0 [pid 5887] <... futex resumed>) = ? [pid 5885] <... exit_group resumed>) = ? [pid 5030] newfstatat(3, "", ./strace-static-x86_64: Process 5905 attached [pid 5904] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5903] +++ exited with 0 +++ [pid 5890] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5905] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5904] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5891] <... clone3 resumed> => {parent_tid=[99]}, 88) = 99 [pid 5887] +++ exited with 0 +++ [pid 5885] +++ exited with 0 +++ [pid 5030] getdents64(3, [pid 5905] <... rseq resumed>) = 0 [pid 5904] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5891] rt_sigprocmask(SIG_SETMASK, [], [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5905] set_robust_list(0x7f4f6609f9a0, 24 [pid 5904] <... futex resumed>) = 1 [pid 5891] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5890] <... futex resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=95, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=52 /* 0.52 s */} --- [pid 5030] umount2("./32/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5905] <... set_robust_list resumed>) = 0 [pid 5904] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5891] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] umount2("./32", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5905] rt_sigprocmask(SIG_SETMASK, [], [pid 5891] <... futex resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./32/cgroup.cpu", [pid 5905] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5891] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5031] openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5905] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5031] <... openat resumed>) = 3 [pid 5030] unlink("./32/cgroup.cpu" [pid 5031] newfstatat(3, "", [pid 5030] <... unlink resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] umount2("./32/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(3, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5030] newfstatat(AT_FDCWD, "./32/binderfs", [pid 5031] umount2("./32/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5905] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] unlink("./32/binderfs" [pid 5905] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] newfstatat(AT_FDCWD, "./32/cgroup.cpu", [pid 5030] <... unlink resumed>) = 0 [pid 5905] <... futex resumed>) = 1 [pid 5891] <... futex resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5905] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5891] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] unlink("./32/cgroup.cpu" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5905] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5891] <... futex resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./32/file0", [pid 5905] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5891] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5031] umount2("./32/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5905] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5905] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5891] <... futex resumed>) = 0 [pid 5905] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5891] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5905] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5891] <... futex resumed>) = 0 [pid 5905] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5891] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5905] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5905] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5891] <... futex resumed>) = 0 [pid 5905] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5031] newfstatat(AT_FDCWD, "./32/binderfs", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] unlink("./32/binderfs" [pid 5030] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5031] <... unlink resumed>) = 0 [pid 5030] getdents64(4, [pid 5031] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5895] <... ioctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] close(4 [pid 5895] close(4 [pid 5031] newfstatat(AT_FDCWD, "./32/file0", [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./32/file0" [pid 5895] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5895] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./32/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5895] <... futex resumed>) = 1 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5895] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5031] openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] newfstatat(AT_FDCWD, "./32/cgroup", [pid 5031] <... openat resumed>) = 4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] newfstatat(4, "", [pid 5030] unlink("./32/cgroup" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5031] getdents64(4, [pid 5030] umount2("./32/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./32/cgroup.net", [pid 5031] getdents64(4, [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] unlink("./32/cgroup.net" [pid 5893] <... ioctl resumed>) = 0 [pid 5031] close(4 [pid 5894] <... futex resumed>) = 0 [pid 5893] close(4 [pid 5031] <... close resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5894] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5893] <... close resumed>) = 0 [pid 5031] rmdir("./32/file0" [pid 5030] getdents64(3, [pid 5895] <... futex resumed>) = 0 [pid 5894] <... futex resumed>) = 1 [pid 5893] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5895] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5894] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5893] <... futex resumed>) = 0 [pid 5890] close(3 [pid 5031] umount2("./32/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] close(3) = 0 [pid 5030] rmdir("./32") = 0 [pid 5030] mkdir("./33", 0777 [pid 5895] <... openat resumed>) = 3 [pid 5890] <... close resumed>) = 0 [pid 5893] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5890] close(4 [pid 5895] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] newfstatat(AT_FDCWD, "./32/cgroup", [pid 5895] <... futex resumed>) = 1 [pid 5894] <... futex resumed>) = 0 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5895] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5894] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5890] close(5 [pid 5894] <... futex resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5894] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5030] <... openat resumed>) = 3 [pid 5895] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] unlink("./32/cgroup" [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5906 attached [pid 5895] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5890] close(6 [pid 5031] <... unlink resumed>) = 0 [pid 5895] <... futex resumed>) = 1 [pid 5894] <... futex resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 93 [pid 5895] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5894] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] umount2("./32/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5906] set_robust_list(0x55555654e6a0, 24 [pid 5895] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5894] <... futex resumed>) = 0 [pid 5894] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5890] close(7) = -1 EBADF (Bad file descriptor) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5906] <... set_robust_list resumed>) = 0 [pid 5895] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5906] chdir("./33" [pid 5895] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5031] newfstatat(AT_FDCWD, "./32/cgroup.net", [pid 5895] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5890] close(8 [pid 5906] <... chdir resumed>) = 0 [pid 5895] <... futex resumed>) = 1 [pid 5894] <... futex resumed>) = 0 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5906] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5894] close(3) = 0 [pid 5894] close(4) = -1 EBADF (Bad file descriptor) [pid 5894] close(5) = -1 EBADF (Bad file descriptor) [pid 5890] close(9 [pid 5031] unlink("./32/cgroup.net" [pid 5906] <... prctl resumed>) = 0 [pid 5895] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5894] close(6 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5906] setpgid(0, 0 [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] close(10 [pid 5031] <... unlink resumed>) = 0 [pid 5906] <... setpgid resumed>) = 0 [pid 5894] close(7 [pid 5892] <... ioctl resumed>) = 0 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] getdents64(3, [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] close(11 [pid 5894] close(8 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] close(12 [pid 5894] close(9 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] close(13 [pid 5894] close(10 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] close(14 [pid 5894] close(11 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] close(15 [pid 5894] close(12 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] close(16 [pid 5894] close(13 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] close(17 [pid 5894] close(14 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] close(18 [pid 5894] close(15 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5906] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5892] close(4 [pid 5890] close(19 [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5894] close(16 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] close(20 [pid 5894] close(17 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] close(21 [pid 5894] close(18 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] close(22 [pid 5894] close(19 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] close(23 [pid 5906] <... symlink resumed>) = 0 [pid 5894] close(20 [pid 5892] <... close resumed>) = 0 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] close(3 [pid 5906] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu" [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5892] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5890] close(24 [pid 5894] close(21 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] close(25 [pid 5894] close(22 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... close resumed>) = 0 [pid 5906] <... symlink resumed>) = 0 [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5892] <... futex resumed>) = 0 [pid 5890] close(26 [pid 5906] symlink("/syzcgroup/net/syz3", "./cgroup.net" [pid 5894] close(23 [pid 5892] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] rmdir("./32" [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] close(27 [pid 5894] close(24 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] close(28 [pid 5894] close(25 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] close(29 [pid 5894] close(26 [pid 5890] <... close resumed>) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5894] close(27 [pid 5890] <... write resumed>) = 156 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5890] exit_group(0 [pid 5904] <... futex resumed>) = ? [pid 5894] close(28 [pid 5893] <... futex resumed>) = ? [pid 5890] <... exit_group resumed>) = ? [pid 5906] <... symlink resumed>) = 0 [pid 5904] +++ exited with 0 +++ [pid 5894] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5891] close(3 [pid 5894] close(29) = -1 EBADF (Bad file descriptor) [pid 5031] <... rmdir resumed>) = 0 [pid 5894] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5894] exit_group(0) = ? [pid 5893] +++ exited with 0 +++ [pid 5890] +++ exited with 0 +++ [pid 5895] <... futex resumed>) = ? [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=100, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=59 /* 0.59 s */} --- [pid 5891] <... close resumed>) = 0 [pid 5906] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5895] +++ exited with 0 +++ [pid 5894] +++ exited with 0 +++ [pid 5031] mkdir("./33", 0777 [pid 5891] close(4 [pid 5906] <... openat resumed>) = 3 [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... mkdir resumed>) = 0 [pid 5906] write(3, "1000", 4 [pid 5891] close(5 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=99, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=66 /* 0.66 s */} --- [pid 5034] umount2("./33", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5906] <... write resumed>) = 4 [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./34", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5906] close(3 [pid 5891] close(6 [pid 5034] <... openat resumed>) = 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... openat resumed>) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5034] umount2("./33/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./33/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./33/cgroup.cpu" [pid 5906] <... close resumed>) = 0 [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... unlink resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5906] symlink("/dev/binderfs", "./binderfs" [pid 5891] close(7 [pid 5034] umount2("./33/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... openat resumed>) = 3 [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5906] <... symlink resumed>) = 0 [pid 5891] close(8 [pid 5034] newfstatat(AT_FDCWD, "./33/binderfs", [pid 5031] close(3 [pid 5033] newfstatat(3, "", [pid 5906] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... close resumed>) = 0 [pid 5906] <... futex resumed>) = 0 [pid 5891] close(9 [pid 5034] unlink("./33/binderfs" [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5906] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... unlink resumed>) = 0 ./strace-static-x86_64: Process 5907 attached [pid 5906] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5891] close(10 [pid 5034] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] getdents64(3, [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./33/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5907] set_robust_list(0x55555654e6a0, 24 [pid 5906] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] newfstatat(4, "", [pid 5033] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 98 [pid 5029] <... umount2 resumed>) = 0 [pid 5907] <... set_robust_list resumed>) = 0 [pid 5906] <... mprotect resumed>) = 0 [pid 5891] close(11 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] umount2("./34/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5907] chdir("./33" [pid 5906] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] getdents64(4, [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5907] <... chdir resumed>) = 0 [pid 5906] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5891] close(12 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5033] newfstatat(AT_FDCWD, "./34/cgroup.cpu", [pid 5029] newfstatat(AT_FDCWD, "./32/file0", [pid 5907] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5906] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] getdents64(4, [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 5908 attached [pid 5907] <... prctl resumed>) = 0 [pid 5891] close(13 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5033] unlink("./34/cgroup.cpu" [pid 5029] umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5908] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5907] setpgid(0, 0 [pid 5906] <... clone3 resumed> => {parent_tid=[94]}, 88) = 94 [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] close(4 [pid 5033] <... unlink resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5908] <... rseq resumed>) = 0 [pid 5907] <... setpgid resumed>) = 0 [pid 5906] rt_sigprocmask(SIG_SETMASK, [], [pid 5891] close(14 [pid 5034] <... close resumed>) = 0 [pid 5033] umount2("./34/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5908] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5907] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 5906] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] rmdir("./33/file0" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... openat resumed>) = 4 [pid 5908] <... set_robust_list resumed>) = 0 [pid 5907] <... symlink resumed>) = 0 [pid 5906] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5891] close(15 [pid 5033] newfstatat(AT_FDCWD, "./34/binderfs", [pid 5029] newfstatat(4, "", [pid 5908] rt_sigprocmask(SIG_SETMASK, [], [pid 5907] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 5906] <... futex resumed>) = 0 [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5908] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5907] <... symlink resumed>) = 0 [pid 5906] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5891] close(16 [pid 5034] umount2("./33/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] unlink("./34/binderfs" [pid 5029] getdents64(4, [pid 5908] memfd_create("syzkaller", 0 [pid 5907] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... unlink resumed>) = 0 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5908] <... memfd_create resumed>) = 3 [pid 5907] <... symlink resumed>) = 0 [pid 5891] close(17 [pid 5034] newfstatat(AT_FDCWD, "./33/cgroup", [pid 5033] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(4, [pid 5908] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5907] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5907] <... openat resumed>) = 3 [pid 5891] close(18 [pid 5033] newfstatat(AT_FDCWD, "./34/file0", [pid 5029] close(4 [pid 5907] write(3, "1000", 4 [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... close resumed>) = 0 [pid 5907] <... write resumed>) = 4 [pid 5891] close(19 [pid 5034] unlink("./33/cgroup" [pid 5033] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] rmdir("./32/file0" [pid 5908] <... mmap resumed>) = 0x7f4f650a0000 [pid 5907] close(3 [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... unlink resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... rmdir resumed>) = 0 [pid 5907] <... close resumed>) = 0 [pid 5891] close(20 [pid 5034] umount2("./33/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] umount2("./32/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5907] symlink("/dev/binderfs", "./binderfs" [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... openat resumed>) = 4 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5907] <... symlink resumed>) = 0 [pid 5891] close(21 [pid 5034] newfstatat(AT_FDCWD, "./33/cgroup.net", [pid 5033] newfstatat(4, "", [pid 5029] newfstatat(AT_FDCWD, "./32/cgroup", [pid 5907] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5907] <... futex resumed>) = 0 [pid 5891] close(22 [pid 5034] unlink("./33/cgroup.net" [pid 5033] getdents64(4, [pid 5029] unlink("./32/cgroup" [pid 5907] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... unlink resumed>) = 0 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5029] <... unlink resumed>) = 0 [pid 5907] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5891] close(23 [pid 5034] getdents64(3, [pid 5033] getdents64(4, [pid 5029] umount2("./32/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5907] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5907] <... mprotect resumed>) = 0 [pid 5891] close(24 [pid 5034] close(3 [pid 5033] close(4 [pid 5029] newfstatat(AT_FDCWD, "./32/cgroup.net", [pid 5907] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... close resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5907] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5891] close(25 [pid 5034] rmdir("./33" [pid 5033] rmdir("./34/file0" [pid 5029] unlink("./32/cgroup.net" [pid 5907] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 ./strace-static-x86_64: Process 5909 attached [pid 5891] close(26 [pid 5034] mkdir("./34", 0777 [pid 5033] umount2("./34/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, [pid 5909] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5907] <... clone3 resumed> => {parent_tid=[99]}, 88) = 99 [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5909] <... rseq resumed>) = 0 [pid 5907] rt_sigprocmask(SIG_SETMASK, [], [pid 5891] close(27 [pid 5034] <... mkdir resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./34/cgroup", [pid 5029] close(3 [pid 5909] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5907] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... close resumed>) = 0 [pid 5909] <... set_robust_list resumed>) = 0 [pid 5907] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5891] close(28 [pid 5034] <... openat resumed>) = 3 [pid 5033] unlink("./34/cgroup" [pid 5029] rmdir("./32" [pid 5909] rt_sigprocmask(SIG_SETMASK, [], [pid 5907] <... futex resumed>) = 0 [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] <... unlink resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5909] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5907] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5891] close(29 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] umount2("./34/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] mkdir("./33", 0777 [pid 5909] memfd_create("syzkaller", 0 [pid 5891] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] close(3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... mkdir resumed>) = 0 [pid 5909] <... memfd_create resumed>) = 3 [pid 5891] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5034] <... close resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./34/cgroup.net", [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5909] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5891] <... write resumed>) = 156 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... openat resumed>) = 3 [pid 5909] <... mmap resumed>) = 0x7f4f650a0000 [pid 5891] exit_group(0 [pid 5033] unlink("./34/cgroup.net" [pid 5029] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 5910 attached [pid 5905] <... futex resumed>) = ? [pid 5892] <... futex resumed>) = ? [pid 5891] <... exit_group resumed>) = ? [pid 5033] <... unlink resumed>) = 0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5910] set_robust_list(0x55555654e6a0, 24 [pid 5905] +++ exited with 0 +++ [pid 5892] +++ exited with 0 +++ [pid 5891] +++ exited with 0 +++ [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 103 [pid 5033] getdents64(3, [pid 5029] close(3 [pid 5910] <... set_robust_list resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=97, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=60 /* 0.60 s */} --- [pid 5029] <... close resumed>) = 0 [pid 5033] close(3 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5911 attached [pid 5910] chdir("./34" [pid 5033] <... close resumed>) = 0 [pid 5911] set_robust_list(0x55555654e6a0, 24 [pid 5910] <... chdir resumed>) = 0 [pid 5033] rmdir("./34" [pid 5032] umount2("./33", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 106 [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] mkdir("./35", 0777 [pid 5032] openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... mkdir resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5032] newfstatat(3, "", [pid 5033] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] getdents64(3, [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5033] close(3 [pid 5032] umount2("./33/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5911] <... set_robust_list resumed>) = 0 [pid 5910] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] newfstatat(AT_FDCWD, "./33/cgroup.cpu", ./strace-static-x86_64: Process 5912 attached [pid 5911] chdir("./33" [pid 5910] <... prctl resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5912] set_robust_list(0x55555654e6a0, 24 [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 101 [pid 5032] unlink("./33/cgroup.cpu" [pid 5912] <... set_robust_list resumed>) = 0 [pid 5911] <... chdir resumed>) = 0 [pid 5910] setpgid(0, 0 [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./33/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5912] chdir("./35" [pid 5911] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5910] <... setpgid resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./33/binderfs", [pid 5912] <... chdir resumed>) = 0 [pid 5911] <... prctl resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5912] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5911] setpgid(0, 0 [pid 5910] symlink("/syzcgroup/unified/syz5", "./cgroup" [pid 5032] unlink("./33/binderfs" [pid 5912] <... prctl resumed>) = 0 [pid 5911] <... setpgid resumed>) = 0 [pid 5910] <... symlink resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5032] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5912] setpgid(0, 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5911] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 5032] newfstatat(AT_FDCWD, "./33/file0", [pid 5910] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu" [pid 5912] <... setpgid resumed>) = 0 [pid 5911] <... symlink resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5912] symlink("/syzcgroup/unified/syz2", "./cgroup" [pid 5911] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu" [pid 5910] <... symlink resumed>) = 0 [pid 5032] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5912] <... symlink resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5912] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu" [pid 5911] <... symlink resumed>) = 0 [pid 5910] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 5032] <... openat resumed>) = 4 [pid 5912] <... symlink resumed>) = 0 [pid 5911] symlink("/syzcgroup/net/syz0", "./cgroup.net" [pid 5910] <... symlink resumed>) = 0 [pid 5032] newfstatat(4, "", [pid 5911] <... symlink resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5910] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5912] symlink("/syzcgroup/net/syz2", "./cgroup.net" [pid 5911] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] getdents64(4, [pid 5911] <... openat resumed>) = 3 [pid 5910] <... openat resumed>) = 3 [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5912] <... symlink resumed>) = 0 [pid 5032] getdents64(4, [pid 5910] write(3, "1000", 4 [pid 5912] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5911] write(3, "1000", 4 [pid 5910] <... write resumed>) = 4 [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5912] <... openat resumed>) = 3 [pid 5911] <... write resumed>) = 4 [pid 5910] close(3 [pid 5032] close(4 [pid 5912] write(3, "1000", 4 [pid 5911] close(3 [pid 5910] <... close resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5912] <... write resumed>) = 4 [pid 5911] <... close resumed>) = 0 [pid 5910] symlink("/dev/binderfs", "./binderfs" [pid 5032] rmdir("./33/file0") = 0 [pid 5032] umount2("./33/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./33/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./33/cgroup") = 0 [pid 5032] umount2("./33/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./33/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./33/cgroup.net") = 0 [pid 5032] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5912] close(3 [pid 5911] symlink("/dev/binderfs", "./binderfs" [pid 5032] rmdir("./33" [pid 5912] <... close resumed>) = 0 [pid 5911] <... symlink resumed>) = 0 [pid 5910] <... symlink resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5032] mkdir("./34", 0777 [pid 5912] symlink("/dev/binderfs", "./binderfs" [pid 5911] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5910] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] <... mkdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5913 attached , child_tidptr=0x55555654e690) = 100 [pid 5912] <... symlink resumed>) = 0 [pid 5911] <... futex resumed>) = 0 [pid 5910] <... futex resumed>) = 0 [pid 5913] set_robust_list(0x55555654e6a0, 24) = 0 [pid 5912] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5911] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5910] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5913] chdir("./34" [pid 5912] <... futex resumed>) = 0 [pid 5911] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5910] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5912] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5911] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5910] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5913] <... chdir resumed>) = 0 [pid 5911] <... mprotect resumed>) = 0 [pid 5910] <... mprotect resumed>) = 0 [pid 5913] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5912] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5910] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5913] <... prctl resumed>) = 0 [pid 5912] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5911] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5910] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5913] setpgid(0, 0 [pid 5912] <... mprotect resumed>) = 0 [pid 5911] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5910] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5913] <... setpgid resumed>) = 0 ./strace-static-x86_64: Process 5914 attached [pid 5912] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5911] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5915 attached [pid 5914] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5913] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 5910] <... clone3 resumed> => {parent_tid=[104]}, 88) = 104 [pid 5915] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5914] <... rseq resumed>) = 0 [pid 5912] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5911] <... clone3 resumed> => {parent_tid=[107]}, 88) = 107 [pid 5910] rt_sigprocmask(SIG_SETMASK, [], [pid 5915] <... rseq resumed>) = 0 [pid 5914] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5913] <... symlink resumed>) = 0 [pid 5912] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5911] rt_sigprocmask(SIG_SETMASK, [], [pid 5915] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5914] <... set_robust_list resumed>) = 0 [pid 5911] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5910] <... rt_sigprocmask resumed>NULL, 8) = 0 ./strace-static-x86_64: Process 5916 attached [pid 5915] <... set_robust_list resumed>) = 0 [pid 5913] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 5916] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5915] rt_sigprocmask(SIG_SETMASK, [], [pid 5914] rt_sigprocmask(SIG_SETMASK, [], [pid 5911] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5910] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5916] <... rseq resumed>) = 0 [pid 5915] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5916] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5915] memfd_create("syzkaller", 0 [pid 5914] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5913] <... symlink resumed>) = 0 [pid 5912] <... clone3 resumed> => {parent_tid=[102]}, 88) = 102 [pid 5911] <... futex resumed>) = 0 [pid 5910] <... futex resumed>) = 0 [pid 5916] <... set_robust_list resumed>) = 0 [pid 5915] <... memfd_create resumed>) = 3 [pid 5916] rt_sigprocmask(SIG_SETMASK, [], [pid 5915] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5916] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5915] <... mmap resumed>) = 0x7f4f650a0000 [pid 5916] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5911] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5910] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5914] memfd_create("syzkaller", 0 [pid 5913] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 5912] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5913] <... symlink resumed>) = 0 [pid 5912] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5914] <... memfd_create resumed>) = 3 [pid 5916] <... futex resumed>) = 0 [pid 5913] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5912] <... futex resumed>) = 1 [pid 5916] memfd_create("syzkaller", 0) = 3 [pid 5916] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5914] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5912] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5916] <... mmap resumed>) = 0x7f4f650a0000 [pid 5914] <... mmap resumed>) = 0x7f4f650a0000 [pid 5913] <... openat resumed>) = 3 [pid 5913] write(3, "1000", 4) = 4 [pid 5913] close(3) = 0 [pid 5913] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5913] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5913] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5913] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5913] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5913] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5917 attached => {parent_tid=[101]}, 88) = 101 [pid 5917] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5913] rt_sigprocmask(SIG_SETMASK, [], [pid 5917] <... rseq resumed>) = 0 [pid 5917] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5913] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5917] <... set_robust_list resumed>) = 0 [pid 5913] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5917] rt_sigprocmask(SIG_SETMASK, [], [pid 5913] <... futex resumed>) = 0 [pid 5917] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5913] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5917] memfd_create("syzkaller", 0) = 3 [pid 5917] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5908] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5909] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5915] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5916] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5914] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5917] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5908] <... write resumed>) = 16777216 [pid 5908] munmap(0x7f4f650a0000, 16777216 [pid 5909] <... write resumed>) = 16777216 [pid 5909] munmap(0x7f4f650a0000, 16777216) = 0 [pid 5908] <... munmap resumed>) = 0 [pid 5908] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5908] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5909] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5909] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5908] close(3) = 0 [pid 5908] mkdir("./file0", 0777) = 0 [pid 5908] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5909] close(3) = 0 [pid 5909] mkdir("./file0", 0777) = 0 [ 269.906850][ T5908] loop3: detected capacity change from 0 to 32768 [ 269.936941][ T5909] loop4: detected capacity change from 0 to 32768 [pid 5909] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5914] <... write resumed>) = 16777216 [ 269.963137][ T5908] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 269.985981][ T5908] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 269.996941][ T5909] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [pid 5917] <... write resumed>) = 16777216 [pid 5916] <... write resumed>) = 16777216 [pid 5915] <... write resumed>) = 16777216 [pid 5914] munmap(0x7f4f650a0000, 16777216 [pid 5917] munmap(0x7f4f650a0000, 16777216 [pid 5916] munmap(0x7f4f650a0000, 16777216 [ 270.004381][ T5909] CPU: 1 PID: 5909 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 270.014844][ T5909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 270.024948][ T5909] Call Trace: [ 270.028273][ T5909] [ 270.031245][ T5909] dump_stack_lvl+0x136/0x150 [ 270.035996][ T5909] sysfs_warn_dup+0x80/0xa0 [ 270.040553][ T5909] sysfs_create_dir_ns+0x237/0x290 [ 270.045721][ T5909] ? sysfs_create_mount_point+0xb0/0xb0 [ 270.051327][ T5909] ? spin_bug+0x1c0/0x1c0 [ 270.055715][ T5909] ? do_raw_spin_unlock+0x175/0x230 [ 270.060974][ T5909] kobject_add_internal+0x2c9/0x9c0 [ 270.066260][ T5909] ? kfree+0x11/0x150 [ 270.070311][ T5909] kobject_init_and_add+0x101/0x170 [ 270.075649][ T5909] ? kobject_create_and_add+0xf0/0xf0 [ 270.081076][ T5909] ? lockdep_init_map_type+0x21e/0x810 [ 270.086593][ T5909] ? lockdep_hardirqs_on+0x7d/0x100 [ 270.091844][ T5909] ? lockdep_init_map_type+0x21e/0x810 [ 270.097359][ T5909] gfs2_sys_fs_add+0x1d5/0x450 [ 270.102177][ T5909] ? recover_store+0x170/0x170 [ 270.106994][ T5909] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 270.112783][ T5909] gfs2_fill_super+0x1312/0x2aa0 [ 270.117794][ T5909] ? gfs2_reconfigure+0xf90/0xf90 [ 270.122884][ T5909] ? snprintf+0xbf/0x100 [ 270.127182][ T5909] ? vsprintf+0x30/0x30 [ 270.131397][ T5909] ? wait_for_completion_io_timeout+0x20/0x20 [ 270.137548][ T5909] ? set_blocksize+0x2d8/0x370 [ 270.142369][ T5909] get_tree_bdev+0x43e/0x7d0 [ 270.147025][ T5909] ? gfs2_reconfigure+0xf90/0xf90 [ 270.152198][ T5909] gfs2_get_tree+0x4e/0x270 [ 270.156758][ T5909] vfs_get_tree+0x8d/0x350 [ 270.161271][ T5909] path_mount+0x136e/0x1e70 [ 270.165848][ T5909] ? putname+0x102/0x140 [ 270.170153][ T5909] ? lockdep_hardirqs_on+0x7d/0x100 [ 270.175413][ T5909] ? finish_automount+0xa30/0xa30 [ 270.180500][ T5909] ? putname+0x102/0x140 [ 270.184797][ T5909] __x64_sys_mount+0x283/0x300 [ 270.189622][ T5909] ? copy_mnt_ns+0xb30/0xb30 [ 270.194270][ T5909] ? lockdep_hardirqs_on+0x7d/0x100 [ 270.199531][ T5909] ? _raw_spin_unlock_irq+0x2e/0x50 [ 270.204800][ T5909] ? ptrace_notify+0xfe/0x140 [ 270.209550][ T5909] do_syscall_64+0x39/0xb0 [ 270.214025][ T5909] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 270.219994][ T5909] RIP: 0033:0x7f4f6dd11c5a [ 270.224454][ T5909] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 270.244303][ T5909] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 270.252777][ T5909] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [pid 5915] munmap(0x7f4f650a0000, 16777216 [pid 5914] <... munmap resumed>) = 0 [pid 5914] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5914] ioctl(4, LOOP_SET_FD, 3 [pid 5917] <... munmap resumed>) = 0 [pid 5915] <... munmap resumed>) = 0 [pid 5917] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [ 270.260798][ T5909] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 270.268818][ T5909] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 270.276840][ T5909] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 270.284859][ T5914] loop5: detected capacity change from 0 to 32768 [ 270.284862][ T5909] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 270.284892][ T5909] [pid 5917] ioctl(4, LOOP_SET_FD, 3 [pid 5915] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5915] ioctl(4, LOOP_SET_FD, 3 [pid 5916] <... munmap resumed>) = 0 [pid 5915] <... ioctl resumed>) = 0 [pid 5915] close(3) = 0 [pid 5915] mkdir("./file0", 0777) = 0 [pid 5916] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5916] ioctl(4, LOOP_SET_FD, 3 [pid 5915] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5914] <... ioctl resumed>) = 0 [pid 5914] close(3) = 0 [pid 5914] mkdir("./file0", 0777) = 0 [pid 5914] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5917] <... ioctl resumed>) = 0 [pid 5917] close(3) = 0 [pid 5917] mkdir("./file0", 0777) = 0 [ 270.308819][ T5917] loop1: detected capacity change from 0 to 32768 [ 270.318464][ T5915] loop0: detected capacity change from 0 to 32768 [ 270.329288][ T5908] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 270.344357][ T5916] loop2: detected capacity change from 0 to 32768 [pid 5917] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5909] <... mount resumed>) = -1 EEXIST (File exists) [pid 5909] ioctl(4, LOOP_CLR_FD [pid 5916] <... ioctl resumed>) = 0 [pid 5916] close(3) = 0 [ 270.354198][ T5909] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 270.369486][ T5909] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 270.376406][ T5915] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 270.383516][ T21] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 270.387120][ T5914] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 270.391167][ T21] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [pid 5916] mkdir("./file0", 0777) = 0 [ 270.411426][ T5917] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 270.434341][ T5915] CPU: 0 PID: 5915 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 270.444855][ T5915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 270.454964][ T5915] Call Trace: [ 270.458292][ T5915] [ 270.459955][ T21] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 68ms [ 270.461235][ T5915] dump_stack_lvl+0x136/0x150 [ 270.471067][ T21] gfs2: fsid=syz:syz.0: jid=0: Done [ 270.473287][ T5915] sysfs_warn_dup+0x80/0xa0 [ 270.483051][ T5915] sysfs_create_dir_ns+0x237/0x290 [ 270.486172][ T5908] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 270.488192][ T5915] ? sysfs_create_mount_point+0xb0/0xb0 [ 270.500982][ T5915] ? spin_bug+0x1c0/0x1c0 [ 270.505363][ T5915] ? do_raw_spin_unlock+0x175/0x230 [ 270.510615][ T5915] kobject_add_internal+0x2c9/0x9c0 [ 270.515954][ T5915] ? kfree+0x11/0x150 [ 270.519992][ T5915] kobject_init_and_add+0x101/0x170 [ 270.525226][ T5915] ? kobject_create_and_add+0xf0/0xf0 [ 270.530651][ T5915] ? lockdep_init_map_type+0x21e/0x810 [ 270.536162][ T5915] ? lockdep_hardirqs_on+0x7d/0x100 [ 270.541419][ T5915] ? lockdep_init_map_type+0x21e/0x810 [ 270.546924][ T5915] gfs2_sys_fs_add+0x1d5/0x450 [ 270.551721][ T5915] ? recover_store+0x170/0x170 [ 270.556518][ T5915] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 270.562285][ T5915] gfs2_fill_super+0x1312/0x2aa0 [ 270.567258][ T5915] ? gfs2_reconfigure+0xf90/0xf90 [ 270.572328][ T5915] ? snprintf+0xbf/0x100 [ 270.576605][ T5915] ? vsprintf+0x30/0x30 [ 270.580792][ T5915] ? wait_for_completion_io_timeout+0x20/0x20 [ 270.586911][ T5915] ? set_blocksize+0x2d8/0x370 [ 270.591707][ T5915] get_tree_bdev+0x43e/0x7d0 [ 270.596337][ T5915] ? gfs2_reconfigure+0xf90/0xf90 [ 270.601387][ T5915] gfs2_get_tree+0x4e/0x270 [ 270.605934][ T5915] vfs_get_tree+0x8d/0x350 [ 270.610377][ T5915] path_mount+0x136e/0x1e70 [ 270.614910][ T5915] ? putname+0x102/0x140 [ 270.619187][ T5915] ? lockdep_hardirqs_on+0x7d/0x100 [ 270.624438][ T5915] ? finish_automount+0xa30/0xa30 [ 270.629514][ T5915] ? putname+0x102/0x140 [ 270.633787][ T5915] __x64_sys_mount+0x283/0x300 [ 270.638586][ T5915] ? copy_mnt_ns+0xb30/0xb30 [ 270.643207][ T5915] ? lockdep_hardirqs_on+0x7d/0x100 [ 270.648438][ T5915] ? _raw_spin_unlock_irq+0x2e/0x50 [ 270.653675][ T5915] ? ptrace_notify+0xfe/0x140 [ 270.658403][ T5915] do_syscall_64+0x39/0xb0 [ 270.662848][ T5915] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 270.668788][ T5915] RIP: 0033:0x7f4f6dd11c5a [ 270.673226][ T5915] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 270.692865][ T5915] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 270.701308][ T5915] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 270.709305][ T5915] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 270.717300][ T5915] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 270.725299][ T5915] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 270.733331][ T5915] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 270.741459][ T5915] [ 270.749513][ T5916] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 270.749796][ T5917] CPU: 0 PID: 5917 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 270.767466][ T5917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 270.777646][ T5917] Call Trace: [ 270.780951][ T5917] [ 270.783913][ T5917] dump_stack_lvl+0x136/0x150 [ 270.788675][ T5917] sysfs_warn_dup+0x80/0xa0 [ 270.793232][ T5917] sysfs_create_dir_ns+0x237/0x290 [ 270.798403][ T5917] ? sysfs_create_mount_point+0xb0/0xb0 [ 270.804092][ T5917] ? spin_bug+0x1c0/0x1c0 [ 270.808492][ T5917] ? do_raw_spin_unlock+0x175/0x230 [ 270.813770][ T5917] kobject_add_internal+0x2c9/0x9c0 [ 270.816179][ T5915] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 270.818996][ T5917] ? kfree+0x11/0x150 [ 270.836910][ T5917] kobject_init_and_add+0x101/0x170 [ 270.842176][ T5917] ? kobject_create_and_add+0xf0/0xf0 [ 270.847612][ T5917] ? lockdep_init_map_type+0x21e/0x810 [ 270.853146][ T5917] ? lockdep_hardirqs_on+0x7d/0x100 [ 270.858411][ T5917] ? lockdep_init_map_type+0x21e/0x810 [ 270.863940][ T5917] gfs2_sys_fs_add+0x1d5/0x450 [ 270.868772][ T5917] ? recover_store+0x170/0x170 [ 270.873599][ T5917] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 270.879388][ T5917] gfs2_fill_super+0x1312/0x2aa0 [ 270.884388][ T5917] ? gfs2_reconfigure+0xf90/0xf90 [ 270.889472][ T5917] ? snprintf+0xbf/0x100 [ 270.893774][ T5917] ? vsprintf+0x30/0x30 [ 270.897988][ T5917] ? wait_for_completion_io_timeout+0x20/0x20 [ 270.904126][ T5917] ? set_blocksize+0x2d8/0x370 [ 270.908956][ T5917] get_tree_bdev+0x43e/0x7d0 [ 270.913650][ T5917] ? gfs2_reconfigure+0xf90/0xf90 [ 270.918743][ T5917] gfs2_get_tree+0x4e/0x270 [ 270.923313][ T5917] vfs_get_tree+0x8d/0x350 [ 270.927793][ T5917] path_mount+0x136e/0x1e70 [ 270.927917][ T5908] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 270.932358][ T5917] ? putname+0x102/0x140 [ 270.932398][ T5917] ? lockdep_hardirqs_on+0x7d/0x100 [ 270.950241][ T5917] ? finish_automount+0xa30/0xa30 [ 270.955345][ T5917] ? putname+0x102/0x140 [ 270.959649][ T5917] __x64_sys_mount+0x283/0x300 [ 270.964487][ T5917] ? copy_mnt_ns+0xb30/0xb30 [ 270.969144][ T5917] ? lockdep_hardirqs_on+0x7d/0x100 [ 270.973876][ T5908] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 270.973876][ T5908] inode = 12 2341 [ 270.973876][ T5908] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 270.974374][ T5917] ? _raw_spin_unlock_irq+0x2e/0x50 [ 270.998200][ T5917] ? ptrace_notify+0xfe/0x140 [ 271.002959][ T5917] do_syscall_64+0x39/0xb0 [ 271.007535][ T5917] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 271.013507][ T5917] RIP: 0033:0x7f4f6dd11c5a [ 271.017967][ T5917] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 271.037636][ T5917] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 271.043790][ T5915] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 271.046259][ T5917] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [pid 5916] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5908] <... mount resumed>) = 0 [pid 5908] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5908] chdir("./file0") = 0 [pid 5908] ioctl(4, LOOP_CLR_FD) = 0 [pid 5908] close(4) = 0 [pid 5908] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5906] <... futex resumed>) = 0 [pid 5908] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5906] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5908] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5906] <... futex resumed>) = 0 [pid 5908] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5906] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 5906] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5906] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5906] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5906] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5906] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[95]}, 88) = 95 [pid 5906] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5906] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 271.046285][ T5917] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 271.046308][ T5917] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 271.046330][ T5917] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 271.085022][ T5917] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 271.093049][ T5917] [ 271.096103][ T5908] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 271.096746][ T5914] CPU: 0 PID: 5914 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 271.115668][ T5914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 271.116553][ T5917] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 271.125845][ T5914] Call Trace: [ 271.125857][ T5914] [ 271.125868][ T5914] dump_stack_lvl+0x136/0x150 [ 271.150751][ T5914] sysfs_warn_dup+0x80/0xa0 [ 271.155319][ T5914] sysfs_create_dir_ns+0x237/0x290 [ 271.160482][ T5914] ? sysfs_create_mount_point+0xb0/0xb0 [pid 5906] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5924 attached [ 271.166088][ T5914] ? spin_bug+0x1c0/0x1c0 [ 271.170480][ T5914] ? do_raw_spin_unlock+0x175/0x230 [ 271.175748][ T5914] kobject_add_internal+0x2c9/0x9c0 [ 271.181005][ T5914] ? kfree+0x11/0x150 [ 271.185035][ T5914] kobject_init_and_add+0x101/0x170 [ 271.190280][ T5914] ? kobject_create_and_add+0xf0/0xf0 [ 271.195687][ T5914] ? lockdep_init_map_type+0x21e/0x810 [ 271.201201][ T5914] ? lockdep_hardirqs_on+0x7d/0x100 [ 271.201247][ T5908] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5908 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 271.206484][ T5914] ? lockdep_init_map_type+0x21e/0x810 [ 271.206531][ T5914] gfs2_sys_fs_add+0x1d5/0x450 [ 271.206563][ T5914] ? recover_store+0x170/0x170 [ 271.206595][ T5914] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 271.206646][ T5914] gfs2_fill_super+0x1312/0x2aa0 [ 271.242349][ T5914] ? gfs2_reconfigure+0xf90/0xf90 [ 271.247441][ T5914] ? snprintf+0xbf/0x100 [ 271.251744][ T5914] ? vsprintf+0x30/0x30 [ 271.255976][ T5914] ? wait_for_completion_io_timeout+0x20/0x20 [ 271.262108][ T5914] ? set_blocksize+0x2d8/0x370 [pid 5924] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053) = 0 [pid 5906] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 271.266936][ T5914] get_tree_bdev+0x43e/0x7d0 [ 271.271586][ T5914] ? gfs2_reconfigure+0xf90/0xf90 [ 271.276685][ T5914] gfs2_get_tree+0x4e/0x270 [ 271.281417][ T5914] vfs_get_tree+0x8d/0x350 [ 271.282063][ T5908] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 271.285867][ T5914] path_mount+0x136e/0x1e70 [ 271.285913][ T5914] ? putname+0x102/0x140 [ 271.285948][ T5914] ? lockdep_hardirqs_on+0x7d/0x100 [ 271.309286][ T5914] ? finish_automount+0xa30/0xa30 [ 271.314388][ T5914] ? putname+0x102/0x140 [pid 5924] set_robust_list(0x7f4f6609f9a0, 24 [pid 5906] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5924] <... set_robust_list resumed>) = 0 [pid 5906] <... futex resumed>) = 0 [pid 5924] rt_sigprocmask(SIG_SETMASK, [], [pid 5906] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5924] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5906] <... mmap resumed>) = 0x7f4f6605e000 [pid 5924] ioctl(0, VFAT_IOCTL_READDIR_SHORT, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 5924] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5924] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5906] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5906] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5906] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} => {parent_tid=[96]}, 88) = 96 [pid 5906] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5906] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 271.318685][ T5914] __x64_sys_mount+0x283/0x300 [ 271.323515][ T5914] ? copy_mnt_ns+0xb30/0xb30 [ 271.329728][ T5914] ? lockdep_hardirqs_on+0x7d/0x100 [ 271.334988][ T5914] ? _raw_spin_unlock_irq+0x2e/0x50 [ 271.340263][ T5914] ? ptrace_notify+0xfe/0x140 [ 271.345023][ T5914] do_syscall_64+0x39/0xb0 [ 271.349497][ T5914] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 271.350245][ T5908] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 271.355447][ T5914] RIP: 0033:0x7f4f6dd11c5a [ 271.367200][ T5914] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 271.386855][ T5914] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 271.393621][ T5917] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 271.395301][ T5914] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 271.395327][ T5914] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [pid 5906] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) ./strace-static-x86_64: Process 5925 attached [pid 5915] <... mount resumed>) = -1 EEXIST (File exists) [pid 5915] ioctl(4, LOOP_CLR_FD [pid 5909] <... ioctl resumed>) = 0 [ 271.417855][ T5914] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 271.425876][ T5914] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 271.429088][ T5908] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 271.433878][ T5914] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 271.433909][ T5914] [pid 5909] close(4) = 0 [pid 5909] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5907] <... futex resumed>) = 0 [pid 5909] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5907] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5909] <... openat resumed>) = 3 [pid 5907] <... futex resumed>) = 0 [pid 5909] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5907] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5909] <... futex resumed>) = 0 [pid 5907] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5909] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [ 271.482545][ T5914] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 271.511651][ T5914] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 271.525234][ T5916] CPU: 1 PID: 5916 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 271.526210][ T5908] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 271.535709][ T5916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 271.535730][ T5916] Call Trace: [ 271.535741][ T5916] [ 271.535752][ T5916] dump_stack_lvl+0x136/0x150 [ 271.535808][ T5916] sysfs_warn_dup+0x80/0xa0 [ 271.535842][ T5916] sysfs_create_dir_ns+0x237/0x290 [ 271.535878][ T5916] ? sysfs_create_mount_point+0xb0/0xb0 [ 271.535915][ T5916] ? spin_bug+0x1c0/0x1c0 [ 271.535969][ T5916] ? do_raw_spin_unlock+0x175/0x230 [ 271.536011][ T5916] kobject_add_internal+0x2c9/0x9c0 [ 271.536044][ T5916] ? kfree+0x11/0x150 [ 271.561399][ T5908] gfs2: fsid=syz:syz.0: File system withdrawn [ 271.563460][ T5916] kobject_init_and_add+0x101/0x170 [ 271.608698][ T5916] ? kobject_create_and_add+0xf0/0xf0 [ 271.614123][ T5916] ? lockdep_init_map_type+0x21e/0x810 [ 271.619634][ T5916] ? lockdep_hardirqs_on+0x7d/0x100 [ 271.624894][ T5916] ? lockdep_init_map_type+0x21e/0x810 [ 271.630416][ T5916] gfs2_sys_fs_add+0x1d5/0x450 [ 271.635307][ T5916] ? recover_store+0x170/0x170 [ 271.640312][ T5916] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 271.646090][ T5916] gfs2_fill_super+0x1312/0x2aa0 [ 271.651089][ T5916] ? gfs2_reconfigure+0xf90/0xf90 [ 271.656175][ T5916] ? snprintf+0xbf/0x100 [ 271.660472][ T5916] ? vsprintf+0x30/0x30 [ 271.664678][ T5916] ? wait_for_completion_io_timeout+0x20/0x20 [ 271.670848][ T5916] ? set_blocksize+0x2d8/0x370 [ 271.675681][ T5916] get_tree_bdev+0x43e/0x7d0 [ 271.680341][ T5916] ? gfs2_reconfigure+0xf90/0xf90 [ 271.686989][ T5916] gfs2_get_tree+0x4e/0x270 [ 271.691551][ T5916] vfs_get_tree+0x8d/0x350 [ 271.696027][ T5916] path_mount+0x136e/0x1e70 [ 271.700598][ T5916] ? putname+0x102/0x140 [ 271.704895][ T5916] ? lockdep_hardirqs_on+0x7d/0x100 [ 271.710152][ T5916] ? finish_automount+0xa30/0xa30 [ 271.715249][ T5916] ? putname+0x102/0x140 [ 271.719553][ T5916] __x64_sys_mount+0x283/0x300 [ 271.724380][ T5916] ? copy_mnt_ns+0xb30/0xb30 [ 271.729034][ T5916] ? lockdep_hardirqs_on+0x7d/0x100 [ 271.734287][ T5916] ? _raw_spin_unlock_irq+0x2e/0x50 [ 271.739547][ T5916] ? ptrace_notify+0xfe/0x140 [ 271.744291][ T5916] do_syscall_64+0x39/0xb0 [ 271.748793][ T5916] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 271.754836][ T5916] RIP: 0033:0x7f4f6dd11c5a [ 271.759298][ T5916] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [pid 5907] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5925] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 5917] <... mount resumed>) = -1 EEXIST (File exists) [pid 5914] <... mount resumed>) = -1 EEXIST (File exists) [pid 5909] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5907] <... futex resumed>) = 0 [pid 5917] ioctl(4, LOOP_CLR_FD [pid 5914] ioctl(4, LOOP_CLR_FD [pid 5909] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5907] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5925] <... rseq resumed>) = 0 [pid 5909] <... futex resumed>) = 0 [ 271.778971][ T5916] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 271.787418][ T5916] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 271.795416][ T5916] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 271.803499][ T5916] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 271.811495][ T5916] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 271.819504][ T5916] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 271.827522][ T5916] [pid 5907] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5909] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5907] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5909] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5907] <... futex resumed>) = 0 [pid 5909] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5907] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5909] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5909] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5907] <... futex resumed>) = 0 [pid 5909] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5907] close(3) = 0 [pid 5907] close(4) = -1 EBADF (Bad file descriptor) [pid 5907] close(5) = -1 EBADF (Bad file descriptor) [pid 5907] close(6) = -1 EBADF (Bad file descriptor) [pid 5907] close(7) = -1 EBADF (Bad file descriptor) [pid 5907] close(8) = -1 EBADF (Bad file descriptor) [pid 5907] close(9) = -1 EBADF (Bad file descriptor) [pid 5907] close(10) = -1 EBADF (Bad file descriptor) [pid 5907] close(11) = -1 EBADF (Bad file descriptor) [pid 5907] close(12) = -1 EBADF (Bad file descriptor) [pid 5907] close(13) = -1 EBADF (Bad file descriptor) [pid 5907] close(14) = -1 EBADF (Bad file descriptor) [pid 5907] close(15) = -1 EBADF (Bad file descriptor) [pid 5907] close(16) = -1 EBADF (Bad file descriptor) [pid 5907] close(17) = -1 EBADF (Bad file descriptor) [pid 5907] close(18) = -1 EBADF (Bad file descriptor) [pid 5907] close(19) = -1 EBADF (Bad file descriptor) [pid 5907] close(20) = -1 EBADF (Bad file descriptor) [pid 5907] close(21) = -1 EBADF (Bad file descriptor) [ 271.840324][ T5908] CPU: 0 PID: 5908 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 271.850830][ T5908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 271.860960][ T5908] Call Trace: [ 271.864271][ T5908] [ 271.867245][ T5908] dump_stack_lvl+0x136/0x150 [ 271.871998][ T5908] gfs2_withdraw+0xb33/0x1060 [ 271.876732][ T5908] ? gfs2_consist_inode_i+0x104/0x150 [ 271.882171][ T5908] gfs2_dirent_scan+0x32a/0x3d0 [pid 5907] close(22) = -1 EBADF (Bad file descriptor) [pid 5907] close(23) = -1 EBADF (Bad file descriptor) [pid 5907] close(24) = -1 EBADF (Bad file descriptor) [pid 5907] close(25) = -1 EBADF (Bad file descriptor) [pid 5907] close(26) = -1 EBADF (Bad file descriptor) [pid 5907] close(27) = -1 EBADF (Bad file descriptor) [pid 5907] close(28) = -1 EBADF (Bad file descriptor) [pid 5907] close(29) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5907] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5907] exit_group(0 [pid 5909] <... futex resumed>) = ? [pid 5907] <... exit_group resumed>) = ? [pid 5909] +++ exited with 0 +++ [pid 5907] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=98, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=57 /* 0.57 s */} --- [pid 5031] umount2("./33", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5031] umount2("./33/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./33/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./33/cgroup.cpu") = 0 [ 271.887104][ T5908] ? gfs2_dirent_prev+0x210/0x210 [ 271.892304][ T5908] ? gfs2_dirent_prev+0x210/0x210 [ 271.897398][ T5908] gfs2_dirent_search+0x47d/0x580 [ 271.902581][ T5908] ? get_first_leaf+0x190/0x190 [ 271.907504][ T5908] ? gfs2_permission+0x256/0x3e0 [ 271.912509][ T5908] gfs2_dir_search+0x8d/0x2d0 [ 271.917261][ T5908] ? gfs2_dir_read+0x14e0/0x14e0 [ 271.922279][ T5908] gfs2_lookupi+0x481/0x640 [ 271.926847][ T5908] ? gfs2_lookup_by_inum+0x100/0x100 [ 271.932204][ T5908] ? __gfs2_lookup+0x83/0x280 [pid 5031] umount2("./33/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./33/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./33/binderfs") = 0 [pid 5031] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./33/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./33/file0") = 0 [pid 5031] umount2("./33/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./33/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./33/cgroup") = 0 [pid 5031] umount2("./33/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./33/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./33/cgroup.net") = 0 [pid 5031] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./33") = 0 [pid 5031] mkdir("./34", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5926 attached [pid 5926] set_robust_list(0x55555654e6a0, 24) = 0 [ 271.936942][ T5908] ? d_alloc_parallel+0x693/0x1530 [ 271.942121][ T5908] __gfs2_lookup+0x83/0x280 [ 271.946713][ T5908] ? gfs2_lookupi+0x640/0x640 [ 271.951454][ T5908] ? __d_lookup_rcu+0x4e0/0x4e0 [ 271.956366][ T5908] ? __d_lookup+0x289/0x4c0 [ 271.960936][ T5908] gfs2_atomic_open+0xde/0x250 [ 271.965760][ T5908] ? __gfs2_lookup+0x280/0x280 [ 271.970589][ T5908] lookup_open.isra.0+0xce2/0x1400 [ 271.975772][ T5908] ? link_path_walk.part.0+0xd60/0xd60 [ 271.981396][ T5908] ? lookup_fast+0x14e/0x520 [ 271.986055][ T5908] path_openat+0x969/0x2710 [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 100 [pid 5926] chdir("./34") = 0 [pid 5926] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5926] setpgid(0, 0) = 0 [pid 5926] symlink("/syzcgroup/unified/syz4", "./cgroup") = 0 [pid 5926] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu") = 0 [pid 5926] symlink("/syzcgroup/net/syz4", "./cgroup.net") = 0 [pid 5926] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5926] write(3, "1000", 4) = 4 [pid 5926] close(3) = 0 [pid 5926] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5926] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5926] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5926] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5926] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5926] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5927 attached [pid 5927] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5926] <... clone3 resumed> => {parent_tid=[101]}, 88) = 101 [pid 5927] <... rseq resumed>) = 0 [pid 5926] rt_sigprocmask(SIG_SETMASK, [], [pid 5927] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5926] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5927] <... set_robust_list resumed>) = 0 [pid 5926] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5927] rt_sigprocmask(SIG_SETMASK, [], [pid 5926] <... futex resumed>) = 0 [pid 5927] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5926] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5927] memfd_create("syzkaller", 0) = 3 [ 271.990634][ T5908] ? path_lookupat+0x840/0x840 [ 271.995475][ T5908] ? find_held_lock+0x2d/0x110 [ 272.000301][ T5908] do_filp_open+0x1ba/0x410 [ 272.004868][ T5908] ? may_open_dev+0xf0/0xf0 [ 272.009430][ T5908] ? find_held_lock+0x2d/0x110 [ 272.014254][ T5908] ? do_raw_spin_lock+0x124/0x2b0 [ 272.019356][ T5908] ? spin_bug+0x1c0/0x1c0 [ 272.023756][ T5908] ? _raw_spin_unlock+0x28/0x40 [ 272.028680][ T5908] ? alloc_fd+0x2e4/0x750 [ 272.033079][ T5908] do_sys_openat2+0x160/0x1c0 [pid 5927] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [ 272.037830][ T5908] ? build_open_flags+0x720/0x720 [ 272.042937][ T5908] ? ptrace_notify+0xfe/0x140 [ 272.047690][ T5908] ? lock_downgrade+0x690/0x690 [ 272.052602][ T5908] __x64_sys_openat+0x143/0x1f0 [ 272.057528][ T5908] ? __ia32_sys_open+0x1c0/0x1c0 [ 272.062536][ T5908] ? _raw_spin_unlock_irq+0x23/0x50 [ 272.067799][ T5908] ? lockdep_hardirqs_on+0x7d/0x100 [ 272.073059][ T5908] ? _raw_spin_unlock_irq+0x2e/0x50 [ 272.078336][ T5908] ? ptrace_notify+0xfe/0x140 [ 272.083100][ T5908] do_syscall_64+0x39/0xb0 [pid 5925] set_robust_list(0x7f4f6607e9a0, 24) = 0 [pid 5925] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5925] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH) = -1 EIO (Input/output error) [pid 5925] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 272.087577][ T5908] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 272.093551][ T5908] RIP: 0033:0x7f4f6dd107f9 [ 272.098014][ T5908] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 272.117773][ T5908] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 272.126255][ T5908] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 272.134285][ T5908] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [ 272.142317][ T5908] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 272.150350][ T5908] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 272.158377][ T5908] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 272.166409][ T5908] [pid 5925] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5908] <... openat resumed>) = -1 EIO (Input/output error) [pid 5915] <... ioctl resumed>) = 0 [pid 5908] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5906] close(3 [pid 5908] <... futex resumed>) = 0 [pid 5906] <... close resumed>) = 0 [pid 5915] close(4 [pid 5908] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5906] close(4 [pid 5915] <... close resumed>) = 0 [pid 5906] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5915] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5906] close(5 [pid 5915] <... futex resumed>) = 1 [pid 5906] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5915] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5906] close(6) = -1 EBADF (Bad file descriptor) [pid 5906] close(7) = -1 EBADF (Bad file descriptor) [pid 5906] close(8) = -1 EBADF (Bad file descriptor) [pid 5906] close(9) = -1 EBADF (Bad file descriptor) [pid 5906] close(10) = -1 EBADF (Bad file descriptor) [pid 5906] close(11) = -1 EBADF (Bad file descriptor) [pid 5906] close(12) = -1 EBADF (Bad file descriptor) [pid 5906] close(13) = -1 EBADF (Bad file descriptor) [pid 5911] <... futex resumed>) = 0 [ 272.185957][ T5916] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 272.215960][ T5916] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 5906] close(14) = -1 EBADF (Bad file descriptor) [pid 5906] close(15) = -1 EBADF (Bad file descriptor) [pid 5906] close(16) = -1 EBADF (Bad file descriptor) [pid 5906] close(17) = -1 EBADF (Bad file descriptor) [pid 5906] close(18) = -1 EBADF (Bad file descriptor) [pid 5906] close(19) = -1 EBADF (Bad file descriptor) [pid 5906] close(20) = -1 EBADF (Bad file descriptor) [pid 5906] close(21) = -1 EBADF (Bad file descriptor) [pid 5911] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5906] close(22 [pid 5915] <... futex resumed>) = 0 [pid 5911] <... futex resumed>) = 1 [pid 5906] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5915] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5911] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5906] close(23 [pid 5916] <... mount resumed>) = -1 EEXIST (File exists) [pid 5915] <... openat resumed>) = 3 [pid 5912] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5910] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5906] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5915] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5906] close(24 [pid 5915] <... futex resumed>) = 1 [pid 5906] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5915] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5906] close(25 [pid 5916] ioctl(4, LOOP_CLR_FD [pid 5912] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5911] <... futex resumed>) = 0 [pid 5906] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5912] <... futex resumed>) = 0 [pid 5911] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5906] close(26 [pid 5915] <... futex resumed>) = 0 [pid 5912] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5911] <... futex resumed>) = 1 [pid 5906] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5915] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5912] <... mmap resumed>) = 0x7f4f6607f000 [pid 5911] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5906] close(27 [pid 5915] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5912] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5906] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5915] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5912] <... mprotect resumed>) = 0 [pid 5906] close(28 [pid 5915] <... futex resumed>) = 1 [pid 5912] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5911] <... futex resumed>) = 0 [pid 5906] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5915] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5912] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5911] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5910] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5906] close(29 [pid 5915] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5912] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5911] <... futex resumed>) = 0 [pid 5910] <... futex resumed>) = 0 [pid 5906] <... close resumed>) = -1 EBADF (Bad file descriptor) ./strace-static-x86_64: Process 5928 attached [pid 5915] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATHwrite to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5911] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5910] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5906] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5928] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5915] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5912] <... clone3 resumed> => {parent_tid=[103]}, 88) = 103 [pid 5906] <... write resumed>) = 156 [pid 5928] <... rseq resumed>) = 0 [pid 5915] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5912] rt_sigprocmask(SIG_SETMASK, [], [pid 5910] <... mmap resumed>) = 0x7f4f6607f000 [pid 5906] exit_group(0 [pid 5928] set_robust_list(0x7f4f6609f9a0, 24 [pid 5925] <... futex resumed>) = ? [pid 5924] <... futex resumed>) = ? [pid 5915] <... futex resumed>) = 1 [pid 5912] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5911] <... futex resumed>) = 0 [pid 5910] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5908] <... futex resumed>) = ? [pid 5906] <... exit_group resumed>) = ? [pid 5928] <... set_robust_list resumed>) = 0 [pid 5925] +++ exited with 0 +++ [pid 5924] +++ exited with 0 +++ [pid 5915] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5913] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5912] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5911] close(3 [pid 5908] +++ exited with 0 +++ [pid 5906] +++ exited with 0 +++ [pid 5928] rt_sigprocmask(SIG_SETMASK, [], [pid 5913] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5912] <... futex resumed>) = 0 [pid 5911] <... close resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=93, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=69 /* 0.69 s */} --- [pid 5928] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5913] <... futex resumed>) = 0 [pid 5912] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5911] close(4 [pid 5910] <... mprotect resumed>) = 0 [pid 5928] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5913] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5928] <... openat resumed>) = 3 [pid 5913] <... mmap resumed>) = 0x7f4f6607f000 [pid 5911] close(5 [pid 5030] umount2("./33", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5928] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5913] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5910] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5928] <... futex resumed>) = 1 [pid 5913] <... mprotect resumed>) = 0 [pid 5912] <... futex resumed>) = 0 [pid 5911] close(6 [pid 5030] openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5928] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5913] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5912] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5910] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5928] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5913] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5912] <... futex resumed>) = 0 [pid 5911] close(7 [pid 5030] newfstatat(3, "", [pid 5928] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5913] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5912] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 ./strace-static-x86_64: Process 5929 attached [pid 5928] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5911] close(8 [pid 5910] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5030] getdents64(3, [pid 5929] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5913] <... clone3 resumed> => {parent_tid=[102]}, 88) = 102 [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5929] <... rseq resumed>) = 0 [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] umount2("./33/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5929] set_robust_list(0x7f4f6609f9a0, 24 [pid 5928] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5913] rt_sigprocmask(SIG_SETMASK, [], [pid 5911] close(9 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5929] <... set_robust_list resumed>) = 0 [pid 5928] <... futex resumed>) = 1 [pid 5913] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5912] <... futex resumed>) = 0 [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] newfstatat(AT_FDCWD, "./33/cgroup.cpu", [pid 5929] rt_sigprocmask(SIG_SETMASK, [], [pid 5913] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5911] close(10 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5929] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5928] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5913] <... futex resumed>) = 0 [pid 5912] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] unlink("./33/cgroup.cpu" [pid 5929] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5928] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5913] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5912] <... futex resumed>) = 0 [pid 5911] close(11 [pid 5030] <... unlink resumed>) = 0 [pid 5929] <... openat resumed>) = 3 [pid 5928] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5912] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] umount2("./33/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5929] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5928] <... futex resumed>) = 0 [pid 5912] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5911] close(12 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5929] <... futex resumed>) = 1 [pid 5928] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5913] <... futex resumed>) = 0 [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] newfstatat(AT_FDCWD, "./33/binderfs", [pid 5929] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5913] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5911] close(13 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5929] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5913] <... futex resumed>) = 0 [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] unlink("./33/binderfs" [pid 5929] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5913] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5911] close(14 [pid 5030] <... unlink resumed>) = 0 [pid 5929] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5929] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5911] close(15./strace-static-x86_64: Process 5930 attached [pid 5929] <... futex resumed>) = 1 [pid 5913] <... futex resumed>) = 0 [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5910] <... clone3 resumed> => {parent_tid=[105]}, 88) = 105 [pid 5930] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5929] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5913] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5911] close(16 [pid 5910] rt_sigprocmask(SIG_SETMASK, [], [pid 5929] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5913] <... futex resumed>) = 0 [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5929] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5913] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5911] close(17 [pid 5929] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5930] <... rseq resumed>) = 0 [pid 5929] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5911] close(18 [pid 5910] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5929] <... futex resumed>) = 1 [pid 5913] <... futex resumed>) = 0 [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5929] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5911] close(19 [pid 5930] set_robust_list(0x7f4f6609f9a0, 24 [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5910] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5930] <... set_robust_list resumed>) = 0 [pid 5911] close(20 [pid 5930] rt_sigprocmask(SIG_SETMASK, [], [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5910] <... futex resumed>) = 0 [pid 5930] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5911] close(21 [pid 5930] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5910] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5911] close(22) = -1 EBADF (Bad file descriptor) [pid 5911] close(23) = -1 EBADF (Bad file descriptor) [pid 5911] close(24) = -1 EBADF (Bad file descriptor) [pid 5930] <... openat resumed>) = 3 [pid 5911] close(25 [pid 5930] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5930] <... futex resumed>) = 1 [pid 5911] close(26 [pid 5910] <... futex resumed>) = 0 [pid 5930] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5910] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5930] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5911] close(27 [pid 5910] <... futex resumed>) = 0 [pid 5930] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5911] close(28 [pid 5930] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5910] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5930] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5911] close(29 [pid 5910] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5930] <... futex resumed>) = 0 [pid 5911] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5930] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATHwrite to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5911] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5910] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5930] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5911] <... write resumed>) = 156 [pid 5930] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5911] exit_group(0 [pid 5910] <... futex resumed>) = 0 [pid 5930] <... futex resumed>) = 0 [pid 5915] <... futex resumed>) = ? [pid 5911] <... exit_group resumed>) = ? [pid 5910] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5915] +++ exited with 0 +++ [pid 5911] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=106, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=64 /* 0.64 s */} --- [pid 5029] umount2("./33", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5029] umount2("./33/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5930] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5910] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5029] newfstatat(AT_FDCWD, "./33/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./33/cgroup.cpu") = 0 [pid 5029] umount2("./33/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./33/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./33/binderfs") = 0 [pid 5029] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./33/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./33/file0") = 0 [pid 5029] umount2("./33/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./33/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./33/cgroup") = 0 [pid 5029] umount2("./33/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./33/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./33/cgroup.net") = 0 [pid 5914] <... ioctl resumed>) = 0 [pid 5029] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 5914] close(4 [pid 5029] <... close resumed>) = 0 [pid 5914] <... close resumed>) = 0 [pid 5914] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5914] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5029] rmdir("./33" [pid 5910] close(3) = 0 [pid 5910] close(4) = -1 EBADF (Bad file descriptor) [pid 5910] close(5) = -1 EBADF (Bad file descriptor) [pid 5910] close(6) = -1 EBADF (Bad file descriptor) [pid 5910] close(7) = -1 EBADF (Bad file descriptor) [pid 5910] close(8) = -1 EBADF (Bad file descriptor) [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./34", 0777 [pid 5910] close(9) = -1 EBADF (Bad file descriptor) [pid 5910] close(10) = -1 EBADF (Bad file descriptor) [pid 5910] close(11) = -1 EBADF (Bad file descriptor) [pid 5910] close(12) = -1 EBADF (Bad file descriptor) [pid 5910] close(13) = -1 EBADF (Bad file descriptor) [pid 5910] close(14) = -1 EBADF (Bad file descriptor) [pid 5910] close(15) = -1 EBADF (Bad file descriptor) [pid 5910] close(16) = -1 EBADF (Bad file descriptor) [pid 5910] close(17 [pid 5029] <... mkdir resumed>) = 0 [pid 5910] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5910] close(18) = -1 EBADF (Bad file descriptor) [pid 5910] close(19) = -1 EBADF (Bad file descriptor) [pid 5910] close(20) = -1 EBADF (Bad file descriptor) [pid 5910] close(21) = -1 EBADF (Bad file descriptor) [pid 5910] close(22) = -1 EBADF (Bad file descriptor) [pid 5910] close(23) = -1 EBADF (Bad file descriptor) [pid 5910] close(24) = -1 EBADF (Bad file descriptor) [pid 5910] close(25) = -1 EBADF (Bad file descriptor) [pid 5910] close(26) = -1 EBADF (Bad file descriptor) [pid 5910] close(27) = -1 EBADF (Bad file descriptor) [pid 5910] close(28) = -1 EBADF (Bad file descriptor) [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5910] close(29) = -1 EBADF (Bad file descriptor) [pid 5910] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5029] <... openat resumed>) = 3 [pid 5910] <... write resumed>) = 156 [pid 5910] exit_group(0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5930] <... futex resumed>) = ? [pid 5914] <... futex resumed>) = ? [pid 5910] <... exit_group resumed>) = ? [pid 5930] +++ exited with 0 +++ [pid 5914] +++ exited with 0 +++ [pid 5910] +++ exited with 0 +++ [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=103, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=57 /* 0.57 s */} --- [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5034] umount2("./34", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5931 attached [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 108 [pid 5931] set_robust_list(0x55555654e6a0, 24 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5931] <... set_robust_list resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5931] chdir("./34" [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5931] <... chdir resumed>) = 0 [pid 5034] getdents64(3, [pid 5931] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5931] <... prctl resumed>) = 0 [pid 5034] umount2("./34/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5931] setpgid(0, 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5931] <... setpgid resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./34/cgroup.cpu", [pid 5931] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5931] <... symlink resumed>) = 0 [pid 5931] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu" [pid 5034] unlink("./34/cgroup.cpu") = 0 [pid 5931] <... symlink resumed>) = 0 [pid 5034] umount2("./34/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5931] symlink("/syzcgroup/net/syz0", "./cgroup.net" [pid 5034] newfstatat(AT_FDCWD, "./34/binderfs", [pid 5931] <... symlink resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5931] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] unlink("./34/binderfs" [pid 5931] <... openat resumed>) = 3 [pid 5034] <... unlink resumed>) = 0 [pid 5917] <... ioctl resumed>) = 0 [pid 5034] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5931] write(3, "1000", 4 [pid 5034] newfstatat(AT_FDCWD, "./34/file0", [pid 5931] <... write resumed>) = 4 [pid 5917] close(4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5931] close(3 [pid 5034] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5931] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5931] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... openat resumed>) = 4 [pid 5931] <... symlink resumed>) = 0 [pid 5034] newfstatat(4, "", [pid 5931] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5931] <... futex resumed>) = 0 [pid 5917] <... close resumed>) = 0 [pid 5931] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5917] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] getdents64(4, [pid 5913] close(3) = 0 [pid 5913] close(4) = -1 EBADF (Bad file descriptor) [pid 5913] close(5) = -1 EBADF (Bad file descriptor) [pid 5913] close(6) = -1 EBADF (Bad file descriptor) [pid 5913] close(7) = -1 EBADF (Bad file descriptor) [pid 5913] close(8) = -1 EBADF (Bad file descriptor) [pid 5931] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5917] <... futex resumed>) = 0 [pid 5913] close(9 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5913] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5913] close(10) = -1 EBADF (Bad file descriptor) [pid 5913] close(11) = -1 EBADF (Bad file descriptor) [pid 5913] close(12) = -1 EBADF (Bad file descriptor) [pid 5913] close(13) = -1 EBADF (Bad file descriptor) [pid 5913] close(14) = -1 EBADF (Bad file descriptor) [pid 5913] close(15) = -1 EBADF (Bad file descriptor) [pid 5931] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5917] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5913] close(16 [pid 5034] getdents64(4, [pid 5931] <... mprotect resumed>) = 0 [pid 5913] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5931] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5913] close(17 [pid 5034] close(4 [pid 5913] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5913] close(18) = -1 EBADF (Bad file descriptor) [pid 5913] close(19) = -1 EBADF (Bad file descriptor) [pid 5913] close(20) = -1 EBADF (Bad file descriptor) [pid 5913] close(21) = -1 EBADF (Bad file descriptor) [pid 5913] close(22) = -1 EBADF (Bad file descriptor) [pid 5913] close(23) = -1 EBADF (Bad file descriptor) [pid 5913] close(24) = -1 EBADF (Bad file descriptor) [pid 5913] close(25) = -1 EBADF (Bad file descriptor) [pid 5913] close(26) = -1 EBADF (Bad file descriptor) [pid 5913] close(27) = -1 EBADF (Bad file descriptor) [pid 5913] close(28) = -1 EBADF (Bad file descriptor) [pid 5913] close(29) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5913] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5913] exit_group(0 [pid 5929] <... futex resumed>) = ? [pid 5917] <... futex resumed>) = ? [pid 5931] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5913] <... exit_group resumed>) = ? [pid 5929] +++ exited with 0 +++ [pid 5034] <... close resumed>) = 0 [pid 5931] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5917] +++ exited with 0 +++ [pid 5913] +++ exited with 0 +++ [pid 5034] rmdir("./34/file0"./strace-static-x86_64: Process 5932 attached [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=100, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=61 /* 0.61 s */} --- [pid 5032] umount2("./34", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5932] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5931] <... clone3 resumed> => {parent_tid=[109]}, 88) = 109 [pid 5034] umount2("./34/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5932] <... rseq resumed>) = 0 [pid 5931] rt_sigprocmask(SIG_SETMASK, [], [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... openat resumed>) = 3 [pid 5932] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5931] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5034] newfstatat(AT_FDCWD, "./34/cgroup", [pid 5032] newfstatat(3, "", [pid 5932] <... set_robust_list resumed>) = 0 [pid 5931] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5932] rt_sigprocmask(SIG_SETMASK, [], [pid 5931] <... futex resumed>) = 0 [pid 5034] unlink("./34/cgroup" [pid 5032] getdents64(3, [pid 5932] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5931] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5034] <... unlink resumed>) = 0 [pid 5032] umount2("./34/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./34/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./34/cgroup.cpu" [pid 5932] memfd_create("syzkaller", 0 [pid 5034] umount2("./34/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... unlink resumed>) = 0 [pid 5932] <... memfd_create resumed>) = 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./34/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./34/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./34/binderfs" [pid 5932] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... unlink resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./34/cgroup.net", [pid 5032] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./34/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5932] <... mmap resumed>) = 0x7f4f650a0000 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5032] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./34/file0") = 0 [pid 5034] unlink("./34/cgroup.net" [pid 5032] umount2("./34/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./34/cgroup", [pid 5034] <... unlink resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./34/cgroup" [pid 5034] getdents64(3, [pid 5032] <... unlink resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5032] umount2("./34/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5916] <... ioctl resumed>) = 0 [pid 5034] close(3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... close resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./34/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] rmdir("./34" [pid 5032] unlink("./34/cgroup.net") = 0 [pid 5032] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5032] rmdir("./34" [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5032] mkdir("./35", 0777 [pid 5034] mkdir("./35", 0777 [pid 5032] <... mkdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3 [pid 5916] close(4 [pid 5034] <... mkdir resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5933 attached [pid 5916] <... close resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 103 [pid 5933] set_robust_list(0x55555654e6a0, 24 [pid 5916] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5933] <... set_robust_list resumed>) = 0 [pid 5933] chdir("./35" [pid 5916] <... futex resumed>) = 0 [pid 5912] close(3 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5934 attached [pid 5934] set_robust_list(0x55555654e6a0, 24) = 0 [pid 5934] chdir("./35") = 0 [pid 5934] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5933] <... chdir resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 106 [pid 5912] <... close resumed>) = 0 [pid 5916] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5934] setpgid(0, 0 [pid 5933] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5912] close(4 [pid 5934] <... setpgid resumed>) = 0 [pid 5933] <... prctl resumed>) = 0 [pid 5912] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] symlink("/syzcgroup/unified/syz5", "./cgroup" [pid 5933] setpgid(0, 0 [pid 5934] <... symlink resumed>) = 0 [pid 5933] <... setpgid resumed>) = 0 [pid 5912] close(5 [pid 5934] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu") = 0 [pid 5933] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 5912] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 5933] <... symlink resumed>) = 0 [pid 5927] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5912] close(6 [pid 5934] <... symlink resumed>) = 0 [pid 5933] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 5912] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5934] write(3, "1000", 4 [pid 5933] <... symlink resumed>) = 0 [pid 5912] close(7 [pid 5934] <... write resumed>) = 4 [pid 5933] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 5912] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] close(3) = 0 [pid 5934] symlink("/dev/binderfs", "./binderfs" [pid 5933] <... symlink resumed>) = 0 [pid 5912] close(8 [pid 5033] kill(-101, SIGKILL [pid 5934] <... symlink resumed>) = 0 [pid 5933] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5928] <... futex resumed>) = ? [pid 5916] <... futex resumed>) = ? [pid 5912] <... close resumed>) = ? [pid 5033] <... kill resumed>) = 0 [pid 5934] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5933] <... openat resumed>) = 3 [pid 5928] +++ killed by SIGKILL +++ [pid 5033] kill(101, SIGKILL [pid 5934] <... futex resumed>) = 0 [pid 5033] <... kill resumed>) = 0 [pid 5934] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5934] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5934] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5916] +++ killed by SIGKILL +++ [pid 5912] +++ killed by SIGKILL +++ [pid 5934] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5933] write(3, "1000", 4 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=101, si_uid=0, si_status=SIGKILL, si_utime=5 /* 0.05 s */, si_stime=63 /* 0.63 s */} --- [pid 5934] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5933] <... write resumed>) = 4 [pid 5033] restart_syscall(<... resuming interrupted kill ...>./strace-static-x86_64: Process 5935 attached ) = 0 [pid 5935] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5934] <... clone3 resumed> => {parent_tid=[107]}, 88) = 107 [pid 5933] close(3 [pid 5935] <... rseq resumed>) = 0 [pid 5934] rt_sigprocmask(SIG_SETMASK, [], [pid 5933] <... close resumed>) = 0 [pid 5935] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5934] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5933] symlink("/dev/binderfs", "./binderfs" [pid 5033] umount2("./35", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5935] <... set_robust_list resumed>) = 0 [pid 5934] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5935] rt_sigprocmask(SIG_SETMASK, [], [pid 5934] <... futex resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5935] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5934] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5933] <... symlink resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5935] memfd_create("syzkaller", 0 [pid 5033] newfstatat(3, "", [pid 5935] <... memfd_create resumed>) = 3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5935] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] getdents64(3, [pid 5935] <... mmap resumed>) = 0x7f4f650a0000 [pid 5933] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5033] umount2("./35/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5933] <... futex resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./35/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./35/cgroup.cpu" [pid 5933] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5033] <... unlink resumed>) = 0 [pid 5033] umount2("./35/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./35/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./35/binderfs") = 0 [pid 5033] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./35/file0", [pid 5933] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5933] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5933] <... mprotect resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 5933] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5933] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5033] getdents64(4, [pid 5933] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, ./strace-static-x86_64: Process 5936 attached 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5936] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5933] <... clone3 resumed> => {parent_tid=[104]}, 88) = 104 [pid 5033] close(4 [pid 5936] <... rseq resumed>) = 0 [pid 5933] rt_sigprocmask(SIG_SETMASK, [], [pid 5033] <... close resumed>) = 0 [pid 5936] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5933] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5033] rmdir("./35/file0" [pid 5936] <... set_robust_list resumed>) = 0 [pid 5933] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] <... rmdir resumed>) = 0 [pid 5936] rt_sigprocmask(SIG_SETMASK, [], [pid 5933] <... futex resumed>) = 0 [pid 5033] umount2("./35/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5936] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5933] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./35/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./35/cgroup" [pid 5936] memfd_create("syzkaller", 0 [pid 5033] <... unlink resumed>) = 0 [pid 5033] umount2("./35/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./35/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./35/cgroup.net") = 0 [pid 5033] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./35" [pid 5936] <... memfd_create resumed>) = 3 [pid 5033] <... rmdir resumed>) = 0 [pid 5936] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] mkdir("./36", 0777 [pid 5936] <... mmap resumed>) = 0x7f4f650a0000 [pid 5033] <... mkdir resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5937 attached [pid 5937] set_robust_list(0x55555654e6a0, 24 [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 104 [pid 5937] <... set_robust_list resumed>) = 0 [pid 5937] chdir("./36") = 0 [pid 5937] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5937] setpgid(0, 0) = 0 [pid 5937] symlink("/syzcgroup/unified/syz2", "./cgroup") = 0 [pid 5937] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu") = 0 [pid 5937] symlink("/syzcgroup/net/syz2", "./cgroup.net") = 0 [pid 5937] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5937] write(3, "1000", 4) = 4 [pid 5937] close(3) = 0 [pid 5937] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5937] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] <... umount2 resumed>) = 0 [pid 5937] <... futex resumed>) = 0 [pid 5937] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5937] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5030] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5937] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5937] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 5938 attached [pid 5030] newfstatat(AT_FDCWD, "./33/file0", [pid 5938] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5937] <... clone3 resumed> => {parent_tid=[105]}, 88) = 105 [pid 5937] rt_sigprocmask(SIG_SETMASK, [], [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5938] <... rseq resumed>) = 0 [pid 5937] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5938] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5937] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5938] <... set_robust_list resumed>) = 0 [pid 5937] <... futex resumed>) = 0 [pid 5937] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5938] rt_sigprocmask(SIG_SETMASK, [], [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5938] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5030] openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5938] memfd_create("syzkaller", 0 [pid 5030] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", [pid 5938] <... memfd_create resumed>) = 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./33/file0") = 0 [pid 5030] umount2("./33/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5938] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./33/cgroup", [pid 5938] <... mmap resumed>) = 0x7f4f650a0000 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./33/cgroup") = 0 [pid 5030] umount2("./33/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./33/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./33/cgroup.net") = 0 [pid 5030] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./33") = 0 [pid 5030] mkdir("./34", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5939 attached , child_tidptr=0x55555654e690) = 97 [pid 5939] set_robust_list(0x55555654e6a0, 24) = 0 [pid 5939] chdir("./34") = 0 [pid 5939] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5939] setpgid(0, 0) = 0 [pid 5939] symlink("/syzcgroup/unified/syz3", "./cgroup") = 0 [pid 5939] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu") = 0 [pid 5939] symlink("/syzcgroup/net/syz3", "./cgroup.net") = 0 [pid 5939] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5939] write(3, "1000", 4) = 4 [pid 5939] close(3) = 0 [pid 5939] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5939] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5939] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5939] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5939] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5939] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5940 attached [pid 5940] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5939] <... clone3 resumed> => {parent_tid=[98]}, 88) = 98 [pid 5940] <... rseq resumed>) = 0 [pid 5939] rt_sigprocmask(SIG_SETMASK, [], [pid 5940] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5939] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5940] <... set_robust_list resumed>) = 0 [pid 5939] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5940] rt_sigprocmask(SIG_SETMASK, [], [pid 5939] <... futex resumed>) = 0 [pid 5940] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5939] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5940] memfd_create("syzkaller", 0) = 3 [pid 5940] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5932] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5936] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5927] <... write resumed>) = 16777216 [pid 5927] munmap(0x7f4f650a0000, 16777216 [pid 5935] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5938] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5927] <... munmap resumed>) = 0 [pid 5927] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5927] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5927] close(3) = 0 [pid 5927] mkdir("./file0", 0777) = 0 [ 274.352884][ T5927] loop4: detected capacity change from 0 to 32768 [pid 5927] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [ 274.436106][ T5927] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 274.444612][ T5927] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [pid 5940] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5932] <... write resumed>) = 16777216 [ 274.572991][ T5927] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [pid 5932] munmap(0x7f4f650a0000, 16777216) = 0 [pid 5932] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [ 274.636608][ T917] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 274.643456][ T917] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [pid 5932] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5932] close(3) = 0 [pid 5932] mkdir("./file0", 0777) = 0 [ 274.703255][ T5932] loop0: detected capacity change from 0 to 32768 [ 274.777200][ T5932] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 274.784795][ T5932] CPU: 1 PID: 5932 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 274.795273][ T5932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 274.805390][ T5932] Call Trace: [ 274.808738][ T5932] [ 274.811719][ T5932] dump_stack_lvl+0x136/0x150 [ 274.816477][ T5932] sysfs_warn_dup+0x80/0xa0 [ 274.821061][ T5932] sysfs_create_dir_ns+0x237/0x290 [ 274.826243][ T5932] ? sysfs_create_mount_point+0xb0/0xb0 [ 274.831947][ T5932] ? spin_bug+0x1c0/0x1c0 [ 274.836339][ T5932] ? do_raw_spin_unlock+0x175/0x230 [ 274.841606][ T5932] kobject_add_internal+0x2c9/0x9c0 [ 274.846864][ T5932] ? kfree+0x11/0x150 [ 274.850899][ T5932] kobject_init_and_add+0x101/0x170 [ 274.852172][ T917] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 208ms [ 274.856135][ T5932] ? kobject_create_and_add+0xf0/0xf0 [ 274.856170][ T5932] ? lockdep_init_map_type+0x21e/0x810 [ 274.856208][ T5932] ? lockdep_hardirqs_on+0x7d/0x100 [ 274.879762][ T5932] ? lockdep_init_map_type+0x21e/0x810 [ 274.885443][ T5932] gfs2_sys_fs_add+0x1d5/0x450 [ 274.890236][ T5932] ? recover_store+0x170/0x170 [ 274.895033][ T5932] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 274.900806][ T5932] gfs2_fill_super+0x1312/0x2aa0 [ 274.905790][ T5932] ? gfs2_reconfigure+0xf90/0xf90 [ 274.910865][ T5932] ? snprintf+0xbf/0x100 [ 274.915149][ T5932] ? vsprintf+0x30/0x30 [ 274.919341][ T5932] ? wait_for_completion_io_timeout+0x20/0x20 [ 274.925447][ T5932] ? set_blocksize+0x2d8/0x370 [ 274.930241][ T5932] get_tree_bdev+0x43e/0x7d0 [ 274.934865][ T5932] ? gfs2_reconfigure+0xf90/0xf90 [ 274.939920][ T5932] gfs2_get_tree+0x4e/0x270 [ 274.944450][ T5932] vfs_get_tree+0x8d/0x350 [ 274.949074][ T5932] path_mount+0x136e/0x1e70 [ 274.953625][ T5932] ? putname+0x102/0x140 [ 274.957917][ T5932] ? lockdep_hardirqs_on+0x7d/0x100 [ 274.963161][ T5932] ? finish_automount+0xa30/0xa30 [ 274.968228][ T5932] ? putname+0x102/0x140 [ 274.972503][ T5932] __x64_sys_mount+0x283/0x300 [ 274.977306][ T5932] ? copy_mnt_ns+0xb30/0xb30 [ 274.981931][ T5932] ? lockdep_hardirqs_on+0x7d/0x100 [ 274.987190][ T5932] ? _raw_spin_unlock_irq+0x2e/0x50 [ 274.992538][ T5932] ? ptrace_notify+0xfe/0x140 [ 274.997260][ T5932] do_syscall_64+0x39/0xb0 [ 275.001710][ T5932] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 275.007657][ T5932] RIP: 0033:0x7f4f6dd11c5a [ 275.012115][ T5932] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 275.031768][ T5932] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 275.040245][ T5932] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 275.048260][ T5932] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 275.056283][ T5932] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 275.064286][ T5932] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [pid 5932] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5927] <... mount resumed>) = 0 [pid 5927] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5927] chdir("./file0") = 0 [pid 5927] ioctl(4, LOOP_CLR_FD) = 0 [pid 5927] close(4) = 0 [ 275.072283][ T5932] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 275.080284][ T5932] [ 275.088129][ T917] gfs2: fsid=syz:syz.0: jid=0: Done [ 275.098526][ T5927] gfs2: fsid=syz:syz.0: first mount done, others may mount [pid 5927] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5926] <... futex resumed>) = 0 [pid 5927] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5926] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5927] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5926] <... futex resumed>) = 0 [pid 5927] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5926] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [ 275.145925][ T5932] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 275.166938][ T5927] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 275.175358][ T5927] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 275.175358][ T5927] inode = 12 2341 [ 275.175358][ T5927] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [pid 5926] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5926] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5926] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5926] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5926] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[102]}, 88) = 102 [pid 5926] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5926] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 275.249565][ T5932] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 5926] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5935] <... write resumed>) = 16777216 [pid 5935] munmap(0x7f4f650a0000, 16777216 [pid 5926] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5926] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5926] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6605e000 [pid 5926] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5926] rt_sigprocmask(SIG_BLOCK, ~[], ./strace-static-x86_64: Process 5943 attached [], 8) = 0 [pid 5926] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0}./strace-static-x86_64: Process 5944 attached [pid 5944] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 5926] <... clone3 resumed> => {parent_tid=[103]}, 88) = 103 [pid 5944] <... rseq resumed>) = 0 [pid 5926] rt_sigprocmask(SIG_SETMASK, [], [pid 5944] set_robust_list(0x7f4f6607e9a0, 24 [pid 5926] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5944] <... set_robust_list resumed>) = 0 [pid 5926] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 5944] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5926] <... futex resumed>) = 0 [ 275.296954][ T5927] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 275.335926][ T5927] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5927 [syz-executor676] __gfs2_lookup+0x83/0x280 [pid 5944] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5926] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5943] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5936] <... write resumed>) = 16777216 [pid 5932] <... mount resumed>) = -1 EEXIST (File exists) [pid 5932] ioctl(4, LOOP_CLR_FD [ 275.346591][ T5944] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 275.355003][ T5944] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 275.355003][ T5944] inode = 12 2341 [ 275.355003][ T5944] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 275.374267][ T5927] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5944 [syz-executor676] __gfs2_lookup+0x83/0x280 [pid 5936] munmap(0x7f4f650a0000, 16777216 [pid 5943] <... rseq resumed>) = 0 [pid 5943] set_robust_list(0x7f4f6609f9a0, 24 [pid 5935] <... munmap resumed>) = 0 [pid 5935] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5935] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5935] close(3) = 0 [pid 5935] mkdir("./file0", 0777) = 0 [ 275.450975][ T5927] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 275.475493][ T5935] loop5: detected capacity change from 0 to 32768 [ 275.497730][ T5944] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:4 m:20 p:1 [ 275.508404][ T5935] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 275.517218][ T5935] CPU: 1 PID: 5935 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 275.527792][ T5935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 275.537896][ T5935] Call Trace: [ 275.541225][ T5935] [ 275.544201][ T5935] dump_stack_lvl+0x136/0x150 [ 275.549035][ T5935] sysfs_warn_dup+0x80/0xa0 [ 275.553592][ T5935] sysfs_create_dir_ns+0x237/0x290 [ 275.558759][ T5935] ? sysfs_create_mount_point+0xb0/0xb0 [ 275.564360][ T5935] ? spin_bug+0x1c0/0x1c0 [ 275.568838][ T5935] ? do_raw_spin_unlock+0x175/0x230 [ 275.574101][ T5935] kobject_add_internal+0x2c9/0x9c0 [ 275.579355][ T5935] ? kfree+0x11/0x150 [ 275.583394][ T5935] kobject_init_and_add+0x101/0x170 [ 275.585356][ T5944] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5927 [syz-executor676] __gfs2_lookup+0x83/0x280 [pid 5935] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5938] <... write resumed>) = 16777216 [pid 5938] munmap(0x7f4f650a0000, 16777216 [pid 5943] <... set_robust_list resumed>) = 0 [pid 5943] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5943] ioctl(0, VFAT_IOCTL_READDIR_SHORT, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 5943] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 275.588626][ T5935] ? kobject_create_and_add+0xf0/0xf0 [ 275.588666][ T5935] ? lockdep_init_map_type+0x21e/0x810 [ 275.588707][ T5935] ? lockdep_hardirqs_on+0x7d/0x100 [ 275.588747][ T5935] ? lockdep_init_map_type+0x21e/0x810 [ 275.620415][ T5935] gfs2_sys_fs_add+0x1d5/0x450 [ 275.625235][ T5935] ? recover_store+0x170/0x170 [ 275.630055][ T5935] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 275.635856][ T5935] gfs2_fill_super+0x1312/0x2aa0 [ 275.640865][ T5935] ? gfs2_reconfigure+0xf90/0xf90 [ 275.645950][ T5935] ? snprintf+0xbf/0x100 [pid 5943] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5940] <... write resumed>) = 16777216 [ 275.650251][ T5935] ? vsprintf+0x30/0x30 [ 275.654471][ T5935] ? wait_for_completion_io_timeout+0x20/0x20 [ 275.660604][ T5935] ? set_blocksize+0x2d8/0x370 [ 275.665432][ T5935] get_tree_bdev+0x43e/0x7d0 [ 275.670108][ T5935] ? gfs2_reconfigure+0xf90/0xf90 [ 275.675206][ T5935] gfs2_get_tree+0x4e/0x270 [ 275.679783][ T5935] vfs_get_tree+0x8d/0x350 [ 275.684266][ T5935] path_mount+0x136e/0x1e70 [ 275.688839][ T5935] ? putname+0x102/0x140 [ 275.693135][ T5935] ? lockdep_hardirqs_on+0x7d/0x100 [pid 5940] munmap(0x7f4f650a0000, 16777216 [pid 5936] <... munmap resumed>) = 0 [pid 5936] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [ 275.698396][ T5935] ? finish_automount+0xa30/0xa30 [ 275.703492][ T5935] ? putname+0x102/0x140 [ 275.707796][ T5935] __x64_sys_mount+0x283/0x300 [ 275.712634][ T5935] ? copy_mnt_ns+0xb30/0xb30 [ 275.717286][ T5935] ? lockdep_hardirqs_on+0x7d/0x100 [ 275.720921][ T5927] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 275.722520][ T5935] ? _raw_spin_unlock_irq+0x2e/0x50 [ 275.735011][ T5935] ? ptrace_notify+0xfe/0x140 [ 275.739772][ T5935] do_syscall_64+0x39/0xb0 [ 275.744252][ T5935] entry_SYSCALL_64_after_hwframe+0x63/0xcd [pid 5936] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5926] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 275.747026][ T5936] loop1: detected capacity change from 0 to 32768 [ 275.750206][ T5935] RIP: 0033:0x7f4f6dd11c5a [ 275.750238][ T5935] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 275.750271][ T5935] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 275.784053][ T5944] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5944 [syz-executor676] __gfs2_lookup+0x83/0x280 [pid 5936] close(3) = 0 [ 275.789295][ T5935] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 275.789320][ T5935] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 275.789342][ T5935] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 275.789364][ T5935] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 275.789387][ T5935] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 275.789415][ T5935] [ 275.796064][ T5927] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [pid 5936] mkdir("./file0", 0777) = 0 [ 275.853727][ T5944] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 275.863617][ T5927] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 275.870738][ T5927] gfs2: fsid=syz:syz.0: File system withdrawn [ 275.878732][ T5936] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 275.886326][ T5927] CPU: 1 PID: 5927 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [pid 5936] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5938] <... munmap resumed>) = 0 [pid 5938] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [ 275.896796][ T5927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 275.907076][ T5927] Call Trace: [ 275.910391][ T5927] [ 275.913362][ T5927] dump_stack_lvl+0x136/0x150 [ 275.918114][ T5927] gfs2_withdraw+0xb33/0x1060 [ 275.922850][ T5927] ? gfs2_consist_inode_i+0x104/0x150 [ 275.928280][ T5927] gfs2_dirent_scan+0x32a/0x3d0 [ 275.933204][ T5927] ? gfs2_dirent_prev+0x210/0x210 [ 275.938300][ T5927] ? gfs2_dirent_prev+0x210/0x210 [ 275.943391][ T5927] gfs2_dirent_search+0x47d/0x580 [ 275.948492][ T5927] ? get_first_leaf+0x190/0x190 [pid 5938] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5938] close(3) = 0 [pid 5938] mkdir("./file0", 0777 [pid 5940] <... munmap resumed>) = 0 [pid 5938] <... mkdir resumed>) = 0 [ 275.953417][ T5927] ? gfs2_permission+0x256/0x3e0 [ 275.956478][ T5938] loop2: detected capacity change from 0 to 32768 [ 275.958389][ T5927] gfs2_dir_search+0x8d/0x2d0 [ 275.969548][ T5927] ? gfs2_dir_read+0x14e0/0x14e0 [ 275.974559][ T5927] gfs2_lookupi+0x481/0x640 [ 275.979124][ T5927] ? gfs2_lookup_by_inum+0x100/0x100 [ 275.984471][ T5927] ? __gfs2_lookup+0x83/0x280 [ 275.989207][ T5927] ? d_alloc_parallel+0x693/0x1530 [ 275.994383][ T5927] __gfs2_lookup+0x83/0x280 [ 275.998960][ T5927] ? gfs2_lookupi+0x640/0x640 [pid 5940] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5938] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5940] ioctl(4, LOOP_SET_FD, 3) = 0 [ 276.003697][ T5927] ? __d_lookup_rcu+0x4e0/0x4e0 [ 276.008660][ T5927] ? __d_lookup+0x289/0x4c0 [ 276.013222][ T5927] gfs2_atomic_open+0xde/0x250 [ 276.018044][ T5927] ? __gfs2_lookup+0x280/0x280 [ 276.022865][ T5927] lookup_open.isra.0+0xce2/0x1400 [ 276.028043][ T5927] ? link_path_walk.part.0+0xd60/0xd60 [ 276.033568][ T5927] ? lookup_fast+0x14e/0x520 [ 276.038216][ T5927] path_openat+0x969/0x2710 [ 276.042779][ T5927] ? path_lookupat+0x840/0x840 [ 276.046762][ T5940] loop3: detected capacity change from 0 to 32768 [ 276.047575][ T5927] ? find_held_lock+0x2d/0x110 [ 276.058817][ T5927] do_filp_open+0x1ba/0x410 [ 276.063384][ T5927] ? may_open_dev+0xf0/0xf0 [ 276.067950][ T5927] ? find_held_lock+0x2d/0x110 [ 276.072781][ T5927] ? do_raw_spin_lock+0x124/0x2b0 [ 276.077877][ T5927] ? spin_bug+0x1c0/0x1c0 [ 276.082270][ T5927] ? _raw_spin_unlock+0x28/0x40 [ 276.087189][ T5927] ? alloc_fd+0x2e4/0x750 [ 276.091595][ T5927] do_sys_openat2+0x160/0x1c0 [ 276.096349][ T5927] ? build_open_flags+0x720/0x720 [pid 5940] close(3) = 0 [pid 5940] mkdir("./file0", 0777) = 0 [pid 5940] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5932] <... ioctl resumed>) = 0 [ 276.101457][ T5927] ? ptrace_notify+0xfe/0x140 [ 276.106214][ T5927] ? lock_downgrade+0x690/0x690 [ 276.111143][ T5927] __x64_sys_openat+0x143/0x1f0 [ 276.116075][ T5927] ? __ia32_sys_open+0x1c0/0x1c0 [ 276.121082][ T5927] ? _raw_spin_unlock_irq+0x23/0x50 [ 276.126353][ T5927] ? lockdep_hardirqs_on+0x7d/0x100 [ 276.131613][ T5927] ? _raw_spin_unlock_irq+0x2e/0x50 [ 276.136911][ T5927] ? ptrace_notify+0xfe/0x140 [ 276.141667][ T5927] do_syscall_64+0x39/0xb0 [ 276.146225][ T5927] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 276.152195][ T5927] RIP: 0033:0x7f4f6dd107f9 [ 276.156654][ T5927] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 276.176318][ T5927] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 276.184799][ T5927] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 276.192828][ T5927] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [pid 5932] close(4) = 0 [pid 5932] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5932] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5931] <... futex resumed>) = 0 [pid 5931] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5932] <... futex resumed>) = 0 [pid 5931] <... futex resumed>) = 1 [pid 5932] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5931] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5932] <... openat resumed>) = 3 [pid 5932] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5931] <... futex resumed>) = 0 [pid 5932] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5931] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5932] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5931] <... futex resumed>) = 0 [pid 5932] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5931] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5932] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5932] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5931] <... futex resumed>) = 0 [pid 5932] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5931] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5932] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5931] <... futex resumed>) = 0 [pid 5932] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5931] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5932] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5932] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5931] <... futex resumed>) = 0 [pid 5932] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5931] close(3 [pid 5926] close(3 [pid 5931] <... close resumed>) = 0 [pid 5926] <... close resumed>) = 0 [pid 5931] close(4 [pid 5926] close(4 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [ 276.200863][ T5927] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 276.208896][ T5927] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 276.216930][ T5927] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 276.224958][ T5927] [pid 5931] close(5 [pid 5926] close(5 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(6 [pid 5926] close(6 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(7 [pid 5926] close(7 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(8 [pid 5926] close(8 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5927] <... openat resumed>) = -1 EIO (Input/output error) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(9 [pid 5927] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5926] close(9 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5927] <... futex resumed>) = 0 [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(10 [pid 5927] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5926] close(10 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(11 [pid 5926] close(11 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(12 [pid 5926] close(12 [ 276.255366][ T5936] CPU: 1 PID: 5936 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 276.265890][ T5936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 276.276003][ T5936] Call Trace: [ 276.279331][ T5936] [ 276.282310][ T5936] dump_stack_lvl+0x136/0x150 [ 276.287070][ T5936] sysfs_warn_dup+0x80/0xa0 [ 276.291699][ T5936] sysfs_create_dir_ns+0x237/0x290 [ 276.296887][ T5936] ? sysfs_create_mount_point+0xb0/0xb0 [ 276.302504][ T5936] ? spin_bug+0x1c0/0x1c0 [ 276.306914][ T5936] ? do_raw_spin_unlock+0x175/0x230 [ 276.312185][ T5936] kobject_add_internal+0x2c9/0x9c0 [ 276.317446][ T5936] ? kfree+0x11/0x150 [ 276.321490][ T5936] kobject_init_and_add+0x101/0x170 [ 276.326758][ T5936] ? kobject_create_and_add+0xf0/0xf0 [ 276.332199][ T5936] ? lockdep_init_map_type+0x21e/0x810 [ 276.337723][ T5936] ? lockdep_hardirqs_on+0x7d/0x100 [ 276.342988][ T5936] ? lockdep_init_map_type+0x21e/0x810 [ 276.351478][ T5936] gfs2_sys_fs_add+0x1d5/0x450 [ 276.355934][ T5935] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 276.356280][ T5936] ? recover_store+0x170/0x170 [ 276.375066][ T5936] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 276.380875][ T5936] gfs2_fill_super+0x1312/0x2aa0 [ 276.385974][ T5936] ? gfs2_reconfigure+0xf90/0xf90 [ 276.391157][ T5936] ? snprintf+0xbf/0x100 [ 276.395467][ T5936] ? vsprintf+0x30/0x30 [ 276.395654][ T5935] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 276.399663][ T5936] ? wait_for_completion_io_timeout+0x20/0x20 [ 276.399710][ T5936] ? set_blocksize+0x2d8/0x370 [ 276.399747][ T5936] get_tree_bdev+0x43e/0x7d0 [ 276.421788][ T5936] ? gfs2_reconfigure+0xf90/0xf90 [ 276.426894][ T5936] gfs2_get_tree+0x4e/0x270 [ 276.431467][ T5936] vfs_get_tree+0x8d/0x350 [ 276.435958][ T5936] path_mount+0x136e/0x1e70 [ 276.440527][ T5936] ? putname+0x102/0x140 [ 276.444827][ T5936] ? lockdep_hardirqs_on+0x7d/0x100 [ 276.450099][ T5936] ? finish_automount+0xa30/0xa30 [ 276.455191][ T5936] ? putname+0x102/0x140 [ 276.459496][ T5936] __x64_sys_mount+0x283/0x300 [ 276.464329][ T5936] ? copy_mnt_ns+0xb30/0xb30 [ 276.468987][ T5936] ? lockdep_hardirqs_on+0x7d/0x100 [ 276.474255][ T5936] ? _raw_spin_unlock_irq+0x2e/0x50 [ 276.479529][ T5936] ? ptrace_notify+0xfe/0x140 [ 276.484286][ T5936] do_syscall_64+0x39/0xb0 [ 276.488760][ T5936] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 276.493310][ T5938] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 276.494807][ T5936] RIP: 0033:0x7f4f6dd11c5a write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(13 [pid 5926] close(13 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(14 [pid 5926] close(14 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(15 [pid 5926] close(15 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(16 [pid 5926] close(16 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(17 [pid 5926] close(17 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(18 [pid 5926] close(18 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(19 [pid 5926] close(19 [pid 5944] <... openat resumed>) = -1 EIO (Input/output error) [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5944] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5931] close(20 [pid 5926] close(20 [pid 5944] <... futex resumed>) = 0 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5944] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5931] close(21 [pid 5926] close(21 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(22 [pid 5926] close(22 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(23 [pid 5926] close(23 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(24 [pid 5926] close(24 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(25 [pid 5926] close(25 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(26 [pid 5926] close(26 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(27 [pid 5926] close(27 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(28 [pid 5926] close(28 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] close(29 [pid 5926] close(29 [pid 5931] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5926] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5931] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5926] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5931] <... write resumed>) = 156 [pid 5926] <... write resumed>) = 156 [pid 5931] exit_group(0 [pid 5926] exit_group(0 [pid 5944] <... futex resumed>) = ? [pid 5943] <... futex resumed>) = ? [pid 5932] <... futex resumed>) = ? [pid 5931] <... exit_group resumed>) = ? [pid 5927] <... futex resumed>) = ? [pid 5926] <... exit_group resumed>) = ? [pid 5944] +++ exited with 0 +++ [pid 5943] +++ exited with 0 +++ [pid 5932] +++ exited with 0 +++ [pid 5931] +++ exited with 0 +++ [pid 5927] +++ exited with 0 +++ [pid 5926] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=108, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=52 /* 0.52 s */} --- [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=100, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=76 /* 0.76 s */} --- [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5029] umount2("./34", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] umount2("./34", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(3, "", [pid 5031] openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5029] getdents64(3, [pid 5031] newfstatat(3, "", [pid 5029] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] umount2("./34/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] getdents64(3, [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5029] newfstatat(AT_FDCWD, "./34/cgroup.cpu", [pid 5031] umount2("./34/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] unlink("./34/cgroup.cpu" [pid 5031] newfstatat(AT_FDCWD, "./34/cgroup.cpu", [pid 5029] <... unlink resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./34/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] unlink("./34/cgroup.cpu" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... unlink resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./34/binderfs", [pid 5031] umount2("./34/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] unlink("./34/binderfs" [pid 5031] newfstatat(AT_FDCWD, "./34/binderfs", [pid 5029] <... unlink resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] unlink("./34/binderfs" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... unlink resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./34/file0", [pid 5031] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./34/file0") = 0 [pid 5029] umount2("./34/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./34/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./34/cgroup") = 0 [pid 5029] umount2("./34/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./34/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./34/cgroup.net") = 0 [pid 5029] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./34") = 0 [pid 5029] mkdir("./35", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5949 attached [pid 5949] set_robust_list(0x55555654e6a0, 24 [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 110 [pid 5949] <... set_robust_list resumed>) = 0 [pid 5949] chdir("./35") = 0 [pid 5949] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5949] setpgid(0, 0) = 0 [pid 5949] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0 [pid 5949] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0 [pid 5949] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0 [pid 5949] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5949] write(3, "1000", 4) = 4 [pid 5949] close(3) = 0 [pid 5949] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5949] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5949] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5949] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5949] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5949] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} => {parent_tid=[111]}, 88) = 111 [pid 5949] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5949] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 276.494836][ T5936] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 276.494877][ T5936] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 276.508210][ T5940] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 276.526375][ T5936] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [pid 5949] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 5950 attached [pid 5950] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053) = 0 [pid 5950] set_robust_list(0x7f4f6d4c09a0, 24) = 0 [pid 5950] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5950] memfd_create("syzkaller", 0) = 3 [pid 5950] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [ 276.526401][ T5936] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 276.526424][ T5936] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 276.526445][ T5936] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 276.526466][ T5936] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 276.526494][ T5936] [ 276.543187][ T5938] CPU: 1 PID: 5938 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 276.596152][ T5936] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 276.596539][ T5938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 276.620579][ T5938] Call Trace: [ 276.623878][ T5938] [ 276.626829][ T5938] dump_stack_lvl+0x136/0x150 [ 276.631551][ T5938] sysfs_warn_dup+0x80/0xa0 [ 276.636087][ T5938] sysfs_create_dir_ns+0x237/0x290 [ 276.641247][ T5938] ? sysfs_create_mount_point+0xb0/0xb0 [ 276.646823][ T5938] ? spin_bug+0x1c0/0x1c0 [ 276.651190][ T5938] ? do_raw_spin_unlock+0x175/0x230 [ 276.656444][ T5938] kobject_add_internal+0x2c9/0x9c0 [ 276.661671][ T5938] ? kfree+0x11/0x150 [ 276.665678][ T5938] kobject_init_and_add+0x101/0x170 [ 276.670903][ T5938] ? kobject_create_and_add+0xf0/0xf0 [ 276.676303][ T5938] ? lockdep_init_map_type+0x21e/0x810 [ 276.681794][ T5938] ? lockdep_hardirqs_on+0x7d/0x100 [ 276.687054][ T5938] ? lockdep_init_map_type+0x21e/0x810 [ 276.692553][ T5938] gfs2_sys_fs_add+0x1d5/0x450 [ 276.697346][ T5938] ? recover_store+0x170/0x170 [ 276.702144][ T5938] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 276.707908][ T5938] gfs2_fill_super+0x1312/0x2aa0 [ 276.712879][ T5938] ? gfs2_reconfigure+0xf90/0xf90 [ 276.718037][ T5938] ? snprintf+0xbf/0x100 [ 276.722314][ T5938] ? vsprintf+0x30/0x30 [ 276.726601][ T5938] ? wait_for_completion_io_timeout+0x20/0x20 [ 276.732705][ T5938] ? set_blocksize+0x2d8/0x370 [ 276.737502][ T5938] get_tree_bdev+0x43e/0x7d0 [ 276.742126][ T5938] ? gfs2_reconfigure+0xf90/0xf90 [ 276.747181][ T5938] gfs2_get_tree+0x4e/0x270 [ 276.751714][ T5938] vfs_get_tree+0x8d/0x350 [ 276.756174][ T5938] path_mount+0x136e/0x1e70 [ 276.760717][ T5938] ? putname+0x102/0x140 [ 276.764990][ T5938] ? lockdep_hardirqs_on+0x7d/0x100 [ 276.770221][ T5938] ? finish_automount+0xa30/0xa30 [ 276.775281][ T5938] ? putname+0x102/0x140 [ 276.779557][ T5938] __x64_sys_mount+0x283/0x300 [ 276.784372][ T5938] ? copy_mnt_ns+0xb30/0xb30 [ 276.789007][ T5938] ? lockdep_hardirqs_on+0x7d/0x100 [ 276.794251][ T5938] ? _raw_spin_unlock_irq+0x2e/0x50 [ 276.799501][ T5938] ? ptrace_notify+0xfe/0x140 [ 276.804222][ T5938] do_syscall_64+0x39/0xb0 [ 276.808664][ T5938] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 276.814603][ T5938] RIP: 0033:0x7f4f6dd11c5a [ 276.819041][ T5938] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 276.838773][ T5938] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 276.847222][ T5938] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [pid 5935] <... mount resumed>) = -1 EEXIST (File exists) [ 276.855218][ T5938] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 276.863210][ T5938] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 276.871204][ T5938] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 276.879198][ T5938] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 276.887199][ T5938] [ 276.893324][ T5938] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 276.905915][ T5940] CPU: 1 PID: 5940 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 276.907756][ T5938] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 276.917667][ T5940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 276.917689][ T5940] Call Trace: [ 276.917699][ T5940] [ 276.917710][ T5940] dump_stack_lvl+0x136/0x150 [ 276.917766][ T5940] sysfs_warn_dup+0x80/0xa0 [ 276.917802][ T5940] sysfs_create_dir_ns+0x237/0x290 [ 276.917839][ T5940] ? sysfs_create_mount_point+0xb0/0xb0 [ 276.917883][ T5940] ? spin_bug+0x1c0/0x1c0 [ 276.917922][ T5940] ? do_raw_spin_unlock+0x175/0x230 [ 276.917964][ T5940] kobject_add_internal+0x2c9/0x9c0 [ 276.917998][ T5940] ? kfree+0x11/0x150 [ 276.918031][ T5940] kobject_init_and_add+0x101/0x170 [ 276.918066][ T5940] ? kobject_create_and_add+0xf0/0xf0 [ 276.918102][ T5940] ? lockdep_init_map_type+0x21e/0x810 [ 276.918143][ T5940] ? lockdep_hardirqs_on+0x7d/0x100 [ 276.918185][ T5940] ? lockdep_init_map_type+0x21e/0x810 [ 276.918230][ T5940] gfs2_sys_fs_add+0x1d5/0x450 [ 276.918264][ T5940] ? recover_store+0x170/0x170 [ 276.918297][ T5940] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 276.918347][ T5940] gfs2_fill_super+0x1312/0x2aa0 [ 276.918387][ T5940] ? gfs2_reconfigure+0xf90/0xf90 [ 277.031902][ T5940] ? snprintf+0xbf/0x100 [ 277.036185][ T5940] ? vsprintf+0x30/0x30 [ 277.040375][ T5940] ? wait_for_completion_io_timeout+0x20/0x20 [ 277.046475][ T5940] ? set_blocksize+0x2d8/0x370 [ 277.051275][ T5940] get_tree_bdev+0x43e/0x7d0 [ 277.055904][ T5940] ? gfs2_reconfigure+0xf90/0xf90 [ 277.060967][ T5940] gfs2_get_tree+0x4e/0x270 [ 277.065502][ T5940] vfs_get_tree+0x8d/0x350 [ 277.069950][ T5940] path_mount+0x136e/0x1e70 [ 277.074508][ T5940] ? putname+0x102/0x140 [ 277.078781][ T5940] ? lockdep_hardirqs_on+0x7d/0x100 [ 277.084015][ T5940] ? finish_automount+0xa30/0xa30 [ 277.089074][ T5940] ? putname+0x102/0x140 [ 277.093344][ T5940] __x64_sys_mount+0x283/0x300 [ 277.098141][ T5940] ? copy_mnt_ns+0xb30/0xb30 [ 277.102762][ T5940] ? lockdep_hardirqs_on+0x7d/0x100 [ 277.107993][ T5940] ? _raw_spin_unlock_irq+0x2e/0x50 [ 277.113232][ T5940] ? ptrace_notify+0xfe/0x140 [ 277.117951][ T5940] do_syscall_64+0x39/0xb0 [ 277.122395][ T5940] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 277.128334][ T5940] RIP: 0033:0x7f4f6dd11c5a [ 277.132796][ T5940] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 277.152541][ T5940] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 277.161012][ T5940] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 277.169009][ T5940] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 277.177005][ T5940] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 277.185000][ T5940] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 277.193084][ T5940] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 277.201086][ T5940] [pid 5935] ioctl(4, LOOP_CLR_FD [pid 5934] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5934] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5934] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5934] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5934] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5934] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5951 attached [pid 5951] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5934] <... clone3 resumed> => {parent_tid=[108]}, 88) = 108 [pid 5951] <... rseq resumed>) = 0 [pid 5934] rt_sigprocmask(SIG_SETMASK, [], [pid 5951] set_robust_list(0x7f4f6609f9a0, 24 [pid 5934] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5951] <... set_robust_list resumed>) = 0 [pid 5934] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5951] rt_sigprocmask(SIG_SETMASK, [], [pid 5934] <... futex resumed>) = 0 [pid 5951] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5934] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5951] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 5951] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5934] <... futex resumed>) = 0 [pid 5951] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5934] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5951] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5934] <... futex resumed>) = 0 [pid 5951] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5934] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5951] <... futex resumed>) = 0 [pid 5934] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5951] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5934] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5951] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5934] <... futex resumed>) = 0 [pid 5951] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5934] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5951] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5951] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5934] <... futex resumed>) = 0 [pid 5951] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5938] <... mount resumed>) = -1 EEXIST (File exists) [pid 5938] ioctl(4, LOOP_CLR_FD [pid 5940] <... mount resumed>) = -1 EEXIST (File exists) [pid 5940] ioctl(4, LOOP_CLR_FD [pid 5936] <... mount resumed>) = -1 EEXIST (File exists) [ 277.208799][ T5936] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 277.214182][ T5940] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 277.230542][ T5940] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 5936] ioctl(4, LOOP_CLR_FD [pid 5933] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5933] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5933] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5933] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5933] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5933] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[105]}, 88) = 105 [pid 5933] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5933] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5933] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5952 attached [pid 5952] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053) = 0 [pid 5933] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5933] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5933] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5952] set_robust_list(0x7f4f6609f9a0, 24 [pid 5933] <... mmap resumed>) = 0x7f4f6605e000 [pid 5933] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5933] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5933] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0}./strace-static-x86_64: Process 5953 attached [pid 5953] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 5933] <... clone3 resumed> => {parent_tid=[106]}, 88) = 106 [pid 5953] <... rseq resumed>) = 0 [pid 5933] rt_sigprocmask(SIG_SETMASK, [], [pid 5953] set_robust_list(0x7f4f6607e9a0, 24 [pid 5933] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5953] <... set_robust_list resumed>) = 0 [pid 5933] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 5953] rt_sigprocmask(SIG_SETMASK, [], [pid 5952] <... set_robust_list resumed>) = 0 [pid 5933] <... futex resumed>) = 0 [pid 5953] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5933] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5953] ioctl(-1, VFAT_IOCTL_READDIR_SHORT, 0) = -1 EBADF (Bad file descriptor) [pid 5952] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5953] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5933] <... futex resumed>) = 0 [pid 5953] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5933] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 5953] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5933] <... futex resumed>) = 0 [pid 5953] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5933] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5953] <... futex resumed>) = 0 [pid 5933] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5953] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5952] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 5952] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5952] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5937] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5937] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5937] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5937] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5937] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5937] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[106]}, 88) = 106 [pid 5937] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5937] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5937] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5954 attached [pid 5954] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053) = 0 [pid 5937] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5954] set_robust_list(0x7f4f6609f9a0, 24 [pid 5937] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5954] <... set_robust_list resumed>) = 0 [pid 5937] <... futex resumed>) = 0 [pid 5954] rt_sigprocmask(SIG_SETMASK, [], [pid 5937] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5954] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5954] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5937] <... mmap resumed>) = 0x7f4f6605e000 [pid 5954] <... openat resumed>) = 3 [pid 5937] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE [pid 5954] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5954] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5937] <... mprotect resumed>) = 0 [pid 5937] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5937] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} [pid 5939] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5939] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5939] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5939] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5939] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5939] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[99]}, 88) = 99 [pid 5939] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5939] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5939] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5955 attached [pid 5955] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053) = 0 [pid 5955] set_robust_list(0x7f4f6609f9a0, 24./strace-static-x86_64: Process 5956 attached ) = 0 [pid 5937] <... clone3 resumed> => {parent_tid=[107]}, 88) = 107 [pid 5956] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053) = 0 [pid 5956] set_robust_list(0x7f4f6607e9a0, 24) = 0 [pid 5956] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5956] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5937] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5937] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5956] <... futex resumed>) = 0 [pid 5956] ioctl(-1, VFAT_IOCTL_READDIR_SHORT, 0) = -1 EBADF (Bad file descriptor) [pid 5956] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5937] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5956] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5937] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5937] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5954] <... futex resumed>) = 0 [pid 5937] <... futex resumed>) = 1 [pid 5955] rt_sigprocmask(SIG_SETMASK, [], [pid 5954] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5937] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5954] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5955] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5955] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5954] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5955] <... openat resumed>) = 3 [pid 5954] <... futex resumed>) = 1 [pid 5939] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5937] <... futex resumed>) = 0 [pid 5955] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5939] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5955] <... futex resumed>) = 0 [pid 5939] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5955] ioctl(-1, VFAT_IOCTL_READDIR_SHORT, 0) = -1 EBADF (Bad file descriptor) [pid 5955] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5939] <... futex resumed>) = 0 [pid 5939] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5955] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5939] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5955] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5955] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5939] <... futex resumed>) = 0 [pid 5955] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5954] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5031] <... umount2 resumed>) = 0 [pid 5935] <... ioctl resumed>) = 0 [pid 5031] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5935] close(4 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5935] <... close resumed>) = 0 [pid 5938] <... ioctl resumed>) = 0 [pid 5935] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5938] close(4 [pid 5935] <... futex resumed>) = 0 [pid 5934] close(3 [pid 5938] <... close resumed>) = 0 [pid 5935] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5934] <... close resumed>) = 0 [pid 5938] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5934] close(4 [pid 5938] <... futex resumed>) = 0 [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] newfstatat(AT_FDCWD, "./34/file0", [pid 5934] close(5 [pid 5937] close(3 [pid 5938] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5937] <... close resumed>) = 0 [pid 5937] close(4 [pid 5934] close(6 [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5937] close(5 [pid 5934] close(7 [pid 5940] <... ioctl resumed>) = 0 [pid 5936] <... ioctl resumed>) = 0 [pid 5031] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5937] close(6 [pid 5934] close(8 [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5937] close(7 [pid 5934] close(9 [pid 5031] <... openat resumed>) = 4 [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5936] close(4 [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] newfstatat(4, "", [pid 5937] close(8 [pid 5934] close(10 [pid 5933] close(3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5933] <... close resumed>) = 0 [pid 5031] getdents64(4, [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5936] <... close resumed>) = 0 [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] close(4 [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] getdents64(4, [pid 5937] close(9 [pid 5933] close(5 [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5936] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5934] close(11 [pid 5940] close(4 [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] close(4 [pid 5940] <... close resumed>) = 0 [pid 5937] close(10 [pid 5936] <... futex resumed>) = 0 [pid 5934] close(12 [pid 5933] close(6 [pid 5031] <... close resumed>) = 0 [pid 5940] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5936] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] rmdir("./34/file0" [pid 5940] <... futex resumed>) = 0 [pid 5937] close(11 [pid 5934] close(13 [pid 5933] close(7 [pid 5031] <... rmdir resumed>) = 0 [pid 5940] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5939] close(3 [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] umount2("./34/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5939] <... close resumed>) = 0 [pid 5933] close(8 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5934] close(14 [pid 5937] close(12 [pid 5939] close(4 [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] newfstatat(AT_FDCWD, "./34/cgroup", [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] close(9 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5939] close(5 [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] unlink("./34/cgroup" [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] close(10 [pid 5031] <... unlink resumed>) = 0 [pid 5939] close(6 [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] umount2("./34/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] close(11 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5939] close(7 [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] newfstatat(AT_FDCWD, "./34/cgroup.net", [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] close(12 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5939] close(8 [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] unlink("./34/cgroup.net" [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] close(13 [pid 5031] <... unlink resumed>) = 0 [pid 5939] close(9 [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] getdents64(3, [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] close(14 [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5939] close(10 [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] close(3 [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] close(15 [pid 5031] <... close resumed>) = 0 [pid 5939] close(11 [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] rmdir("./34" [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] close(15 [pid 5933] close(16 [pid 5031] <... rmdir resumed>) = 0 [pid 5939] close(12 [pid 5937] close(13 [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] mkdir("./35", 0777 [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] close(16 [pid 5933] close(17 [pid 5031] <... mkdir resumed>) = 0 [pid 5939] close(13 [pid 5937] close(14 [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] close(17 [pid 5933] close(18 [pid 5031] <... openat resumed>) = 3 [pid 5939] close(14 [pid 5937] close(15 [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] close(18 [pid 5933] close(19 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5939] close(15 [pid 5937] close(16 [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] close(3 [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] close(19 [pid 5933] close(20 [pid 5031] <... close resumed>) = 0 [pid 5939] close(16 [pid 5937] close(17 [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5957 attached [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] close(20 [pid 5933] close(21 [pid 5957] set_robust_list(0x55555654e6a0, 24 [pid 5939] close(17 [pid 5937] close(18 [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 104 [pid 5957] <... set_robust_list resumed>) = 0 [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] close(21 [pid 5933] close(22 [pid 5957] chdir("./35" [pid 5939] close(18 [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5957] <... chdir resumed>) = 0 [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] close(23 [pid 5957] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5939] close(19 [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5957] <... prctl resumed>) = 0 [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] close(24 [pid 5957] setpgid(0, 0 [pid 5939] close(20 [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5957] <... setpgid resumed>) = 0 [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] close(25 [pid 5957] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 5939] close(21 [pid 5937] close(19 [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5957] <... symlink resumed>) = 0 [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] close(22 [pid 5933] close(26 [pid 5957] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 5939] close(22 [pid 5937] close(20 [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5957] <... symlink resumed>) = 0 [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] close(23 [pid 5933] close(27 [pid 5957] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 5939] close(23 [pid 5937] close(21 [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5957] <... symlink resumed>) = 0 [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] close(24 [pid 5933] close(28 [pid 5957] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5939] close(24 [pid 5937] close(22 [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5957] <... openat resumed>) = 3 [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] close(25 [pid 5933] close(29 [pid 5957] write(3, "1000", 4 [pid 5939] close(25 [pid 5937] close(23 [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5957] <... write resumed>) = 4 [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] close(26 [pid 5933] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5957] close(3 [pid 5939] close(26 [pid 5937] close(24 [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] <... write resumed>) = 156 [pid 5957] <... close resumed>) = 0 [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] close(27 [pid 5933] exit_group(0 [pid 5957] symlink("/dev/binderfs", "./binderfs" [pid 5953] <... futex resumed>) = ? [pid 5952] <... futex resumed>) = ? [pid 5939] close(27 [pid 5937] close(25 [pid 5936] <... futex resumed>) = ? [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5933] <... exit_group resumed>) = ? [pid 5957] <... symlink resumed>) = 0 [pid 5953] +++ exited with 0 +++ [pid 5952] +++ exited with 0 +++ [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5936] +++ exited with 0 +++ [pid 5934] close(28 [pid 5933] +++ exited with 0 +++ [pid 5957] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5939] close(28 [pid 5937] close(26 [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=103, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=51 /* 0.51 s */} --- [pid 5957] <... futex resumed>) = 0 [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] close(29 [pid 5957] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5950] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5939] close(29 [pid 5937] close(27 [pid 5934] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5957] <... mmap resumed>) = 0x7f4f6d4a0000 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5939] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5032] umount2("./35", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5957] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITEwrite to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5939] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5937] close(28 [pid 5934] <... write resumed>) = 156 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5957] <... mprotect resumed>) = 0 [pid 5939] <... write resumed>) = 156 [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5934] exit_group(0 [pid 5032] openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5957] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5951] <... futex resumed>) = ? [pid 5939] exit_group(0 [pid 5937] close(29 [pid 5935] <... futex resumed>) = ? [pid 5934] <... exit_group resumed>) = ? [pid 5032] <... openat resumed>) = 3 [pid 5957] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5955] <... futex resumed>) = ? [pid 5951] +++ exited with 0 +++ [pid 5940] <... futex resumed>) = ? [pid 5939] <... exit_group resumed>) = ? [pid 5937] <... close resumed>) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5957] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5955] +++ exited with 0 +++ [pid 5940] +++ exited with 0 +++ [pid 5939] +++ exited with 0 +++ [pid 5937] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5935] +++ exited with 0 +++ [pid 5934] +++ exited with 0 +++ [pid 5032] newfstatat(3, "", ./strace-static-x86_64: Process 5958 attached [pid 5937] <... write resumed>) = 156 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5958] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5957] <... clone3 resumed> => {parent_tid=[105]}, 88) = 105 [pid 5937] exit_group(0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=106, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=72 /* 0.72 s */} --- [pid 5032] getdents64(3, [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=97, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=60 /* 0.60 s */} --- [pid 5958] <... rseq resumed>) = 0 [pid 5957] rt_sigprocmask(SIG_SETMASK, [], [pid 5956] <... futex resumed>) = ? [pid 5954] <... futex resumed>) = ? [pid 5938] <... futex resumed>) = ? [pid 5937] <... exit_group resumed>) = ? [pid 5034] umount2("./35", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5030] umount2("./34", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5958] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5957] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5956] +++ exited with 0 +++ [pid 5954] +++ exited with 0 +++ [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5958] <... set_robust_list resumed>) = 0 [pid 5957] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5938] +++ exited with 0 +++ [pid 5937] +++ exited with 0 +++ [pid 5034] openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] umount2("./35/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5958] rt_sigprocmask(SIG_SETMASK, [], [pid 5957] <... futex resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=104, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=57 /* 0.57 s */} --- [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5958] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5957] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5034] newfstatat(3, "", [pid 5032] newfstatat(AT_FDCWD, "./35/cgroup.cpu", [pid 5958] memfd_create("syzkaller", 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5958] <... memfd_create resumed>) = 3 [pid 5034] getdents64(3, [pid 5032] unlink("./35/cgroup.cpu" [pid 5030] newfstatat(3, "", [pid 5958] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5032] <... unlink resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5958] <... mmap resumed>) = 0x7f4f650a0000 [pid 5034] umount2("./35/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./35/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(3, [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./36", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5034] newfstatat(AT_FDCWD, "./35/cgroup.cpu", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./35/binderfs", [pid 5030] umount2("./34/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./35/cgroup.cpu" [pid 5033] <... openat resumed>) = 3 [pid 5032] unlink("./35/binderfs" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... unlink resumed>) = 0 [pid 5033] newfstatat(3, "", [pid 5032] <... unlink resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./34/cgroup.cpu", [pid 5034] umount2("./35/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] getdents64(3, [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] newfstatat(AT_FDCWD, "./35/binderfs", [pid 5033] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] unlink("./34/cgroup.cpu" [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./36/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(AT_FDCWD, "./35/file0", [pid 5034] unlink("./35/binderfs" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./36/cgroup.cpu", [pid 5032] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./34/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] unlink("./36/cgroup.cpu" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./35/file0", [pid 5033] <... unlink resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./36/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] newfstatat(AT_FDCWD, "./34/binderfs", [pid 5034] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... openat resumed>) = 4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./36/binderfs", [pid 5034] openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... openat resumed>) = 4 [pid 5033] unlink("./36/binderfs" [pid 5034] newfstatat(4, "", [pid 5033] <... unlink resumed>) = 0 [pid 5032] newfstatat(4, "", [pid 5030] unlink("./34/binderfs" [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... unlink resumed>) = 0 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5033] newfstatat(AT_FDCWD, "./36/file0", [pid 5032] getdents64(4, [pid 5030] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] getdents64(4, [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5033] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] close(4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... close resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] rmdir("./35/file0" [pid 5033] <... openat resumed>) = 4 [pid 5032] getdents64(4, [pid 5030] newfstatat(AT_FDCWD, "./34/file0", [pid 5034] <... rmdir resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 5034] umount2("./35/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] getdents64(4, [pid 5030] umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(AT_FDCWD, "./35/cgroup", [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] getdents64(4, [pid 5034] unlink("./35/cgroup" [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... unlink resumed>) = 0 [pid 5033] close(4 [pid 5032] close(4 [pid 5030] openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] umount2("./35/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] rmdir("./36/file0" [pid 5032] rmdir("./35/file0" [pid 5030] newfstatat(4, "", [pid 5034] newfstatat(AT_FDCWD, "./35/cgroup.net", [pid 5033] <... rmdir resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./36/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] unlink("./35/cgroup.net" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... unlink resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./36/cgroup", [pid 5034] getdents64(3, [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./35/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, [pid 5034] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5033] unlink("./36/cgroup" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5034] close(3 [pid 5033] <... unlink resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./35/cgroup", [pid 5030] getdents64(4, [pid 5034] <... close resumed>) = 0 [pid 5033] umount2("./36/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] rmdir("./35" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] unlink("./35/cgroup" [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./36/cgroup.net", [pid 5032] <... unlink resumed>) = 0 [pid 5030] close(4 [pid 5034] mkdir("./36", 0777 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./35/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... mkdir resumed>) = 0 [pid 5033] unlink("./36/cgroup.net" [pid 5030] <... close resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] <... unlink resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] rmdir("./34/file0" [pid 5034] <... openat resumed>) = 3 [pid 5033] getdents64(3, [pid 5032] newfstatat(AT_FDCWD, "./35/cgroup.net", [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5033] close(3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./34/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] close(3 [pid 5033] <... close resumed>) = 0 [pid 5032] unlink("./35/cgroup.net" [pid 5034] <... close resumed>) = 0 [pid 5033] rmdir("./36" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./34/cgroup", ./strace-static-x86_64: Process 5959 attached [pid 5033] mkdir("./37", 0777 [pid 5032] getdents64(3, [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5959] set_robust_list(0x55555654e6a0, 24 [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 109 [pid 5033] <... mkdir resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] unlink("./34/cgroup" [pid 5959] <... set_robust_list resumed>) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5032] close(3 [pid 5959] chdir("./36" [pid 5033] <... openat resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5959] <... chdir resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5032] rmdir("./35" [pid 5030] umount2("./34/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5959] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5959] <... prctl resumed>) = 0 [pid 5033] close(3 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5959] setpgid(0, 0 [pid 5033] <... close resumed>) = 0 [pid 5032] mkdir("./36", 0777 [pid 5030] newfstatat(AT_FDCWD, "./34/cgroup.net", [pid 5959] <... setpgid resumed>) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5960 attached [pid 5959] symlink("/syzcgroup/unified/syz5", "./cgroup" [pid 5032] <... mkdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5960] set_robust_list(0x55555654e6a0, 24 [pid 5959] <... symlink resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 108 [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5030] unlink("./34/cgroup.net" [pid 5960] <... set_robust_list resumed>) = 0 [pid 5959] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu" [pid 5032] <... openat resumed>) = 3 [pid 5030] <... unlink resumed>) = 0 [pid 5960] chdir("./37" [pid 5959] <... symlink resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5030] getdents64(3, [pid 5960] <... chdir resumed>) = 0 [pid 5959] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5960] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5959] <... symlink resumed>) = 0 [pid 5032] close(3 [pid 5030] close(3 [pid 5960] <... prctl resumed>) = 0 [pid 5959] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... close resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5960] setpgid(0, 0 [pid 5959] <... openat resumed>) = 3 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] rmdir("./34" [pid 5960] <... setpgid resumed>) = 0 [pid 5959] write(3, "1000", 4) = 4 ./strace-static-x86_64: Process 5961 attached [pid 5960] symlink("/syzcgroup/unified/syz2", "./cgroup" [pid 5959] close(3 [pid 5030] <... rmdir resumed>) = 0 [pid 5961] set_robust_list(0x55555654e6a0, 24 [pid 5960] <... symlink resumed>) = 0 [pid 5959] <... close resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 107 [pid 5030] mkdir("./35", 0777 [pid 5961] <... set_robust_list resumed>) = 0 [pid 5960] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu" [pid 5959] symlink("/dev/binderfs", "./binderfs" [pid 5961] chdir("./36" [pid 5960] <... symlink resumed>) = 0 [pid 5959] <... symlink resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5961] <... chdir resumed>) = 0 [pid 5960] symlink("/syzcgroup/net/syz2", "./cgroup.net" [pid 5959] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5961] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5960] <... symlink resumed>) = 0 [pid 5959] <... futex resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5961] <... prctl resumed>) = 0 [pid 5960] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5959] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5961] setpgid(0, 0 [pid 5960] <... openat resumed>) = 3 [pid 5959] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5961] <... setpgid resumed>) = 0 [pid 5960] write(3, "1000", 4 [pid 5959] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5030] close(3 [pid 5961] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 5960] <... write resumed>) = 4 [pid 5959] <... mprotect resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5961] <... symlink resumed>) = 0 [pid 5960] close(3 [pid 5959] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5961] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 5960] <... close resumed>) = 0 [pid 5959] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5959] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5963 attached ./strace-static-x86_64: Process 5962 attached [pid 5961] <... symlink resumed>) = 0 [pid 5960] symlink("/dev/binderfs", "./binderfs" [pid 5963] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5962] set_robust_list(0x55555654e6a0, 24 [pid 5961] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 5960] <... symlink resumed>) = 0 [pid 5959] <... clone3 resumed> => {parent_tid=[110]}, 88) = 110 [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 100 [pid 5963] <... rseq resumed>) = 0 [pid 5962] <... set_robust_list resumed>) = 0 [pid 5961] <... symlink resumed>) = 0 [pid 5960] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5959] rt_sigprocmask(SIG_SETMASK, [], [pid 5963] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5962] chdir("./35" [pid 5961] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5960] <... futex resumed>) = 0 [pid 5959] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5963] <... set_robust_list resumed>) = 0 [pid 5962] <... chdir resumed>) = 0 [pid 5961] <... openat resumed>) = 3 [pid 5960] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5959] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5963] rt_sigprocmask(SIG_SETMASK, [], [pid 5962] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5961] write(3, "1000", 4 [pid 5960] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5959] <... futex resumed>) = 0 [pid 5963] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5962] <... prctl resumed>) = 0 [pid 5961] <... write resumed>) = 4 [pid 5960] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5959] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5963] memfd_create("syzkaller", 0 [pid 5962] setpgid(0, 0 [pid 5961] close(3 [pid 5960] <... mprotect resumed>) = 0 [pid 5963] <... memfd_create resumed>) = 3 [pid 5962] <... setpgid resumed>) = 0 [pid 5961] <... close resumed>) = 0 [pid 5963] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5962] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 5961] symlink("/dev/binderfs", "./binderfs" [pid 5960] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5963] <... mmap resumed>) = 0x7f4f650a0000 [pid 5962] <... symlink resumed>) = 0 [pid 5961] <... symlink resumed>) = 0 [pid 5960] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5962] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu" [pid 5961] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5960] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5964 attached [pid 5962] <... symlink resumed>) = 0 [pid 5961] <... futex resumed>) = 0 [pid 5964] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5962] symlink("/syzcgroup/net/syz3", "./cgroup.net" [pid 5961] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5960] <... clone3 resumed> => {parent_tid=[109]}, 88) = 109 [pid 5964] <... rseq resumed>) = 0 [pid 5962] <... symlink resumed>) = 0 [pid 5961] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5960] rt_sigprocmask(SIG_SETMASK, [], [pid 5964] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5962] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5961] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5960] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5964] <... set_robust_list resumed>) = 0 [pid 5962] <... openat resumed>) = 3 [pid 5961] <... mprotect resumed>) = 0 [pid 5960] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5964] rt_sigprocmask(SIG_SETMASK, [], [pid 5962] write(3, "1000", 4 [pid 5961] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5960] <... futex resumed>) = 0 [pid 5964] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5962] <... write resumed>) = 4 [pid 5961] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5960] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5962] close(3 [pid 5964] memfd_create("syzkaller", 0 [pid 5962] <... close resumed>) = 0 [pid 5961] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5965 attached [pid 5964] <... memfd_create resumed>) = 3 [pid 5962] symlink("/dev/binderfs", "./binderfs" [pid 5965] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5964] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5962] <... symlink resumed>) = 0 [pid 5961] <... clone3 resumed> => {parent_tid=[108]}, 88) = 108 [pid 5965] <... rseq resumed>) = 0 [pid 5964] <... mmap resumed>) = 0x7f4f650a0000 [pid 5962] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5961] rt_sigprocmask(SIG_SETMASK, [], [pid 5965] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5962] <... futex resumed>) = 0 [pid 5962] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5962] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5965] <... set_robust_list resumed>) = 0 [pid 5962] <... mprotect resumed>) = 0 [pid 5961] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5965] rt_sigprocmask(SIG_SETMASK, [], [pid 5962] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5961] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5965] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5962] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5961] <... futex resumed>) = 0 [pid 5962] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5961] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 5966 attached [pid 5965] memfd_create("syzkaller", 0 [pid 5966] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5965] <... memfd_create resumed>) = 3 [pid 5962] <... clone3 resumed> => {parent_tid=[101]}, 88) = 101 [pid 5966] <... rseq resumed>) = 0 [pid 5965] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5962] rt_sigprocmask(SIG_SETMASK, [], [pid 5966] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5965] <... mmap resumed>) = 0x7f4f650a0000 [pid 5962] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5966] <... set_robust_list resumed>) = 0 [pid 5962] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5966] rt_sigprocmask(SIG_SETMASK, [], [pid 5962] <... futex resumed>) = 0 [pid 5966] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5962] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5966] memfd_create("syzkaller", 0) = 3 [pid 5966] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5958] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5950] <... write resumed>) = 16777216 [pid 5950] munmap(0x7f4f650a0000, 16777216) = 0 [pid 5950] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5950] ioctl(4, LOOP_SET_FD, 3 [pid 5963] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5950] <... ioctl resumed>) = 0 [pid 5950] close(3) = 0 [pid 5950] mkdir("./file0", 0777) = 0 [ 279.122016][ T5950] loop0: detected capacity change from 0 to 32768 [pid 5950] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [ 279.170786][ T5950] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 279.203414][ T5950] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [pid 5965] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5966] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [ 279.234322][ T5950] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 279.296051][ T3750] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 279.302943][ T3750] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 279.575025][ T3750] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 272ms [pid 5964] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5950] <... mount resumed>) = 0 [pid 5950] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5950] chdir("./file0") = 0 [pid 5950] ioctl(4, LOOP_CLR_FD) = 0 [pid 5950] close(4) = 0 [pid 5950] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [ 279.619091][ T3750] gfs2: fsid=syz:syz.0: jid=0: Done [ 279.624410][ T5950] gfs2: fsid=syz:syz.0: first mount done, others may mount [pid 5950] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5949] <... futex resumed>) = 0 [pid 5949] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5950] <... futex resumed>) = 0 [pid 5949] <... futex resumed>) = 1 [pid 5950] openat(AT_FDCWD, "./file0", O_RDONLY [ 279.697150][ T5950] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 279.705573][ T5950] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 279.705573][ T5950] inode = 12 2341 [ 279.705573][ T5950] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [pid 5949] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 5949] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5949] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5949] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5949] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5949] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[112]}, 88) = 112 [pid 5949] rt_sigprocmask(SIG_SETMASK, [], [pid 5958] <... write resumed>) = 16777216 [pid 5958] munmap(0x7f4f650a0000, 16777216 [pid 5949] <... rt_sigprocmask resumed>NULL, 8) = 0 ./strace-static-x86_64: Process 5968 attached [ 279.828200][ T5950] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 279.867581][ T5950] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5950 [syz-executor676] __gfs2_lookup+0x83/0x280 [pid 5949] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5968] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5949] <... futex resumed>) = 0 [ 279.918139][ T5950] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [pid 5968] <... rseq resumed>) = 0 [pid 5949] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5968] set_robust_list(0x7f4f6609f9a0, 24) = 0 [pid 5958] <... munmap resumed>) = 0 [pid 5958] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [ 279.958754][ T5950] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 279.992202][ T5950] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [pid 5958] ioctl(4, LOOP_SET_FD, 3 [pid 5968] rt_sigprocmask(SIG_SETMASK, [], [pid 5966] <... write resumed>) = 16777216 [pid 5963] <... write resumed>) = 16777216 [pid 5963] munmap(0x7f4f650a0000, 16777216 [pid 5958] <... ioctl resumed>) = 0 [pid 5958] close(3) = 0 [pid 5958] mkdir("./file0", 0777) = 0 [pid 5958] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5966] munmap(0x7f4f650a0000, 16777216 [pid 5968] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5949] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 280.023331][ T5958] loop4: detected capacity change from 0 to 32768 [ 280.040416][ T5950] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [pid 5968] ioctl(0, VFAT_IOCTL_READDIR_SHORT [pid 5949] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5964] <... write resumed>) = 16777216 [ 280.079131][ T5958] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 280.081004][ T5950] gfs2: fsid=syz:syz.0: File system withdrawn [ 280.105926][ T5958] CPU: 0 PID: 5958 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 280.116517][ T5958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [pid 5968] <... ioctl resumed>, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 5949] <... futex resumed>) = 0 [pid 5949] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6605e000 [pid 5968] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5968] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5949] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5949] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5949] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} => {parent_tid=[113]}, 88) = 113 [pid 5949] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5949] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5949] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [ 280.126642][ T5958] Call Trace: [ 280.129986][ T5958] [ 280.132950][ T5958] dump_stack_lvl+0x136/0x150 [ 280.137703][ T5958] sysfs_warn_dup+0x80/0xa0 [ 280.142274][ T5958] sysfs_create_dir_ns+0x237/0x290 [ 280.147478][ T5958] ? sysfs_create_mount_point+0xb0/0xb0 [ 280.153082][ T5958] ? spin_bug+0x1c0/0x1c0 [ 280.157480][ T5958] ? do_raw_spin_unlock+0x175/0x230 [ 280.162741][ T5958] kobject_add_internal+0x2c9/0x9c0 [ 280.167987][ T5958] ? kfree+0x11/0x150 [ 280.172029][ T5958] kobject_init_and_add+0x101/0x170 [ 280.177278][ T5958] ? kobject_create_and_add+0xf0/0xf0 [ 280.182688][ T5958] ? lockdep_init_map_type+0x21e/0x810 [ 280.188183][ T5958] ? lockdep_hardirqs_on+0x7d/0x100 [ 280.193419][ T5958] ? lockdep_init_map_type+0x21e/0x810 [ 280.198911][ T5958] gfs2_sys_fs_add+0x1d5/0x450 [ 280.203702][ T5958] ? recover_store+0x170/0x170 [ 280.208491][ T5958] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 280.214246][ T5958] gfs2_fill_super+0x1312/0x2aa0 [ 280.219214][ T5958] ? gfs2_reconfigure+0xf90/0xf90 [ 280.224268][ T5958] ? snprintf+0xbf/0x100 [ 280.228546][ T5958] ? vsprintf+0x30/0x30 [ 280.232731][ T5958] ? wait_for_completion_io_timeout+0x20/0x20 [ 280.238833][ T5958] ? set_blocksize+0x2d8/0x370 [ 280.243625][ T5958] get_tree_bdev+0x43e/0x7d0 [ 280.248247][ T5958] ? gfs2_reconfigure+0xf90/0xf90 [ 280.253301][ T5958] gfs2_get_tree+0x4e/0x270 [ 280.257849][ T5958] vfs_get_tree+0x8d/0x350 [ 280.262292][ T5958] path_mount+0x136e/0x1e70 [ 280.266829][ T5958] ? putname+0x102/0x140 [ 280.271095][ T5958] ? lockdep_hardirqs_on+0x7d/0x100 [ 280.276336][ T5958] ? finish_automount+0xa30/0xa30 [ 280.281398][ T5958] ? putname+0x102/0x140 [ 280.285693][ T5958] __x64_sys_mount+0x283/0x300 [ 280.290528][ T5958] ? copy_mnt_ns+0xb30/0xb30 [ 280.295167][ T5958] ? lockdep_hardirqs_on+0x7d/0x100 [ 280.300400][ T5958] ? _raw_spin_unlock_irq+0x2e/0x50 [ 280.305656][ T5958] ? ptrace_notify+0xfe/0x140 [ 280.310397][ T5958] do_syscall_64+0x39/0xb0 [ 280.314857][ T5958] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 280.320810][ T5958] RIP: 0033:0x7f4f6dd11c5a [ 280.325354][ T5958] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 280.345007][ T5958] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 280.353564][ T5958] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 280.361560][ T5958] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 280.369655][ T5958] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 280.377652][ T5958] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 280.386079][ T5958] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 280.394253][ T5958] [ 280.399866][ T5950] CPU: 0 PID: 5950 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 280.410359][ T5950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 280.420462][ T5950] Call Trace: [ 280.423776][ T5950] [ 280.426742][ T5950] dump_stack_lvl+0x136/0x150 [ 280.431491][ T5950] gfs2_withdraw+0xb33/0x1060 [ 280.436220][ T5950] ? gfs2_consist_inode_i+0x104/0x150 [ 280.441641][ T5950] gfs2_dirent_scan+0x32a/0x3d0 [ 280.446563][ T5950] ? gfs2_dirent_prev+0x210/0x210 [ 280.451650][ T5950] ? gfs2_dirent_prev+0x210/0x210 [ 280.456720][ T5950] gfs2_dirent_search+0x47d/0x580 [ 280.461789][ T5950] ? get_first_leaf+0x190/0x190 [ 280.466681][ T5950] ? gfs2_permission+0x256/0x3e0 [ 280.471684][ T5950] gfs2_dir_search+0x8d/0x2d0 [ 280.476405][ T5950] ? gfs2_dir_read+0x14e0/0x14e0 [ 280.481386][ T5950] gfs2_lookupi+0x481/0x640 [ 280.485920][ T5950] ? gfs2_lookup_by_inum+0x100/0x100 [ 280.491239][ T5950] ? __gfs2_lookup+0x83/0x280 [ 280.495947][ T5950] ? d_alloc_parallel+0x693/0x1530 [ 280.501114][ T5950] __gfs2_lookup+0x83/0x280 [ 280.505648][ T5950] ? gfs2_lookupi+0x640/0x640 [ 280.510384][ T5950] ? __d_lookup_rcu+0x4e0/0x4e0 [ 280.515268][ T5950] ? __d_lookup+0x289/0x4c0 [ 280.519822][ T5950] gfs2_atomic_open+0xde/0x250 [ 280.524681][ T5950] ? __gfs2_lookup+0x280/0x280 [ 280.529498][ T5950] lookup_open.isra.0+0xce2/0x1400 [ 280.534665][ T5950] ? link_path_walk.part.0+0xd60/0xd60 [ 280.540169][ T5950] ? lookup_fast+0x14e/0x520 [ 280.544794][ T5950] path_openat+0x969/0x2710 [ 280.549370][ T5950] ? path_lookupat+0x840/0x840 [ 280.554204][ T5950] do_filp_open+0x1ba/0x410 [ 280.558880][ T5950] ? may_open_dev+0xf0/0xf0 [ 280.563429][ T5950] ? find_held_lock+0x2d/0x110 [ 280.568229][ T5950] ? do_raw_spin_lock+0x124/0x2b0 [ 280.573295][ T5950] ? spin_bug+0x1c0/0x1c0 [ 280.577688][ T5950] ? _raw_spin_unlock+0x28/0x40 [ 280.582580][ T5950] ? alloc_fd+0x2e4/0x750 [ 280.586956][ T5950] do_sys_openat2+0x160/0x1c0 [ 280.591674][ T5950] ? build_open_flags+0x720/0x720 [ 280.596737][ T5950] ? ptrace_notify+0xfe/0x140 [ 280.601479][ T5950] ? lock_downgrade+0x690/0x690 [ 280.606365][ T5950] __x64_sys_openat+0x143/0x1f0 [ 280.611253][ T5950] ? __ia32_sys_open+0x1c0/0x1c0 [ 280.616234][ T5950] ? _raw_spin_unlock_irq+0x23/0x50 [ 280.621475][ T5950] ? lockdep_hardirqs_on+0x7d/0x100 [ 280.626709][ T5950] ? _raw_spin_unlock_irq+0x2e/0x50 [ 280.631948][ T5950] ? ptrace_notify+0xfe/0x140 [ 280.636667][ T5950] do_syscall_64+0x39/0xb0 [ 280.641105][ T5950] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 280.647047][ T5950] RIP: 0033:0x7f4f6dd107f9 [ 280.651485][ T5950] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 280.671121][ T5950] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 280.679565][ T5950] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 280.687562][ T5950] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [ 280.695561][ T5950] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 280.703558][ T5950] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 280.711556][ T5950] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 280.719556][ T5950] [pid 5964] munmap(0x7f4f650a0000, 16777216./strace-static-x86_64: Process 5970 attached ) = 0 [pid 5949] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5964] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [ 280.722805][ T5958] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 5964] ioctl(4, LOOP_SET_FD, 3 [pid 5965] <... write resumed>) = 16777216 [pid 5963] <... munmap resumed>) = 0 [pid 5965] munmap(0x7f4f650a0000, 16777216 [pid 5963] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5963] ioctl(4, LOOP_SET_FD, 3 [pid 5970] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 5963] <... ioctl resumed>) = 0 [pid 5950] <... openat resumed>) = -1 EIO (Input/output error) [pid 5970] <... rseq resumed>) = 0 [pid 5963] close(3 [pid 5950] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5970] set_robust_list(0x7f4f6607e9a0, 24 [pid 5963] <... close resumed>) = 0 [pid 5950] <... futex resumed>) = 0 [pid 5970] <... set_robust_list resumed>) = 0 [pid 5963] mkdir("./file0", 0777 [pid 5950] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5970] rt_sigprocmask(SIG_SETMASK, [], [pid 5963] <... mkdir resumed>) = 0 [pid 5970] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5963] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5970] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH) = -1 EIO (Input/output error) [pid 5970] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 280.753049][ T5964] loop2: detected capacity change from 0 to 32768 [ 280.765677][ T5963] loop5: detected capacity change from 0 to 32768 [pid 5970] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5966] <... munmap resumed>) = 0 [pid 5964] <... ioctl resumed>) = 0 [pid 5949] close(3) = 0 [pid 5949] close(4) = -1 EBADF (Bad file descriptor) [pid 5949] close(5) = -1 EBADF (Bad file descriptor) [pid 5949] close(6 [pid 5964] close(3 [pid 5949] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5964] <... close resumed>) = 0 [pid 5949] close(7 [pid 5964] mkdir("./file0", 0777 [pid 5949] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5964] <... mkdir resumed>) = 0 [pid 5949] close(8) = -1 EBADF (Bad file descriptor) [pid 5964] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5949] close(9) = -1 EBADF (Bad file descriptor) [pid 5949] close(10) = -1 EBADF (Bad file descriptor) [pid 5949] close(11) = -1 EBADF (Bad file descriptor) [pid 5949] close(12) = -1 EBADF (Bad file descriptor) [pid 5949] close(13) = -1 EBADF (Bad file descriptor) [pid 5949] close(14) = -1 EBADF (Bad file descriptor) [pid 5949] close(15) = -1 EBADF (Bad file descriptor) [pid 5949] close(16) = -1 EBADF (Bad file descriptor) [pid 5949] close(17) = -1 EBADF (Bad file descriptor) [pid 5949] close(18) = -1 EBADF (Bad file descriptor) [pid 5949] close(19) = -1 EBADF (Bad file descriptor) [pid 5949] close(20) = -1 EBADF (Bad file descriptor) [pid 5949] close(21) = -1 EBADF (Bad file descriptor) [pid 5949] close(22) = -1 EBADF (Bad file descriptor) [pid 5949] close(23) = -1 EBADF (Bad file descriptor) [pid 5949] close(24) = -1 EBADF (Bad file descriptor) [pid 5966] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5949] close(25 [pid 5966] <... openat resumed>) = 4 [pid 5949] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5966] ioctl(4, LOOP_SET_FD, 3 [ 280.818320][ T5958] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 280.837613][ T5963] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 280.845065][ T5963] CPU: 0 PID: 5963 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 280.855656][ T5963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [pid 5949] close(26) = -1 EBADF (Bad file descriptor) [pid 5949] close(27) = -1 EBADF (Bad file descriptor) [pid 5949] close(28) = -1 EBADF (Bad file descriptor) [pid 5949] close(29) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5949] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5949] exit_group(0 [pid 5970] <... futex resumed>) = ? [pid 5968] <... futex resumed>) = ? [pid 5950] <... futex resumed>) = ? [pid 5949] <... exit_group resumed>) = ? [pid 5970] +++ exited with 0 +++ [pid 5968] +++ exited with 0 +++ [pid 5950] +++ exited with 0 +++ [pid 5949] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=110, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=62 /* 0.62 s */} --- [pid 5029] umount2("./35", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5029] umount2("./35/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./35/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./35/cgroup.cpu") = 0 [pid 5029] umount2("./35/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./35/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 280.861009][ T5966] loop3: detected capacity change from 0 to 32768 [ 280.865821][ T5963] Call Trace: [ 280.865833][ T5963] [ 280.865844][ T5963] dump_stack_lvl+0x136/0x150 [ 280.883287][ T5963] sysfs_warn_dup+0x80/0xa0 [ 280.887848][ T5963] sysfs_create_dir_ns+0x237/0x290 [ 280.893015][ T5963] ? sysfs_create_mount_point+0xb0/0xb0 [ 280.898618][ T5963] ? spin_bug+0x1c0/0x1c0 [ 280.903048][ T5963] ? do_raw_spin_unlock+0x175/0x230 [ 280.908311][ T5963] kobject_add_internal+0x2c9/0x9c0 [ 280.913575][ T5963] ? kfree+0x11/0x150 [pid 5029] unlink("./35/binderfs") = 0 [pid 5029] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5966] <... ioctl resumed>) = 0 [pid 5966] close(3) = 0 [pid 5966] mkdir("./file0", 0777) = 0 [pid 5966] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5965] <... munmap resumed>) = 0 [pid 5965] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [ 280.917621][ T5963] kobject_init_and_add+0x101/0x170 [ 280.922888][ T5963] ? kobject_create_and_add+0xf0/0xf0 [ 280.928323][ T5963] ? lockdep_init_map_type+0x21e/0x810 [ 280.933852][ T5963] ? lockdep_hardirqs_on+0x7d/0x100 [ 280.939127][ T5963] ? lockdep_init_map_type+0x21e/0x810 [ 280.944648][ T5963] gfs2_sys_fs_add+0x1d5/0x450 [ 280.949460][ T5963] ? recover_store+0x170/0x170 [ 280.954285][ T5963] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 280.960082][ T5963] gfs2_fill_super+0x1312/0x2aa0 [pid 5965] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5965] close(3) = 0 [pid 5965] mkdir("./file0", 0777) = 0 [ 280.965085][ T5963] ? gfs2_reconfigure+0xf90/0xf90 [ 280.970015][ T5965] loop1: detected capacity change from 0 to 32768 [ 280.970141][ T5963] ? snprintf+0xbf/0x100 [ 280.980851][ T5963] ? vsprintf+0x30/0x30 [ 280.985073][ T5963] ? wait_for_completion_io_timeout+0x20/0x20 [ 280.991207][ T5963] ? set_blocksize+0x2d8/0x370 [ 280.996037][ T5963] get_tree_bdev+0x43e/0x7d0 [ 281.000670][ T5963] ? gfs2_reconfigure+0xf90/0xf90 [ 281.005728][ T5963] gfs2_get_tree+0x4e/0x270 [ 281.010269][ T5963] vfs_get_tree+0x8d/0x350 [ 281.014720][ T5963] path_mount+0x136e/0x1e70 [ 281.019261][ T5963] ? putname+0x102/0x140 [ 281.023561][ T5963] ? lockdep_hardirqs_on+0x7d/0x100 [ 281.028793][ T5963] ? finish_automount+0xa30/0xa30 [ 281.033851][ T5963] ? putname+0x102/0x140 [ 281.038121][ T5963] __x64_sys_mount+0x283/0x300 [ 281.042944][ T5963] ? copy_mnt_ns+0xb30/0xb30 [ 281.047571][ T5963] ? lockdep_hardirqs_on+0x7d/0x100 [ 281.052803][ T5963] ? _raw_spin_unlock_irq+0x2e/0x50 [ 281.058044][ T5963] ? ptrace_notify+0xfe/0x140 [ 281.062764][ T5963] do_syscall_64+0x39/0xb0 [ 281.067204][ T5963] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 281.073148][ T5963] RIP: 0033:0x7f4f6dd11c5a [ 281.077583][ T5963] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 281.097219][ T5963] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 281.105814][ T5963] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 281.113819][ T5963] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 281.121813][ T5963] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 281.129808][ T5963] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 281.137803][ T5963] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 281.145812][ T5963] [pid 5965] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5958] <... mount resumed>) = -1 EEXIST (File exists) [ 281.162484][ T5963] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 281.163054][ T5964] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 281.183067][ T5965] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 281.185976][ T5963] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 281.192547][ T5966] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 281.205714][ T5964] CPU: 0 PID: 5964 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 281.216442][ T5964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 281.226540][ T5964] Call Trace: [ 281.229861][ T5964] [ 281.232813][ T5964] dump_stack_lvl+0x136/0x150 [ 281.237549][ T5964] sysfs_warn_dup+0x80/0xa0 [ 281.242091][ T5964] sysfs_create_dir_ns+0x237/0x290 [ 281.247250][ T5964] ? sysfs_create_mount_point+0xb0/0xb0 [ 281.252859][ T5964] ? spin_bug+0x1c0/0x1c0 [ 281.257236][ T5964] ? do_raw_spin_unlock+0x175/0x230 [ 281.262493][ T5964] kobject_add_internal+0x2c9/0x9c0 [ 281.267747][ T5964] ? kfree+0x11/0x150 [ 281.271938][ T5964] kobject_init_and_add+0x101/0x170 [ 281.277171][ T5964] ? kobject_create_and_add+0xf0/0xf0 [ 281.282737][ T5964] ? lockdep_init_map_type+0x21e/0x810 [ 281.288257][ T5964] ? lockdep_hardirqs_on+0x7d/0x100 [ 281.293536][ T5964] ? lockdep_init_map_type+0x21e/0x810 [ 281.299072][ T5964] gfs2_sys_fs_add+0x1d5/0x450 [ 281.303888][ T5964] ? recover_store+0x170/0x170 [ 281.308701][ T5964] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 281.314489][ T5964] gfs2_fill_super+0x1312/0x2aa0 [ 281.319479][ T5964] ? gfs2_reconfigure+0xf90/0xf90 [ 281.324574][ T5964] ? snprintf+0xbf/0x100 [ 281.328855][ T5964] ? vsprintf+0x30/0x30 [ 281.333050][ T5964] ? wait_for_completion_io_timeout+0x20/0x20 [ 281.339162][ T5964] ? set_blocksize+0x2d8/0x370 [ 281.343966][ T5964] get_tree_bdev+0x43e/0x7d0 [ 281.348599][ T5964] ? gfs2_reconfigure+0xf90/0xf90 [ 281.353761][ T5964] gfs2_get_tree+0x4e/0x270 [ 281.358323][ T5964] vfs_get_tree+0x8d/0x350 [ 281.362794][ T5964] path_mount+0x136e/0x1e70 [ 281.367359][ T5964] ? putname+0x102/0x140 [ 281.371654][ T5964] ? lockdep_hardirqs_on+0x7d/0x100 [ 281.376910][ T5964] ? finish_automount+0xa30/0xa30 [ 281.381988][ T5964] ? putname+0x102/0x140 [ 281.386423][ T5964] __x64_sys_mount+0x283/0x300 [ 281.391250][ T5964] ? copy_mnt_ns+0xb30/0xb30 [ 281.395932][ T5964] ? lockdep_hardirqs_on+0x7d/0x100 [ 281.401191][ T5964] ? _raw_spin_unlock_irq+0x2e/0x50 [ 281.406453][ T5964] ? ptrace_notify+0xfe/0x140 [ 281.411221][ T5964] do_syscall_64+0x39/0xb0 [ 281.415684][ T5964] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 281.421639][ T5964] RIP: 0033:0x7f4f6dd11c5a [ 281.426179][ T5964] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 281.445826][ T5964] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 281.454281][ T5964] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 281.462297][ T5964] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 281.470304][ T5964] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 281.478341][ T5964] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 281.486346][ T5964] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 281.494364][ T5964] [ 281.504258][ T5966] CPU: 0 PID: 5966 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [pid 5958] ioctl(4, LOOP_CLR_FD [pid 5963] <... mount resumed>) = -1 EEXIST (File exists) [ 281.514745][ T5966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 281.524845][ T5966] Call Trace: [ 281.528154][ T5966] [ 281.531119][ T5966] dump_stack_lvl+0x136/0x150 [ 281.535868][ T5966] sysfs_warn_dup+0x80/0xa0 [ 281.540479][ T5966] sysfs_create_dir_ns+0x237/0x290 [ 281.545662][ T5966] ? sysfs_create_mount_point+0xb0/0xb0 [ 281.551273][ T5966] ? spin_bug+0x1c0/0x1c0 [ 281.555672][ T5966] ? do_raw_spin_unlock+0x175/0x230 [ 281.560944][ T5966] kobject_add_internal+0x2c9/0x9c0 [ 281.566207][ T5966] ? kfree+0x11/0x150 [ 281.570244][ T5966] kobject_init_and_add+0x101/0x170 [ 281.575496][ T5966] ? kobject_create_and_add+0xf0/0xf0 [ 281.581017][ T5966] ? lockdep_init_map_type+0x21e/0x810 [ 281.586553][ T5966] ? lockdep_hardirqs_on+0x7d/0x100 [ 281.591807][ T5966] ? lockdep_init_map_type+0x21e/0x810 [ 281.597311][ T5966] gfs2_sys_fs_add+0x1d5/0x450 [ 281.602103][ T5966] ? recover_store+0x170/0x170 [ 281.606916][ T5966] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 281.612683][ T5966] gfs2_fill_super+0x1312/0x2aa0 [ 281.617673][ T5966] ? gfs2_reconfigure+0xf90/0xf90 [ 281.622741][ T5966] ? snprintf+0xbf/0x100 [ 281.627038][ T5966] ? vsprintf+0x30/0x30 [ 281.631257][ T5966] ? wait_for_completion_io_timeout+0x20/0x20 [ 281.637368][ T5966] ? set_blocksize+0x2d8/0x370 [ 281.642173][ T5966] get_tree_bdev+0x43e/0x7d0 [ 281.646806][ T5966] ? gfs2_reconfigure+0xf90/0xf90 [ 281.651865][ T5966] gfs2_get_tree+0x4e/0x270 [ 281.656400][ T5966] vfs_get_tree+0x8d/0x350 [ 281.660849][ T5966] path_mount+0x136e/0x1e70 [ 281.665385][ T5966] ? putname+0x102/0x140 [ 281.669656][ T5966] ? lockdep_hardirqs_on+0x7d/0x100 [ 281.674888][ T5966] ? finish_automount+0xa30/0xa30 [ 281.680066][ T5966] ? putname+0x102/0x140 [ 281.684366][ T5966] __x64_sys_mount+0x283/0x300 [ 281.689181][ T5966] ? copy_mnt_ns+0xb30/0xb30 [ 281.693812][ T5966] ? lockdep_hardirqs_on+0x7d/0x100 [ 281.699047][ T5966] ? _raw_spin_unlock_irq+0x2e/0x50 [ 281.704305][ T5966] ? ptrace_notify+0xfe/0x140 [ 281.709031][ T5966] do_syscall_64+0x39/0xb0 [ 281.713495][ T5966] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 281.719490][ T5966] RIP: 0033:0x7f4f6dd11c5a [ 281.723944][ T5966] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 281.743589][ T5966] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 281.752055][ T5966] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 281.760059][ T5966] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 281.768057][ T5966] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 281.776050][ T5966] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 281.784051][ T5966] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 281.792050][ T5966] [ 281.795623][ T5965] CPU: 0 PID: 5965 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 281.806124][ T5965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 281.816225][ T5965] Call Trace: [ 281.819523][ T5965] [ 281.822473][ T5965] dump_stack_lvl+0x136/0x150 [ 281.827199][ T5965] sysfs_warn_dup+0x80/0xa0 [ 281.831735][ T5965] sysfs_create_dir_ns+0x237/0x290 [ 281.836876][ T5965] ? sysfs_create_mount_point+0xb0/0xb0 [ 281.842453][ T5965] ? spin_bug+0x1c0/0x1c0 [ 281.846821][ T5965] ? do_raw_spin_unlock+0x175/0x230 [ 281.852076][ T5965] kobject_add_internal+0x2c9/0x9c0 [ 281.857304][ T5965] ? kfree+0x11/0x150 [ 281.861309][ T5965] kobject_init_and_add+0x101/0x170 [ 281.866533][ T5965] ? kobject_create_and_add+0xf0/0xf0 [ 281.871928][ T5965] ? lockdep_init_map_type+0x21e/0x810 [ 281.877524][ T5965] ? lockdep_hardirqs_on+0x7d/0x100 [ 281.882810][ T5965] ? lockdep_init_map_type+0x21e/0x810 [ 281.888338][ T5965] gfs2_sys_fs_add+0x1d5/0x450 [ 281.893137][ T5965] ? recover_store+0x170/0x170 [ 281.897941][ T5965] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 281.903701][ T5965] gfs2_fill_super+0x1312/0x2aa0 [ 281.908694][ T5965] ? gfs2_reconfigure+0xf90/0xf90 [ 281.913748][ T5965] ? snprintf+0xbf/0x100 [ 281.918025][ T5965] ? vsprintf+0x30/0x30 [ 281.922225][ T5965] ? wait_for_completion_io_timeout+0x20/0x20 [ 281.928326][ T5965] ? set_blocksize+0x2d8/0x370 [ 281.933129][ T5965] get_tree_bdev+0x43e/0x7d0 [ 281.937754][ T5965] ? gfs2_reconfigure+0xf90/0xf90 [ 281.942811][ T5965] gfs2_get_tree+0x4e/0x270 [ 281.947343][ T5965] vfs_get_tree+0x8d/0x350 [ 281.951789][ T5965] path_mount+0x136e/0x1e70 [ 281.956325][ T5965] ? putname+0x102/0x140 [ 281.960594][ T5965] ? lockdep_hardirqs_on+0x7d/0x100 [ 281.965824][ T5965] ? finish_automount+0xa30/0xa30 [ 281.970881][ T5965] ? putname+0x102/0x140 [ 281.975158][ T5965] __x64_sys_mount+0x283/0x300 [ 281.979957][ T5965] ? copy_mnt_ns+0xb30/0xb30 [ 281.984579][ T5965] ? lockdep_hardirqs_on+0x7d/0x100 [ 281.989809][ T5965] ? _raw_spin_unlock_irq+0x2e/0x50 [ 281.995045][ T5965] ? ptrace_notify+0xfe/0x140 [ 281.999765][ T5965] do_syscall_64+0x39/0xb0 [ 282.004207][ T5965] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 282.010141][ T5965] RIP: 0033:0x7f4f6dd11c5a [ 282.014609][ T5965] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 282.034241][ T5965] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 282.042684][ T5965] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 282.050684][ T5965] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 282.058680][ T5965] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [pid 5963] ioctl(4, LOOP_CLR_FD [pid 5957] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 282.066674][ T5965] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 282.074675][ T5965] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 282.082757][ T5965] [ 282.085879][ T5964] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 5957] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 282.125982][ T5964] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 282.148079][ T5966] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 282.162108][ T5966] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 5966] <... mount resumed>) = -1 EEXIST (File exists) [pid 5966] ioctl(4, LOOP_CLR_FD [pid 5957] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5957] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5957] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5957] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5975 attached [pid 5975] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5957] <... clone3 resumed> => {parent_tid=[106]}, 88) = 106 [pid 5975] <... rseq resumed>) = 0 [ 282.174697][ T5965] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 282.190175][ T5965] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 5957] rt_sigprocmask(SIG_SETMASK, [], [pid 5975] set_robust_list(0x7f4f6609f9a0, 24 [pid 5957] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5975] <... set_robust_list resumed>) = 0 [pid 5957] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5975] rt_sigprocmask(SIG_SETMASK, [], [pid 5957] <... futex resumed>) = 0 [pid 5975] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5957] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5975] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 5965] <... mount resumed>) = -1 EEXIST (File exists) [pid 5975] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5965] ioctl(4, LOOP_CLR_FD [pid 5975] <... futex resumed>) = 1 [pid 5957] <... futex resumed>) = 0 [pid 5975] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5957] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5975] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5957] <... futex resumed>) = 0 [pid 5975] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5957] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5975] <... futex resumed>) = 0 [pid 5957] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5975] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5957] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5975] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5957] <... futex resumed>) = 0 [pid 5975] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5957] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5975] <... futex resumed>) = 0 [pid 5957] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5975] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5964] <... mount resumed>) = -1 EEXIST (File exists) [pid 5964] ioctl(4, LOOP_CLR_FD [pid 5959] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5959] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5960] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5960] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5960] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 5960] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5960] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5960] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5976 attached [pid 5976] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5960] <... clone3 resumed> => {parent_tid=[110]}, 88) = 110 [pid 5976] <... rseq resumed>) = 0 [pid 5960] rt_sigprocmask(SIG_SETMASK, [], [pid 5959] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5976] set_robust_list(0x7f4f6609f9a0, 24 [pid 5960] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5959] <... mmap resumed>) = 0x7f4f6607f000 [pid 5976] <... set_robust_list resumed>) = 0 [pid 5960] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5959] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5976] rt_sigprocmask(SIG_SETMASK, [], [pid 5960] <... futex resumed>) = 0 [pid 5959] <... mprotect resumed>) = 0 [pid 5976] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5960] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5959] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5976] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5959] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5976] <... openat resumed>) = 3 [pid 5959] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 5977 attached [pid 5976] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5977] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5976] <... futex resumed>) = 1 [pid 5962] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5960] <... futex resumed>) = 0 [pid 5959] <... clone3 resumed> => {parent_tid=[111]}, 88) = 111 [pid 5977] <... rseq resumed>) = 0 [pid 5976] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5960] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5959] rt_sigprocmask(SIG_SETMASK, [], [pid 5977] set_robust_list(0x7f4f6609f9a0, 24 [pid 5976] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5960] <... futex resumed>) = 0 [pid 5959] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5977] <... set_robust_list resumed>) = 0 [pid 5976] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5960] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5959] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5977] rt_sigprocmask(SIG_SETMASK, [], [pid 5976] <... futex resumed>) = 0 [pid 5960] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5959] <... futex resumed>) = 0 [pid 5977] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5976] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5960] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5959] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5977] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5976] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5960] <... futex resumed>) = 0 [pid 5977] <... openat resumed>) = 3 [pid 5976] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5960] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5977] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5976] <... futex resumed>) = 0 [pid 5960] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5977] <... futex resumed>) = 1 [pid 5976] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5959] <... futex resumed>) = 0 [pid 5977] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5959] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5977] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5959] <... futex resumed>) = 0 [pid 5977] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5959] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5977] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5977] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5959] <... futex resumed>) = 0 [pid 5977] <... futex resumed>) = 1 [pid 5959] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5958] <... ioctl resumed>) = 0 [pid 5977] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5959] <... futex resumed>) = 0 [pid 5977] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5959] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5977] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5958] close(4) = 0 [pid 5958] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5958] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5957] close(3) = 0 [pid 5957] close(4) = -1 EBADF (Bad file descriptor) [pid 5957] close(5) = -1 EBADF (Bad file descriptor) [pid 5957] close(6) = -1 EBADF (Bad file descriptor) [pid 5957] close(7) = -1 EBADF (Bad file descriptor) [pid 5957] close(8) = -1 EBADF (Bad file descriptor) [pid 5957] close(9) = -1 EBADF (Bad file descriptor) [pid 5957] close(10) = -1 EBADF (Bad file descriptor) [pid 5957] close(11) = -1 EBADF (Bad file descriptor) [pid 5957] close(12) = -1 EBADF (Bad file descriptor) [pid 5957] close(13) = -1 EBADF (Bad file descriptor) [pid 5957] close(14) = -1 EBADF (Bad file descriptor) [pid 5977] <... futex resumed>) = 1 [pid 5959] <... futex resumed>) = 0 [pid 5957] close(15 [pid 5977] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5957] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5957] close(16) = -1 EBADF (Bad file descriptor) [pid 5957] close(17) = -1 EBADF (Bad file descriptor) [pid 5957] close(18) = -1 EBADF (Bad file descriptor) [pid 5957] close(19) = -1 EBADF (Bad file descriptor) [pid 5957] close(20) = -1 EBADF (Bad file descriptor) [pid 5957] close(21) = -1 EBADF (Bad file descriptor) [pid 5961] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5957] close(22) = -1 EBADF (Bad file descriptor) [pid 5957] close(23) = -1 EBADF (Bad file descriptor) [pid 5957] close(24) = -1 EBADF (Bad file descriptor) [pid 5957] close(25) = -1 EBADF (Bad file descriptor) [pid 5957] close(26) = -1 EBADF (Bad file descriptor) [pid 5957] close(27) = -1 EBADF (Bad file descriptor) [pid 5957] close(28) = -1 EBADF (Bad file descriptor) [pid 5957] close(29) = -1 EBADF (Bad file descriptor) [pid 5957] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory ) = 156 [pid 5957] exit_group(0 [pid 5975] <... futex resumed>) = ? [pid 5957] <... exit_group resumed>) = ? [pid 5975] +++ exited with 0 +++ [pid 5958] <... futex resumed>) = ? [pid 5958] +++ exited with 0 +++ [pid 5957] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=104, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=50 /* 0.50 s */} --- [pid 5031] umount2("./35", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5031] umount2("./35/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./35/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./35/cgroup.cpu") = 0 [pid 5031] umount2("./35/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./35/binderfs", [pid 5961] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./35/binderfs") = 0 [pid 5031] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./35/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./35/file0") = 0 [pid 5031] umount2("./35/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5963] <... ioctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./35/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./35/cgroup") = 0 [pid 5962] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] umount2("./35/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./35/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5962] <... futex resumed>) = 0 [pid 5031] unlink("./35/cgroup.net" [pid 5962] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5031] <... unlink resumed>) = 0 [pid 5031] getdents64(3, [pid 5962] <... mmap resumed>) = 0x7f4f6607f000 [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5962] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5031] rmdir("./35" [pid 5962] <... mprotect resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5962] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5031] mkdir("./36", 0777 [pid 5962] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5962] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3 [pid 5962] <... clone3 resumed> => {parent_tid=[102]}, 88) = 102 [pid 5031] <... close resumed>) = 0 [pid 5962] rt_sigprocmask(SIG_SETMASK, [], [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] <... umount2 resumed>) = 0 ./strace-static-x86_64: Process 5979 attached [pid 5962] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5961] <... futex resumed>) = 0 [pid 5979] set_robust_list(0x55555654e6a0, 24 [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 107 [pid 5962] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5979] <... set_robust_list resumed>) = 0 [pid 5962] <... futex resumed>) = 0 [pid 5963] close(4 [pid 5961] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5979] chdir("./36" [pid 5963] <... close resumed>) = 0 [pid 5962] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5961] <... mmap resumed>) = 0x7f4f6607f000 [pid 5979] <... chdir resumed>) = 0 [pid 5963] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5961] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5959] close(3 [pid 5979] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5963] <... futex resumed>) = 0 [pid 5979] <... prctl resumed>) = 0 [pid 5963] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5979] setpgid(0, 0) = 0 [pid 5979] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 5959] <... close resumed>) = 0 [pid 5979] <... symlink resumed>) = 0 [pid 5961] <... mprotect resumed>) = 0 [pid 5959] close(4 [pid 5979] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5979] <... symlink resumed>) = 0 [pid 5961] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5959] close(5 [pid 5979] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 5029] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5979] <... symlink resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5979] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5029] newfstatat(AT_FDCWD, "./35/file0", [pid 5979] write(3, "1000", 4) = 4 [pid 5961] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5979] close(3 [pid 5959] close(6 [pid 5979] <... close resumed>) = 0 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5979] symlink("/dev/binderfs", "./binderfs" [pid 5959] close(7 [pid 5979] <... symlink resumed>) = 0 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5979] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5959] close(8 [pid 5979] <... futex resumed>) = 0 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5979] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5959] close(9 [pid 5029] <... openat resumed>) = 4 [pid 5979] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] newfstatat(4, "", [pid 5979] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5961] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5959] close(10 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5979] <... mprotect resumed>) = 0 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] getdents64(4, [pid 5979] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5959] close(11 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5979] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] getdents64(4, [pid 5979] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5959] close(12 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 ./strace-static-x86_64: Process 5981 attached [pid 5961] <... clone3 resumed> => {parent_tid=[109]}, 88) = 109 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] close(4 [pid 5981] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5979] <... clone3 resumed> => {parent_tid=[108]}, 88) = 108 [pid 5961] rt_sigprocmask(SIG_SETMASK, [], [pid 5959] close(13 [pid 5029] <... close resumed>) = 0 [pid 5981] <... rseq resumed>) = 0 [pid 5979] rt_sigprocmask(SIG_SETMASK, [], [pid 5961] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] rmdir("./35/file0" [pid 5981] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5979] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5959] close(14 [pid 5029] <... rmdir resumed>) = 0 [pid 5981] <... set_robust_list resumed>) = 0 [pid 5979] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./35/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5981] rt_sigprocmask(SIG_SETMASK, [], [pid 5979] <... futex resumed>) = 0 [pid 5959] close(15 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5981] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5979] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] newfstatat(AT_FDCWD, "./35/cgroup", [pid 5981] memfd_create("syzkaller", 0 [pid 5961] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5959] close(16 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5981] <... memfd_create resumed>) = 3 [pid 5961] <... futex resumed>) = 0 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] unlink("./35/cgroup" [pid 5981] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5962] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5959] close(17 [pid 5029] <... unlink resumed>) = 0 [pid 5981] <... mmap resumed>) = 0x7f4f650a0000 [pid 5962] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./35/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5962] <... futex resumed>) = 0 [pid 5961] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5959] close(18 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5962] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] newfstatat(AT_FDCWD, "./35/cgroup.net", [pid 5962] <... mmap resumed>) = 0x7f4f6605e000 [pid 5959] close(19 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5962] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] unlink("./35/cgroup.net" [pid 5962] <... mprotect resumed>) = 0 [pid 5959] close(20 [pid 5029] <... unlink resumed>) = 0 [pid 5962] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] getdents64(3, [pid 5962] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5959] close(21 [pid 5029] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5962] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] close(3./strace-static-x86_64: Process 5982 attached [pid 5959] close(22 [pid 5029] <... close resumed>) = 0 [pid 5029] rmdir("./35" [pid 5982] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 5962] <... clone3 resumed> => {parent_tid=[103]}, 88) = 103 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... rmdir resumed>) = 0 [pid 5982] <... rseq resumed>) = 0 [pid 5962] rt_sigprocmask(SIG_SETMASK, [], [pid 5959] close(23 [pid 5029] mkdir("./36", 0777 [pid 5982] set_robust_list(0x7f4f6607e9a0, 24 [pid 5962] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... mkdir resumed>) = 0 [pid 5982] <... set_robust_list resumed>) = 0 [pid 5962] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 5959] close(24 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5982] rt_sigprocmask(SIG_SETMASK, [], [pid 5962] <... futex resumed>) = 0 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... openat resumed>) = 3 [pid 5982] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5962] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5959] close(25 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 5982] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] close(3 [pid 5982] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5959] close(26 [pid 5029] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5983 attached [pid 5983] set_robust_list(0x55555654e6a0, 24 [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 114 [pid 5983] <... set_robust_list resumed>) = 0 [pid 5983] chdir("./36") = 0 [pid 5983] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5983] setpgid(0, 0) = 0 [pid 5983] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0 [pid 5983] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0 [pid 5983] symlink("/syzcgroup/net/syz0", "./cgroup.net" [pid 5982] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5983] <... symlink resumed>) = 0 [pid 5983] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5983] <... openat resumed>) = 3 [pid 5983] write(3, "1000", 4) = 4 [pid 5983] close(3) = 0 [pid 5983] symlink("/dev/binderfs", "./binderfs" [pid 5959] close(27 [pid 5983] <... symlink resumed>) = 0 [pid 5982] <... futex resumed>) = 1 [pid 5962] <... futex resumed>) = 0 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5983] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5959] close(28 [pid 5983] <... futex resumed>) = 0 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5983] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5959] close(29 [pid 5983] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5959] <... close resumed>) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5983] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5959] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5983] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5983] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5984 attached [pid 5984] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5983] <... clone3 resumed> => {parent_tid=[115]}, 88) = 115 [pid 5984] <... rseq resumed>) = 0 [pid 5983] rt_sigprocmask(SIG_SETMASK, [], [pid 5959] <... write resumed>) = 156 [pid 5984] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5983] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5982] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5962] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 5959] exit_group(0 [pid 5984] <... set_robust_list resumed>) = 0 [pid 5983] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5977] <... futex resumed>) = ? [pid 5963] <... futex resumed>) = ? [pid 5959] <... exit_group resumed>) = ? [pid 5961] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5984] rt_sigprocmask(SIG_SETMASK, [], [pid 5983] <... futex resumed>) = 0 [pid 5977] +++ exited with 0 +++ [pid 5963] +++ exited with 0 +++ [pid 5984] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5983] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5984] memfd_create("syzkaller", 0) = 3 [pid 5959] +++ exited with 0 +++ [pid 5984] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5962] <... futex resumed>) = 0 [pid 5984] <... mmap resumed>) = 0x7f4f650a0000 [pid 5982] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5962] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=109, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=53 /* 0.53 s */} --- [pid 5961] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] umount2("./36", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5961] <... futex resumed>) = 0 [pid 5034] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5034] umount2("./36/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./36/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./36/cgroup.cpu" [pid 5961] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5034] <... unlink resumed>) = 0 [pid 5034] umount2("./36/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./36/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./36/binderfs") = 0 [pid 5034] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./36/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./36/file0") = 0 [pid 5961] <... mmap resumed>) = 0x7f4f6605e000 [pid 5034] umount2("./36/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5961] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./36/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./36/cgroup" [pid 5961] <... mprotect resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5982] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5962] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5034] umount2("./36/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5982] <... futex resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5982] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5034] newfstatat(AT_FDCWD, "./36/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./36/cgroup.net") = 0 [pid 5034] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5961] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5034] close(3 [pid 5961] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5034] <... close resumed>) = 0 [pid 5034] rmdir("./36" [pid 5961] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} [pid 5034] <... rmdir resumed>) = 0 [pid 5034] mkdir("./37", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5986 attached [pid 5986] set_robust_list(0x55555654e6a0, 24 [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 112 [pid 5986] <... set_robust_list resumed>) = 0 [pid 5986] chdir("./37") = 0 [pid 5986] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5986] setpgid(0, 0) = 0 [pid 5986] symlink("/syzcgroup/unified/syz5", "./cgroup") = 0 [pid 5986] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu") = 0 [pid 5960] close(3) = 0 [pid 5960] close(4) = 0 [pid 5960] close(5) = -1 EBADF (Bad file descriptor) [pid 5986] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 5960] close(6 [pid 5986] <... symlink resumed>) = 0 [pid 5960] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5960] close(7 [pid 5986] <... openat resumed>) = 3 [pid 5960] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5960] close(8 [pid 5986] write(3, "1000", 4 [pid 5960] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] <... write resumed>) = 4 [pid 5960] close(9 [pid 5986] close(3 [pid 5960] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] <... close resumed>) = 0 [pid 5960] close(10 [pid 5986] symlink("/dev/binderfs", "./binderfs" [pid 5960] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] <... symlink resumed>) = 0 [pid 5960] close(11 [pid 5986] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5960] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] <... futex resumed>) = 0 [pid 5960] close(12 [pid 5986] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5960] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5960] close(13 [pid 5986] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5960] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] <... mprotect resumed>) = 0 [pid 5960] close(14 [pid 5986] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5960] <... close resumed>) = -1 EBADF (Bad file descriptor) ./strace-static-x86_64: Process 5985 attached [pid 5986] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5961] <... clone3 resumed> => {parent_tid=[110]}, 88) = 110 [pid 5960] close(15 [pid 5986] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5960] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5960] close(16 [pid 5986] <... clone3 resumed> => {parent_tid=[113]}, 88) = 113 [pid 5960] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] rt_sigprocmask(SIG_SETMASK, [], [pid 5960] close(17 [pid 5986] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5960] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5960] close(18 [pid 5986] <... futex resumed>) = 0 [pid 5960] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5960] close(19) = -1 EBADF (Bad file descriptor) [pid 5960] close(20) = -1 EBADF (Bad file descriptor) [pid 5960] close(21) = -1 EBADF (Bad file descriptor) [pid 5960] close(22) = -1 EBADF (Bad file descriptor) [pid 5960] close(23) = -1 EBADF (Bad file descriptor) [pid 5960] close(24) = -1 EBADF (Bad file descriptor) [pid 5960] close(25) = -1 EBADF (Bad file descriptor) [pid 5960] close(26) = -1 EBADF (Bad file descriptor) [pid 5960] close(27) = -1 EBADF (Bad file descriptor) [pid 5960] close(28) = -1 EBADF (Bad file descriptor) [pid 5960] close(29) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5960] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5960] exit_group(0./strace-static-x86_64: Process 5987 attached [pid 5985] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 5976] <... futex resumed>) = ? [pid 5961] rt_sigprocmask(SIG_SETMASK, [], [pid 5960] <... exit_group resumed>) = ? [pid 5987] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5976] +++ exited with 0 +++ [pid 5987] <... rseq resumed>) = 0 [pid 5987] set_robust_list(0x7f4f6d4c09a0, 24) = 0 [pid 5987] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5987] memfd_create("syzkaller", 0) = 3 [pid 5987] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 ./strace-static-x86_64: Process 5978 attached [pid 5978] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5985] <... rseq resumed>) = 0 [pid 5961] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5985] set_robust_list(0x7f4f6607e9a0, 24 [pid 5961] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 5985] <... set_robust_list resumed>) = 0 [pid 5961] <... futex resumed>) = 0 [pid 5985] rt_sigprocmask(SIG_SETMASK, [], [pid 5961] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5985] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5978] <... rseq resumed>) = 0 [pid 5978] set_robust_list(0x7f4f6609f9a0, 24) = 0 [pid 5978] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5978] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 5978] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5978] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5985] ioctl(-1, VFAT_IOCTL_READDIR_SHORT, 0) = -1 EBADF (Bad file descriptor) [pid 5985] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5961] <... futex resumed>) = 0 [pid 5985] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5961] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 5985] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5961] <... futex resumed>) = 0 [pid 5961] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5985] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5961] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5985] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5964] <... ioctl resumed>) = ? [pid 5964] +++ exited with 0 +++ [pid 5960] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=108, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=55 /* 0.55 s */} --- [pid 5033] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5033] umount2("./37", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5033] umount2("./37/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./37/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./37/cgroup.cpu") = 0 [pid 5033] umount2("./37/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./37/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./37/binderfs") = 0 [pid 5033] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./37/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 ./strace-static-x86_64: Process 5980 attached [pid 5980] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5033] getdents64(4, [pid 5980] <... rseq resumed>) = 0 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5980] set_robust_list(0x7f4f6609f9a0, 24 [pid 5033] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5980] <... set_robust_list resumed>) = 0 [pid 5033] close(4) = 0 [pid 5980] rt_sigprocmask(SIG_SETMASK, [], [pid 5033] rmdir("./37/file0" [pid 5980] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5033] umount2("./37/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5980] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5980] <... openat resumed>) = 3 [pid 5033] newfstatat(AT_FDCWD, "./37/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5980] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5033] unlink("./37/cgroup" [pid 5980] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5033] <... unlink resumed>) = 0 [pid 5033] umount2("./37/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./37/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./37/cgroup.net") = 0 [pid 5033] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./37") = 0 [pid 5033] mkdir("./38", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5988 attached , child_tidptr=0x55555654e690) = 111 [pid 5988] set_robust_list(0x55555654e6a0, 24) = 0 [pid 5988] chdir("./38") = 0 [pid 5988] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5988] setpgid(0, 0) = 0 [pid 5988] symlink("/syzcgroup/unified/syz2", "./cgroup") = 0 [pid 5988] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu") = 0 [pid 5988] symlink("/syzcgroup/net/syz2", "./cgroup.net") = 0 [pid 5988] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5988] write(3, "1000", 4) = 4 [pid 5988] close(3) = 0 [pid 5988] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5988] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5988] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5988] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5988] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5032] kill(-107, SIGKILL [pid 5988] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5985] <... futex resumed>) = ? [pid 5980] <... futex resumed>) = ? [pid 5032] <... kill resumed>) = 0 [pid 5985] +++ killed by SIGKILL +++ [pid 5032] kill(107, SIGKILL [pid 5980] +++ killed by SIGKILL +++ [pid 5032] <... kill resumed>) = 0 [pid 5988] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5989 attached => {parent_tid=[112]}, 88) = 112 [pid 5989] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053) = 0 [pid 5988] rt_sigprocmask(SIG_SETMASK, [], [pid 5989] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5988] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5989] <... set_robust_list resumed>) = 0 [pid 5988] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5989] rt_sigprocmask(SIG_SETMASK, [], [pid 5988] <... futex resumed>) = 0 [pid 5989] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5988] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5989] memfd_create("syzkaller", 0) = 3 [pid 5989] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5030] kill(-100, SIGKILL [pid 5978] <... futex resumed>) = ? [pid 5982] <... futex resumed>) = ? [pid 5030] <... kill resumed>) = 0 [pid 5982] +++ killed by SIGKILL +++ [pid 5978] +++ killed by SIGKILL +++ [pid 5030] kill(100, SIGKILL) = 0 [pid 5965] <... ioctl resumed>) = ? [pid 5981] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5965] +++ killed by SIGKILL +++ [pid 5961] +++ killed by SIGKILL +++ [pid 5984] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5966] <... ioctl resumed>) = ? [pid 5966] +++ killed by SIGKILL +++ [pid 5962] +++ killed by SIGKILL +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=107, si_uid=0, si_status=SIGKILL, si_utime=4 /* 0.04 s */, si_stime=70 /* 0.70 s */} --- [pid 5032] umount2("./36", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=100, si_uid=0, si_status=SIGKILL, si_utime=8 /* 0.08 s */, si_stime=66 /* 0.66 s */} --- [pid 5032] openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] restart_syscall(<... resuming interrupted kill ...> [pid 5032] <... openat resumed>) = 3 [pid 5030] <... restart_syscall resumed>) = 0 [pid 5032] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5032] umount2("./36/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./36/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./36/cgroup.cpu" [pid 5030] umount2("./35", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... unlink resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] umount2("./36/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./36/binderfs", [pid 5030] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] newfstatat(3, "", [pid 5032] unlink("./36/binderfs") = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] getdents64(3, [pid 5032] newfstatat(AT_FDCWD, "./36/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5032] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] umount2("./35/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5032] newfstatat(4, "", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] newfstatat(AT_FDCWD, "./35/cgroup.cpu", [pid 5032] getdents64(4, [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] unlink("./35/cgroup.cpu" [pid 5032] getdents64(4, [pid 5030] <... unlink resumed>) = 0 [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] umount2("./35/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] close(4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... close resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./35/binderfs", [pid 5032] rmdir("./36/file0" [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5030] unlink("./35/binderfs" [pid 5032] umount2("./36/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... unlink resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./36/cgroup", [pid 5030] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] unlink("./36/cgroup" [pid 5030] newfstatat(AT_FDCWD, "./35/file0", [pid 5032] <... unlink resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./36/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./36/cgroup.net", [pid 5030] openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./36/cgroup.net" [pid 5030] <... openat resumed>) = 4 [pid 5032] <... unlink resumed>) = 0 [pid 5030] newfstatat(4, "", [pid 5032] getdents64(3, [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] getdents64(4, [pid 5032] close(3) = 0 [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5032] rmdir("./36" [pid 5030] getdents64(4, [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5032] mkdir("./37", 0777 [pid 5030] close(4 [pid 5032] <... mkdir resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5030] rmdir("./35/file0" [pid 5032] <... openat resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5030] <... rmdir resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] umount2("./35/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] close(3) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] newfstatat(AT_FDCWD, "./35/cgroup", ./strace-static-x86_64: Process 5990 attached {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5990] set_robust_list(0x55555654e6a0, 24 [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 111 [pid 5990] <... set_robust_list resumed>) = 0 [pid 5030] unlink("./35/cgroup" [pid 5990] chdir("./37" [pid 5030] <... unlink resumed>) = 0 [pid 5990] <... chdir resumed>) = 0 [pid 5030] umount2("./35/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5990] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5990] setpgid(0, 0) = 0 [pid 5030] newfstatat(AT_FDCWD, "./35/cgroup.net", [pid 5990] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5990] <... symlink resumed>) = 0 [pid 5990] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 5030] unlink("./35/cgroup.net" [pid 5990] <... symlink resumed>) = 0 [pid 5990] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 5030] <... unlink resumed>) = 0 [pid 5990] <... symlink resumed>) = 0 [pid 5030] getdents64(3, [pid 5990] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5990] <... openat resumed>) = 3 [pid 5030] close(3 [pid 5990] write(3, "1000", 4 [pid 5030] <... close resumed>) = 0 [pid 5990] <... write resumed>) = 4 [pid 5030] rmdir("./35" [pid 5990] close(3) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5990] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5030] mkdir("./36", 0777 [pid 5990] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5990] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5990] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5030] <... openat resumed>) = 3 [pid 5990] <... mprotect resumed>) = 0 [pid 5990] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5990] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5990] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) ./strace-static-x86_64: Process 5991 attached [pid 5030] close(3 [pid 5991] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5990] <... clone3 resumed> => {parent_tid=[112]}, 88) = 112 [pid 5991] <... rseq resumed>) = 0 [pid 5990] rt_sigprocmask(SIG_SETMASK, [], [pid 5030] <... close resumed>) = 0 [pid 5991] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5990] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5991] <... set_robust_list resumed>) = 0 [pid 5990] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5991] rt_sigprocmask(SIG_SETMASK, [], [pid 5990] <... futex resumed>) = 0 [pid 5991] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5990] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5991] memfd_create("syzkaller", 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 104 [pid 5991] <... memfd_create resumed>) = 3 [pid 5991] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 ./strace-static-x86_64: Process 5992 attached [pid 5992] set_robust_list(0x55555654e6a0, 24) = 0 [pid 5992] chdir("./36") = 0 [pid 5992] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5987] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5992] <... prctl resumed>) = 0 [pid 5992] setpgid(0, 0) = 0 [pid 5992] symlink("/syzcgroup/unified/syz3", "./cgroup") = 0 [pid 5992] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu") = 0 [pid 5992] symlink("/syzcgroup/net/syz3", "./cgroup.net") = 0 [pid 5992] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5992] write(3, "1000", 4) = 4 [pid 5992] close(3) = 0 [pid 5992] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5992] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5992] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5992] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5992] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5992] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 5993 attached [pid 5993] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5992] <... clone3 resumed> => {parent_tid=[105]}, 88) = 105 [pid 5993] <... rseq resumed>) = 0 [pid 5992] rt_sigprocmask(SIG_SETMASK, [], [pid 5993] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5992] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5993] <... set_robust_list resumed>) = 0 [pid 5993] rt_sigprocmask(SIG_SETMASK, [], [pid 5992] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5993] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5992] <... futex resumed>) = 0 [pid 5992] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5993] memfd_create("syzkaller", 0) = 3 [pid 5993] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5989] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5981] <... write resumed>) = 16777216 [pid 5981] munmap(0x7f4f650a0000, 16777216 [pid 5984] <... write resumed>) = 16777216 [pid 5984] munmap(0x7f4f650a0000, 16777216 [pid 5981] <... munmap resumed>) = 0 [pid 5981] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5981] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5981] close(3 [pid 5984] <... munmap resumed>) = 0 [pid 5981] <... close resumed>) = 0 [pid 5981] mkdir("./file0", 0777) = 0 [pid 5981] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5984] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [ 284.508075][ T5981] loop4: detected capacity change from 0 to 32768 [pid 5984] ioctl(4, LOOP_SET_FD, 3 [pid 5991] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5984] <... ioctl resumed>) = 0 [ 284.553561][ T5984] loop0: detected capacity change from 0 to 32768 [ 284.563202][ T5981] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [pid 5984] close(3) = 0 [pid 5984] mkdir("./file0", 0777) = 0 [ 284.596043][ T5981] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 284.637354][ T5984] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 284.644903][ T5984] CPU: 1 PID: 5984 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 284.655381][ T5984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 284.665488][ T5984] Call Trace: [ 284.668805][ T5984] [ 284.671775][ T5984] dump_stack_lvl+0x136/0x150 [ 284.676532][ T5984] sysfs_warn_dup+0x80/0xa0 [ 284.681091][ T5984] sysfs_create_dir_ns+0x237/0x290 [ 284.686257][ T5984] ? sysfs_create_mount_point+0xb0/0xb0 [ 284.691858][ T5984] ? spin_bug+0x1c0/0x1c0 [ 284.696252][ T5984] ? do_raw_spin_unlock+0x175/0x230 [ 284.701511][ T5984] kobject_add_internal+0x2c9/0x9c0 [ 284.706767][ T5984] ? kfree+0x11/0x150 [ 284.710801][ T5984] kobject_init_and_add+0x101/0x170 [ 284.716057][ T5984] ? kobject_create_and_add+0xf0/0xf0 [ 284.721494][ T5984] ? lockdep_init_map_type+0x21e/0x810 [ 284.727012][ T5984] ? lockdep_hardirqs_on+0x7d/0x100 [ 284.732268][ T5984] ? lockdep_init_map_type+0x21e/0x810 [ 284.737790][ T5984] gfs2_sys_fs_add+0x1d5/0x450 [ 284.742605][ T5984] ? recover_store+0x170/0x170 [ 284.747418][ T5984] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 284.753203][ T5984] gfs2_fill_super+0x1312/0x2aa0 [ 284.758202][ T5984] ? gfs2_reconfigure+0xf90/0xf90 [ 284.763284][ T5984] ? snprintf+0xbf/0x100 [ 284.767583][ T5984] ? vsprintf+0x30/0x30 [ 284.772006][ T5984] ? wait_for_completion_io_timeout+0x20/0x20 [ 284.778138][ T5984] ? set_blocksize+0x2d8/0x370 [ 284.783007][ T5984] get_tree_bdev+0x43e/0x7d0 [ 284.787745][ T5984] ? gfs2_reconfigure+0xf90/0xf90 [ 284.792837][ T5984] gfs2_get_tree+0x4e/0x270 [ 284.797398][ T5984] vfs_get_tree+0x8d/0x350 [ 284.801875][ T5984] path_mount+0x136e/0x1e70 [ 284.806437][ T5984] ? putname+0x102/0x140 [ 284.810758][ T5984] ? lockdep_hardirqs_on+0x7d/0x100 [ 284.816033][ T5984] ? finish_automount+0xa30/0xa30 [ 284.821133][ T5984] ? putname+0x102/0x140 [ 284.825444][ T5984] __x64_sys_mount+0x283/0x300 [ 284.830284][ T5984] ? copy_mnt_ns+0xb30/0xb30 [ 284.834932][ T5984] ? lockdep_hardirqs_on+0x7d/0x100 [ 284.840191][ T5984] ? _raw_spin_unlock_irq+0x2e/0x50 [ 284.845457][ T5984] ? ptrace_notify+0xfe/0x140 [ 284.850201][ T5984] do_syscall_64+0x39/0xb0 [ 284.854671][ T5984] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 284.860641][ T5984] RIP: 0033:0x7f4f6dd11c5a [ 284.865094][ T5984] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [pid 5984] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5993] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5991] <... write resumed>) = 16777216 [pid 5989] <... write resumed>) = 16777216 [pid 5987] <... write resumed>) = 16777216 [pid 5991] munmap(0x7f4f650a0000, 16777216 [pid 5989] munmap(0x7f4f650a0000, 16777216 [ 284.884754][ T5984] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 284.893222][ T5984] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 284.901255][ T5984] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 284.909329][ T5984] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 284.917356][ T5984] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 284.925372][ T5984] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 284.933403][ T5984] [pid 5987] munmap(0x7f4f650a0000, 16777216 [pid 5984] <... mount resumed>) = -1 EEXIST (File exists) [ 284.937311][ T5984] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 284.955234][ T5984] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 284.970595][ T5981] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 284.980255][ T5084] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 284.996523][ T5084] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [pid 5984] ioctl(4, LOOP_CLR_FD [pid 5987] <... munmap resumed>) = 0 [pid 5991] <... munmap resumed>) = 0 [pid 5989] <... munmap resumed>) = 0 [pid 5991] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5991] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5987] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 5987] ioctl(4, LOOP_SET_FD, 3 [pid 5991] close(3) = 0 [pid 5991] mkdir("./file0", 0777 [pid 5989] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5991] <... mkdir resumed>) = 0 [pid 5991] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5989] <... openat resumed>) = 4 [pid 5989] ioctl(4, LOOP_SET_FD, 3 [pid 5987] <... ioctl resumed>) = 0 [pid 5987] close(3) = 0 [pid 5987] mkdir("./file0", 0777) = 0 [ 285.118583][ T5991] loop1: detected capacity change from 0 to 32768 [ 285.128439][ T5987] loop5: detected capacity change from 0 to 32768 [ 285.146227][ T5989] loop2: detected capacity change from 0 to 32768 [pid 5987] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5989] <... ioctl resumed>) = 0 [ 285.170809][ T5991] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 285.186217][ T5991] CPU: 1 PID: 5991 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 285.196721][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 285.206829][ T5991] Call Trace: [ 285.210142][ T5991] [ 285.213094][ T5991] dump_stack_lvl+0x136/0x150 [ 285.217815][ T5991] sysfs_warn_dup+0x80/0xa0 [ 285.222346][ T5991] sysfs_create_dir_ns+0x237/0x290 [ 285.227498][ T5991] ? sysfs_create_mount_point+0xb0/0xb0 [ 285.233074][ T5991] ? spin_bug+0x1c0/0x1c0 [ 285.237437][ T5991] ? do_raw_spin_unlock+0x175/0x230 [ 285.242778][ T5991] kobject_add_internal+0x2c9/0x9c0 [ 285.248004][ T5991] ? kfree+0x11/0x150 [ 285.252012][ T5991] kobject_init_and_add+0x101/0x170 [ 285.257240][ T5991] ? kobject_create_and_add+0xf0/0xf0 [ 285.262649][ T5991] ? lockdep_init_map_type+0x21e/0x810 [ 285.268142][ T5991] ? lockdep_hardirqs_on+0x7d/0x100 [ 285.273377][ T5991] ? lockdep_init_map_type+0x21e/0x810 [ 285.278872][ T5991] gfs2_sys_fs_add+0x1d5/0x450 [ 285.283661][ T5991] ? recover_store+0x170/0x170 [ 285.288480][ T5991] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 285.294249][ T5991] gfs2_fill_super+0x1312/0x2aa0 [ 285.299224][ T5991] ? gfs2_reconfigure+0xf90/0xf90 [ 285.304285][ T5991] ? snprintf+0xbf/0x100 [ 285.308559][ T5991] ? vsprintf+0x30/0x30 [ 285.312745][ T5991] ? wait_for_completion_io_timeout+0x20/0x20 [ 285.318846][ T5991] ? set_blocksize+0x2d8/0x370 [ 285.323643][ T5991] get_tree_bdev+0x43e/0x7d0 [ 285.328270][ T5991] ? gfs2_reconfigure+0xf90/0xf90 [ 285.333323][ T5991] gfs2_get_tree+0x4e/0x270 [ 285.337970][ T5991] vfs_get_tree+0x8d/0x350 [ 285.342422][ T5991] path_mount+0x136e/0x1e70 [ 285.346981][ T5991] ? putname+0x102/0x140 [ 285.351260][ T5991] ? lockdep_hardirqs_on+0x7d/0x100 [ 285.356492][ T5991] ? finish_automount+0xa30/0xa30 [ 285.361554][ T5991] ? putname+0x102/0x140 [ 285.365831][ T5991] __x64_sys_mount+0x283/0x300 [ 285.370629][ T5991] ? copy_mnt_ns+0xb30/0xb30 [ 285.375257][ T5991] ? lockdep_hardirqs_on+0x7d/0x100 [ 285.380488][ T5991] ? _raw_spin_unlock_irq+0x2e/0x50 [ 285.385725][ T5991] ? ptrace_notify+0xfe/0x140 [ 285.390473][ T5991] do_syscall_64+0x39/0xb0 [ 285.394917][ T5991] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 285.400949][ T5991] RIP: 0033:0x7f4f6dd11c5a [ 285.405385][ T5991] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 285.425021][ T5991] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 285.433467][ T5991] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 285.441480][ T5991] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 285.449475][ T5991] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 285.457470][ T5991] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [pid 5989] close(3) = 0 [pid 5989] mkdir("./file0", 0777 [pid 5981] <... mount resumed>) = 0 [pid 5989] <... mkdir resumed>) = 0 [pid 5981] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5989] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5981] <... openat resumed>) = 3 [ 285.465463][ T5991] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 285.473460][ T5991] [ 285.489683][ T5084] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 493ms [ 285.498747][ T5987] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 285.506145][ T5084] gfs2: fsid=syz:syz.0: jid=0: Done [ 285.506192][ T5981] gfs2: fsid=syz:syz.0: first mount done, others may mount [pid 5981] chdir("./file0") = 0 [pid 5981] ioctl(4, LOOP_CLR_FD) = 0 [pid 5981] close(4) = 0 [pid 5981] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5979] <... futex resumed>) = 0 [pid 5981] openat(AT_FDCWD, "./file0", O_RDONLY [ 285.557194][ T5989] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 285.579695][ T5987] CPU: 1 PID: 5987 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 285.579744][ T5981] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [pid 5979] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 285.590181][ T5987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 285.590206][ T5987] Call Trace: [ 285.590216][ T5987] [ 285.590227][ T5987] dump_stack_lvl+0x136/0x150 [ 285.590280][ T5987] sysfs_warn_dup+0x80/0xa0 [ 285.590317][ T5987] sysfs_create_dir_ns+0x237/0x290 [ 285.590352][ T5987] ? sysfs_create_mount_point+0xb0/0xb0 [ 285.590390][ T5987] ? spin_bug+0x1c0/0x1c0 [ 285.590430][ T5987] ? do_raw_spin_unlock+0x175/0x230 [ 285.590475][ T5987] kobject_add_internal+0x2c9/0x9c0 [pid 5979] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5984] <... ioctl resumed>) = 0 [ 285.605968][ T5991] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 285.608924][ T5987] ? kfree+0x11/0x150 [ 285.612213][ T5991] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 285.615140][ T5987] kobject_init_and_add+0x101/0x170 [ 285.679466][ T5987] ? kobject_create_and_add+0xf0/0xf0 [ 285.684901][ T5987] ? lockdep_init_map_type+0x21e/0x810 [ 285.690426][ T5987] ? lockdep_hardirqs_on+0x7d/0x100 [ 285.695692][ T5987] ? lockdep_init_map_type+0x21e/0x810 [ 285.701218][ T5987] gfs2_sys_fs_add+0x1d5/0x450 [pid 5984] close(4) = 0 [pid 5984] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5983] <... futex resumed>) = 0 [pid 5984] openat(AT_FDCWD, "./file0", O_RDONLY [ 285.706045][ T5987] ? recover_store+0x170/0x170 [ 285.710869][ T5987] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 285.716693][ T5987] gfs2_fill_super+0x1312/0x2aa0 [ 285.721714][ T5987] ? gfs2_reconfigure+0xf90/0xf90 [ 285.726812][ T5987] ? snprintf+0xbf/0x100 [ 285.731117][ T5987] ? vsprintf+0x30/0x30 [ 285.735326][ T5987] ? wait_for_completion_io_timeout+0x20/0x20 [ 285.738307][ T5981] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 285.738307][ T5981] inode = 12 2341 [pid 5983] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5984] <... openat resumed>) = 3 [pid 5983] <... futex resumed>) = 0 [pid 5984] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5983] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5984] <... futex resumed>) = 0 [pid 5983] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5984] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5983] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5984] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [ 285.738307][ T5981] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 285.741424][ T5987] ? set_blocksize+0x2d8/0x370 [ 285.764816][ T5987] get_tree_bdev+0x43e/0x7d0 [ 285.769474][ T5987] ? gfs2_reconfigure+0xf90/0xf90 [ 285.774568][ T5987] gfs2_get_tree+0x4e/0x270 [ 285.779287][ T5987] vfs_get_tree+0x8d/0x350 [ 285.783773][ T5987] path_mount+0x136e/0x1e70 [ 285.788346][ T5987] ? putname+0x102/0x140 [ 285.792651][ T5987] ? lockdep_hardirqs_on+0x7d/0x100 [ 285.797921][ T5987] ? finish_automount+0xa30/0xa30 [ 285.803063][ T5987] ? putname+0x102/0x140 [ 285.807366][ T5987] __x64_sys_mount+0x283/0x300 [ 285.812180][ T5987] ? copy_mnt_ns+0xb30/0xb30 [ 285.816817][ T5987] ? lockdep_hardirqs_on+0x7d/0x100 [ 285.822078][ T5987] ? _raw_spin_unlock_irq+0x2e/0x50 [ 285.827353][ T5987] ? ptrace_notify+0xfe/0x140 [ 285.832108][ T5987] do_syscall_64+0x39/0xb0 [ 285.836570][ T5987] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 285.842548][ T5987] RIP: 0033:0x7f4f6dd11c5a [ 285.847015][ T5987] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 285.866696][ T5987] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 285.875173][ T5987] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 285.883203][ T5987] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 285.891226][ T5987] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 285.899256][ T5987] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [pid 5983] <... futex resumed>) = 0 [pid 5984] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5983] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5984] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5984] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5983] <... futex resumed>) = 0 [pid 5984] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5983] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5984] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5983] <... futex resumed>) = 0 [pid 5984] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5983] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5984] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5984] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5983] <... futex resumed>) = 0 [pid 5984] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5983] close(3) = 0 [pid 5983] close(4) = -1 EBADF (Bad file descriptor) [pid 5983] close(5) = -1 EBADF (Bad file descriptor) [pid 5983] close(6) = -1 EBADF (Bad file descriptor) [pid 5983] close(7) = -1 EBADF (Bad file descriptor) [pid 5983] close(8) = -1 EBADF (Bad file descriptor) [pid 5983] close(9) = -1 EBADF (Bad file descriptor) [pid 5983] close(10) = -1 EBADF (Bad file descriptor) [pid 5983] close(11) = -1 EBADF (Bad file descriptor) [pid 5983] close(12) = -1 EBADF (Bad file descriptor) [pid 5983] close(13) = -1 EBADF (Bad file descriptor) [pid 5983] close(14) = -1 EBADF (Bad file descriptor) [pid 5983] close(15) = -1 EBADF (Bad file descriptor) [pid 5983] close(16) = -1 EBADF (Bad file descriptor) [pid 5983] close(17) = -1 EBADF (Bad file descriptor) [pid 5983] close(18) = -1 EBADF (Bad file descriptor) [pid 5983] close(19) = -1 EBADF (Bad file descriptor) [pid 5983] close(20) = -1 EBADF (Bad file descriptor) [pid 5983] close(21) = -1 EBADF (Bad file descriptor) [pid 5983] close(22) = -1 EBADF (Bad file descriptor) [pid 5983] close(23) = -1 EBADF (Bad file descriptor) [pid 5983] close(24) = -1 EBADF (Bad file descriptor) [pid 5983] close(25) = -1 EBADF (Bad file descriptor) [pid 5983] close(26) = -1 EBADF (Bad file descriptor) [pid 5983] close(27) = -1 EBADF (Bad file descriptor) [pid 5983] close(28) = -1 EBADF (Bad file descriptor) [pid 5983] close(29) = -1 EBADF (Bad file descriptor) [pid 5983] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5983] exit_group(0 [pid 5984] <... futex resumed>) = ? [pid 5983] <... exit_group resumed>) = ? [pid 5984] +++ exited with 0 +++ [pid 5983] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=114, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=52 /* 0.52 s */} --- [pid 5029] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5029] umount2("./36", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5029] umount2("./36/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5991] <... mount resumed>) = -1 EEXIST (File exists) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5991] ioctl(4, LOOP_CLR_FD [pid 5029] newfstatat(AT_FDCWD, "./36/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 285.907275][ T5987] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 285.915303][ T5987] [ 285.931797][ T5987] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 285.936164][ T5989] CPU: 0 PID: 5989 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 285.946944][ T5987] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 285.956139][ T5989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 285.956161][ T5989] Call Trace: [ 285.956176][ T5989] [ 285.956188][ T5989] dump_stack_lvl+0x136/0x150 [ 285.983755][ T5989] sysfs_warn_dup+0x80/0xa0 [ 285.988294][ T5989] sysfs_create_dir_ns+0x237/0x290 [ 285.993454][ T5989] ? sysfs_create_mount_point+0xb0/0xb0 [ 285.999032][ T5989] ? spin_bug+0x1c0/0x1c0 [ 286.003394][ T5989] ? do_raw_spin_unlock+0x175/0x230 [ 286.008627][ T5989] kobject_add_internal+0x2c9/0x9c0 [ 286.013848][ T5989] ? kfree+0x11/0x150 [ 286.017853][ T5989] kobject_init_and_add+0x101/0x170 [ 286.023080][ T5989] ? kobject_create_and_add+0xf0/0xf0 [ 286.028475][ T5989] ? lockdep_init_map_type+0x21e/0x810 [ 286.033963][ T5989] ? lockdep_hardirqs_on+0x7d/0x100 [ 286.039199][ T5989] ? lockdep_init_map_type+0x21e/0x810 [ 286.044695][ T5989] gfs2_sys_fs_add+0x1d5/0x450 [ 286.049492][ T5989] ? recover_store+0x170/0x170 [ 286.054280][ T5989] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 286.060036][ T5989] gfs2_fill_super+0x1312/0x2aa0 [ 286.065008][ T5989] ? gfs2_reconfigure+0xf90/0xf90 [ 286.070061][ T5989] ? snprintf+0xbf/0x100 [ 286.074335][ T5989] ? vsprintf+0x30/0x30 [ 286.078519][ T5989] ? wait_for_completion_io_timeout+0x20/0x20 [ 286.084624][ T5989] ? set_blocksize+0x2d8/0x370 [ 286.089424][ T5989] get_tree_bdev+0x43e/0x7d0 [ 286.094046][ T5989] ? gfs2_reconfigure+0xf90/0xf90 [ 286.099103][ T5989] gfs2_get_tree+0x4e/0x270 [ 286.103637][ T5989] vfs_get_tree+0x8d/0x350 [ 286.108086][ T5989] path_mount+0x136e/0x1e70 [ 286.112626][ T5989] ? putname+0x102/0x140 [ 286.116895][ T5989] ? lockdep_hardirqs_on+0x7d/0x100 [ 286.122123][ T5989] ? finish_automount+0xa30/0xa30 [ 286.127186][ T5989] ? putname+0x102/0x140 [ 286.131457][ T5989] __x64_sys_mount+0x283/0x300 [ 286.136254][ T5989] ? copy_mnt_ns+0xb30/0xb30 [ 286.140876][ T5989] ? lockdep_hardirqs_on+0x7d/0x100 [ 286.146109][ T5989] ? _raw_spin_unlock_irq+0x2e/0x50 [ 286.151349][ T5989] ? ptrace_notify+0xfe/0x140 [ 286.156098][ T5989] do_syscall_64+0x39/0xb0 [ 286.160565][ T5989] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 286.166539][ T5989] RIP: 0033:0x7f4f6dd11c5a [ 286.170984][ T5989] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 286.190640][ T5989] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 286.199107][ T5989] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 286.207118][ T5989] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 286.215121][ T5989] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 286.223122][ T5989] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 286.231121][ T5989] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 286.239119][ T5989] [ 286.245938][ T5981] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [pid 5029] unlink("./36/cgroup.cpu" [pid 5979] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5029] <... unlink resumed>) = 0 [pid 5987] <... mount resumed>) = -1 EEXIST (File exists) [pid 5987] ioctl(4, LOOP_CLR_FD [pid 5979] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] umount2("./36/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./36/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5979] <... futex resumed>) = 0 [ 286.249573][ T5989] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 286.265856][ T5981] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:5981 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 286.285955][ T5981] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 286.294481][ T5981] gfs2: fsid=syz:syz.0: about to withdraw this file system [pid 5029] unlink("./36/binderfs") = 0 [pid 5029] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./36/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [ 286.311191][ T5981] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [pid 5979] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5029] getdents64(4, [pid 5979] <... mmap resumed>) = 0x7f4f6607f000 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [ 286.354413][ T5981] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 286.387958][ T5981] gfs2: fsid=syz:syz.0: File system withdrawn [ 286.402068][ T5981] CPU: 1 PID: 5981 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 286.412568][ T5981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 286.422765][ T5981] Call Trace: [ 286.426082][ T5981] [ 286.429049][ T5981] dump_stack_lvl+0x136/0x150 [ 286.433814][ T5981] gfs2_withdraw+0xb33/0x1060 [ 286.438563][ T5981] ? gfs2_consist_inode_i+0x104/0x150 [ 286.443999][ T5981] gfs2_dirent_scan+0x32a/0x3d0 [ 286.448926][ T5981] ? gfs2_dirent_prev+0x210/0x210 [ 286.454022][ T5981] ? gfs2_dirent_prev+0x210/0x210 [ 286.456784][ T5989] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 286.459082][ T5981] gfs2_dirent_search+0x47d/0x580 [ 286.459139][ T5981] ? get_first_leaf+0x190/0x190 [ 286.475652][ T5981] ? gfs2_permission+0x256/0x3e0 [ 286.480653][ T5981] gfs2_dir_search+0x8d/0x2d0 [ 286.485409][ T5981] ? gfs2_dir_read+0x14e0/0x14e0 [ 286.490415][ T5981] gfs2_lookupi+0x481/0x640 [ 286.495006][ T5981] ? gfs2_lookup_by_inum+0x100/0x100 [ 286.500358][ T5981] ? __gfs2_lookup+0x83/0x280 [pid 5979] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5029] <... close resumed>) = 0 [pid 5979] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5029] rmdir("./36/file0" [pid 5979] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 5979] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5029] umount2("./36/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5979] <... clone3 resumed> => {parent_tid=[109]}, 88) = 109 [pid 5029] newfstatat(AT_FDCWD, "./36/cgroup", [pid 5979] rt_sigprocmask(SIG_SETMASK, [], [ 286.505106][ T5981] __gfs2_lookup+0x83/0x280 [ 286.509690][ T5981] ? gfs2_lookupi+0x640/0x640 [ 286.514432][ T5981] ? asm_sysvec_reschedule_ipi+0x1a/0x20 [ 286.520116][ T5981] ? lockdep_hardirqs_on+0x7d/0x100 [ 286.525406][ T5981] ? asm_sysvec_reschedule_ipi+0x1a/0x20 [ 286.531099][ T5981] gfs2_atomic_open+0xde/0x250 [ 286.535924][ T5981] ? __gfs2_lookup+0x280/0x280 [ 286.540736][ T5981] lookup_open.isra.0+0xce2/0x1400 [ 286.545933][ T5981] ? link_path_walk.part.0+0xd60/0xd60 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5979] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5029] unlink("./36/cgroup" [ 286.551476][ T5981] ? lookup_fast+0x14e/0x520 [ 286.556144][ T5981] path_openat+0x969/0x2710 [ 286.560714][ T5981] ? path_lookupat+0x840/0x840 [ 286.565539][ T5981] ? find_held_lock+0x2d/0x110 [ 286.570377][ T5981] do_filp_open+0x1ba/0x410 [ 286.574948][ T5981] ? may_open_dev+0xf0/0xf0 [ 286.579511][ T5981] ? find_held_lock+0x2d/0x110 [ 286.584337][ T5981] ? do_raw_spin_lock+0x124/0x2b0 [ 286.589427][ T5981] ? spin_bug+0x1c0/0x1c0 [ 286.593823][ T5981] ? _raw_spin_unlock+0x28/0x40 [ 286.598741][ T5981] ? alloc_fd+0x2e4/0x750 [ 286.603142][ T5981] do_sys_openat2+0x160/0x1c0 [ 286.607894][ T5981] ? build_open_flags+0x720/0x720 [ 286.612993][ T5981] ? ptrace_notify+0xfe/0x140 [ 286.617747][ T5981] ? lock_downgrade+0x690/0x690 [ 286.622667][ T5981] __x64_sys_openat+0x143/0x1f0 [ 286.627621][ T5981] ? __ia32_sys_open+0x1c0/0x1c0 [ 286.632641][ T5981] ? _raw_spin_unlock_irq+0x23/0x50 [ 286.637917][ T5981] ? lockdep_hardirqs_on+0x7d/0x100 [ 286.643178][ T5981] ? _raw_spin_unlock_irq+0x2e/0x50 [ 286.648464][ T5981] ? ptrace_notify+0xfe/0x140 [ 286.653222][ T5981] do_syscall_64+0x39/0xb0 [ 286.657692][ T5981] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 286.663654][ T5981] RIP: 0033:0x7f4f6dd107f9 [ 286.668125][ T5981] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 286.688050][ T5981] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 286.696531][ T5981] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [pid 5979] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] <... unlink resumed>) = 0 [pid 5979] <... futex resumed>) = 0 [pid 5029] umount2("./36/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5979] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./36/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./36/cgroup.net") = 0 [pid 5029] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./36") = 0 [pid 5029] mkdir("./37", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555654e690) = 116 [pid 5979] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5979] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5979] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6605e000 [pid 5979] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5979] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5979] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} => {parent_tid=[110]}, 88) = 110 [pid 5979] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5979] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5979] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) ./strace-static-x86_64: Process 6000 attached [pid 5989] <... mount resumed>) = -1 EEXIST (File exists) [pid 5989] ioctl(4, LOOP_CLR_FD [pid 6000] set_robust_list(0x55555654e6a0, 24) = 0 [pid 6000] chdir("./37") = 0 [pid 6000] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6000] setpgid(0, 0) = 0 [pid 6000] symlink("/syzcgroup/unified/syz0", "./cgroup"./strace-static-x86_64: Process 6001 attached ./strace-static-x86_64: Process 5999 attached [pid 5993] <... write resumed>) = 16777216 [pid 6000] <... symlink resumed>) = 0 [pid 6001] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 5999] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5981] <... openat resumed>) = -1 EIO (Input/output error) [pid 6000] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu" [pid 5993] munmap(0x7f4f650a0000, 16777216 [pid 6000] <... symlink resumed>) = 0 [ 286.704599][ T5981] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [ 286.712629][ T5981] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 286.720669][ T5981] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 286.728778][ T5981] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 286.736804][ T5981] [pid 6000] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0 [pid 6000] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6000] write(3, "1000", 4) = 4 [pid 6000] close(3) = 0 [pid 6000] symlink("/dev/binderfs", "./binderfs" [pid 6001] <... rseq resumed>) = 0 [pid 5999] <... rseq resumed>) = 0 [pid 5981] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6001] set_robust_list(0x7f4f6607e9a0, 24 [pid 6000] <... symlink resumed>) = 0 [pid 5999] set_robust_list(0x7f4f6609f9a0, 24 [pid 5981] <... futex resumed>) = 0 [pid 6000] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6001] <... set_robust_list resumed>) = 0 [pid 6000] <... futex resumed>) = 0 [pid 5999] <... set_robust_list resumed>) = 0 [pid 5981] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6001] rt_sigprocmask(SIG_SETMASK, [], [pid 6000] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5999] rt_sigprocmask(SIG_SETMASK, [], [pid 6001] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6000] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5999] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6001] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6000] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5999] ioctl(0, VFAT_IOCTL_READDIR_SHORT [pid 6001] <... openat resumed>) = -1 EIO (Input/output error) [pid 6000] <... mprotect resumed>) = 0 [pid 5999] <... ioctl resumed>, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 6001] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 6000] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5999] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6001] <... futex resumed>) = 0 [pid 6000] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5999] <... futex resumed>) = 0 [pid 6001] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6000] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5999] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 6002 attached [pid 5979] close(3) = 0 [pid 5979] close(4) = -1 EBADF (Bad file descriptor) [pid 5979] close(5 [pid 6000] <... clone3 resumed> => {parent_tid=[117]}, 88) = 117 [pid 5979] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6002] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053) = 0 [pid 6000] rt_sigprocmask(SIG_SETMASK, [], [pid 5979] close(6) = -1 EBADF (Bad file descriptor) [pid 5979] close(7 [pid 6002] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6000] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5979] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6002] <... set_robust_list resumed>) = 0 [pid 6000] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5979] close(8 [pid 6002] rt_sigprocmask(SIG_SETMASK, [], [pid 6000] <... futex resumed>) = 0 [pid 5993] <... munmap resumed>) = 0 [pid 5979] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6002] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6000] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5979] close(9) = -1 EBADF (Bad file descriptor) [pid 5979] close(10 [pid 6002] memfd_create("syzkaller", 0 [pid 5979] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6002] <... memfd_create resumed>) = 3 [pid 5979] close(11 [pid 6002] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5993] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5979] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6002] <... mmap resumed>) = 0x7f4f650a0000 [pid 5979] close(12 [pid 5993] <... openat resumed>) = 4 [pid 5979] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5979] close(13) = -1 EBADF (Bad file descriptor) [pid 5979] close(14) = -1 EBADF (Bad file descriptor) [pid 5979] close(15 [pid 5993] ioctl(4, LOOP_SET_FD, 3 [pid 5979] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5979] close(16) = -1 EBADF (Bad file descriptor) [pid 5979] close(17) = -1 EBADF (Bad file descriptor) [pid 5979] close(18) = -1 EBADF (Bad file descriptor) [pid 5979] close(19) = -1 EBADF (Bad file descriptor) [pid 5979] close(20) = -1 EBADF (Bad file descriptor) [pid 5979] close(21) = -1 EBADF (Bad file descriptor) [pid 5979] close(22) = -1 EBADF (Bad file descriptor) [pid 5979] close(23) = -1 EBADF (Bad file descriptor) [pid 5979] close(24) = -1 EBADF (Bad file descriptor) [pid 5979] close(25) = -1 EBADF (Bad file descriptor) [pid 5979] close(26) = -1 EBADF (Bad file descriptor) [pid 5979] close(27) = -1 EBADF (Bad file descriptor) [pid 5979] close(28) = -1 EBADF (Bad file descriptor) [pid 5979] close(29) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5979] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5979] exit_group(0 [pid 6001] <... futex resumed>) = ? [pid 5999] <... futex resumed>) = ? [pid 5981] <... futex resumed>) = ? [pid 5979] <... exit_group resumed>) = ? [pid 6001] +++ exited with 0 +++ [pid 5999] +++ exited with 0 +++ [pid 5993] <... ioctl resumed>) = 0 [pid 5981] +++ exited with 0 +++ [pid 5979] +++ exited with 0 +++ [pid 5993] close(3 [pid 5991] <... ioctl resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=107, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=50 /* 0.50 s */} --- [pid 5031] umount2("./36", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5993] <... close resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5993] mkdir("./file0", 0777 [pid 5031] openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5993] <... mkdir resumed>) = 0 [pid 5031] newfstatat(3, "", [pid 5993] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5031] umount2("./36/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./36/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./36/cgroup.cpu") = 0 [pid 5031] umount2("./36/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 286.895537][ T5993] loop3: detected capacity change from 0 to 32768 [pid 5031] newfstatat(AT_FDCWD, "./36/binderfs", [pid 5991] close(4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5991] <... close resumed>) = 0 [pid 5987] <... ioctl resumed>) = 0 [pid 5986] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5031] unlink("./36/binderfs" [pid 5991] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5987] close(4 [pid 5986] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] <... unlink resumed>) = 0 [pid 5991] <... futex resumed>) = 1 [pid 5990] <... futex resumed>) = 0 [pid 5987] <... close resumed>) = 0 [pid 5986] <... futex resumed>) = 0 [pid 5031] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5991] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5990] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5987] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5986] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5991] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5990] <... futex resumed>) = 0 [pid 5987] <... futex resumed>) = 0 [pid 5986] <... mmap resumed>) = 0x7f4f6607f000 [pid 5991] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5990] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5987] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5986] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5991] <... openat resumed>) = 3 [pid 5986] <... mprotect resumed>) = 0 [pid 5991] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5986] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5991] <... futex resumed>) = 0 [pid 5986] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5991] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5986] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 6004 attached [pid 6004] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5986] <... clone3 resumed> => {parent_tid=[114]}, 88) = 114 [pid 6004] <... rseq resumed>) = 0 [pid 5986] rt_sigprocmask(SIG_SETMASK, [], [pid 6004] set_robust_list(0x7f4f6609f9a0, 24 [pid 5986] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6004] <... set_robust_list resumed>) = 0 [pid 5986] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6004] rt_sigprocmask(SIG_SETMASK, [], [pid 5986] <... futex resumed>) = 0 [pid 6004] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5990] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [ 286.995749][ T5993] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 287.004850][ T5993] CPU: 1 PID: 5993 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 287.015335][ T5993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 287.025447][ T5993] Call Trace: [ 287.028763][ T5993] [ 287.031723][ T5993] dump_stack_lvl+0x136/0x150 [ 287.036465][ T5993] sysfs_warn_dup+0x80/0xa0 [ 287.041018][ T5993] sysfs_create_dir_ns+0x237/0x290 [ 287.046176][ T5993] ? sysfs_create_mount_point+0xb0/0xb0 [ 287.051780][ T5993] ? spin_bug+0x1c0/0x1c0 [ 287.056151][ T5993] ? do_raw_spin_unlock+0x175/0x230 [ 287.061390][ T5993] kobject_add_internal+0x2c9/0x9c0 [ 287.066620][ T5993] ? kfree+0x11/0x150 [ 287.070631][ T5993] kobject_init_and_add+0x101/0x170 [ 287.075860][ T5993] ? kobject_create_and_add+0xf0/0xf0 [ 287.081277][ T5993] ? lockdep_init_map_type+0x21e/0x810 [ 287.086768][ T5993] ? lockdep_hardirqs_on+0x7d/0x100 [ 287.092003][ T5993] ? lockdep_init_map_type+0x21e/0x810 [ 287.097493][ T5993] gfs2_sys_fs_add+0x1d5/0x450 [ 287.102284][ T5993] ? recover_store+0x170/0x170 [ 287.107509][ T5993] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 287.113266][ T5993] gfs2_fill_super+0x1312/0x2aa0 [ 287.118234][ T5993] ? gfs2_reconfigure+0xf90/0xf90 [ 287.123289][ T5993] ? snprintf+0xbf/0x100 [ 287.127561][ T5993] ? vsprintf+0x30/0x30 [ 287.131742][ T5993] ? wait_for_completion_io_timeout+0x20/0x20 [ 287.137847][ T5993] ? set_blocksize+0x2d8/0x370 [ 287.142644][ T5993] get_tree_bdev+0x43e/0x7d0 [ 287.147274][ T5993] ? gfs2_reconfigure+0xf90/0xf90 [ 287.152326][ T5993] gfs2_get_tree+0x4e/0x270 [ 287.156863][ T5993] vfs_get_tree+0x8d/0x350 [ 287.161312][ T5993] path_mount+0x136e/0x1e70 [ 287.165861][ T5993] ? putname+0x102/0x140 [ 287.170133][ T5993] ? lockdep_hardirqs_on+0x7d/0x100 [ 287.175383][ T5993] ? finish_automount+0xa30/0xa30 [ 287.180441][ T5993] ? putname+0x102/0x140 [ 287.184712][ T5993] __x64_sys_mount+0x283/0x300 [ 287.189513][ T5993] ? copy_mnt_ns+0xb30/0xb30 [ 287.194134][ T5993] ? lockdep_hardirqs_on+0x7d/0x100 [ 287.199369][ T5993] ? _raw_spin_unlock_irq+0x2e/0x50 [ 287.204620][ T5993] ? ptrace_notify+0xfe/0x140 [ 287.209363][ T5993] do_syscall_64+0x39/0xb0 [ 287.213804][ T5993] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 287.219741][ T5993] RIP: 0033:0x7f4f6dd11c5a [ 287.224187][ T5993] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 287.243821][ T5993] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 287.252352][ T5993] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 287.260346][ T5993] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 287.268451][ T5993] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 287.276534][ T5993] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 287.284962][ T5993] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 287.292963][ T5993] [pid 5986] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6004] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5990] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6004] <... openat resumed>) = 3 [pid 5991] <... futex resumed>) = 0 [pid 5990] <... futex resumed>) = 1 [pid 5988] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5986] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6004] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5991] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5990] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5986] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6004] <... futex resumed>) = 0 [pid 5991] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5987] <... futex resumed>) = 0 [pid 5986] <... futex resumed>) = 1 [pid 6004] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5991] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5987] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5986] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5991] <... futex resumed>) = 1 [pid 5990] <... futex resumed>) = 0 [pid 5987] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5991] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5990] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5987] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5991] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5990] <... futex resumed>) = 0 [pid 5987] <... futex resumed>) = 1 [pid 5986] <... futex resumed>) = 0 [pid 5991] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5990] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5987] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5986] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5991] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5987] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5986] <... futex resumed>) = 0 [pid 5991] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5987] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5986] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5991] <... futex resumed>) = 1 [pid 5990] <... futex resumed>) = 0 [pid 5987] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5991] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5990] close(3 [pid 5987] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5990] <... close resumed>) = 0 [pid 5987] <... futex resumed>) = 1 [pid 5986] <... futex resumed>) = 0 [pid 5990] close(4 [pid 5988] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5987] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] close(3 [pid 5990] close(5 [pid 5986] <... close resumed>) = 0 [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] close(4 [pid 5990] close(6 [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] close(5 [pid 5990] close(7 [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] close(8 [pid 5986] close(6 [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] close(9 [pid 5986] close(7 [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] close(10 [pid 5986] close(8 [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] close(11 [pid 5986] close(9 [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] close(12 [pid 5986] close(10 [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] close(13 [pid 5986] close(11 [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [ 287.337139][ T5993] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 5990] close(14 [pid 5993] <... mount resumed>) = -1 EEXIST (File exists) [pid 5988] <... futex resumed>) = 0 [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] close(12 [pid 5993] ioctl(4, LOOP_CLR_FD [pid 5990] close(15 [pid 5988] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5989] <... ioctl resumed>) = 0 [pid 5988] <... mmap resumed>) = 0x7f4f6607f000 [pid 5988] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5988] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5988] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 6005 attached [pid 6005] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 5988] <... clone3 resumed> => {parent_tid=[113]}, 88) = 113 [pid 6005] <... rseq resumed>) = 0 [pid 5990] close(16 [pid 5989] close(4 [pid 5988] rt_sigprocmask(SIG_SETMASK, [], [pid 5986] close(13 [pid 6005] set_robust_list(0x7f4f6609f9a0, 24 [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5989] <... close resumed>) = 0 [pid 5988] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6005] <... set_robust_list resumed>) = 0 [pid 5990] close(17 [pid 5989] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5988] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5986] close(14 [pid 6005] rt_sigprocmask(SIG_SETMASK, [], [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5989] <... futex resumed>) = 0 [pid 5988] <... futex resumed>) = 0 [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6005] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5990] close(18 [pid 5989] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5988] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [ 287.385970][ T5993] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 5986] close(15 [pid 6005] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6005] <... openat resumed>) = 3 [pid 5990] close(19 [pid 5986] close(16 [pid 6005] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5988] <... futex resumed>) = 0 [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6005] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5990] close(20 [pid 5988] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5989] <... futex resumed>) = 0 [pid 5988] <... futex resumed>) = 1 [pid 5986] close(17 [pid 5990] close(21 [pid 5989] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5988] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5989] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5986] close(18 [pid 5990] close(22 [pid 5989] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5989] <... futex resumed>) = 1 [pid 5988] <... futex resumed>) = 0 [pid 5986] close(19 [pid 5990] close(23 [pid 5989] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5988] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5989] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5988] <... futex resumed>) = 0 [pid 5986] close(20 [pid 5990] close(24 [pid 5989] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5988] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5989] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5986] close(21 [pid 5990] close(25 [pid 5989] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5989] <... futex resumed>) = 1 [pid 5988] <... futex resumed>) = 0 [pid 5986] close(22 [pid 5990] close(26 [pid 5989] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5988] close(3 [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5988] <... close resumed>) = 0 [pid 5986] close(23 [pid 5990] close(27 [pid 5988] close(4 [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] close(24 [pid 5990] close(28 [pid 5988] close(5 [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] close(25 [pid 5990] close(29 [pid 5988] close(6 [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] close(26 [pid 5988] close(7) = -1 EBADF (Bad file descriptor) [pid 5988] close(8) = -1 EBADF (Bad file descriptor) [pid 5988] close(9 [pid 5990] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5990] <... write resumed>) = 156 [pid 5988] close(10) = -1 EBADF (Bad file descriptor) [pid 5988] close(11) = -1 EBADF (Bad file descriptor) [pid 5988] close(12) = -1 EBADF (Bad file descriptor) [pid 5988] close(13) = -1 EBADF (Bad file descriptor) [pid 5988] close(14 [pid 5990] exit_group(0 [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] close(27 [pid 5991] <... futex resumed>) = ? [pid 5990] <... exit_group resumed>) = ? [pid 5988] close(15 [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5988] close(16) = -1 EBADF (Bad file descriptor) [pid 5988] close(17 [pid 5991] +++ exited with 0 +++ [pid 5990] +++ exited with 0 +++ [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] close(28 [pid 5988] close(18 [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=111, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=63 /* 0.63 s */} --- [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] close(29 [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 5988] close(19 [pid 5986] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... restart_syscall resumed>) = 0 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5988] close(20 [pid 5986] <... write resumed>) = 156 [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] exit_group(0 [pid 5032] umount2("./37", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6004] <... futex resumed>) = ? [pid 5988] close(21 [pid 5987] <... futex resumed>) = ? [pid 5986] <... exit_group resumed>) = ? [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6004] +++ exited with 0 +++ [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5987] +++ exited with 0 +++ [pid 5032] openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5988] close(22 [pid 5032] <... openat resumed>) = 3 [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5986] +++ exited with 0 +++ [pid 5032] newfstatat(3, "", [pid 5988] close(23 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=112, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=70 /* 0.70 s */} --- [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] getdents64(3, [pid 5988] close(24 [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] umount2("./37", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./37/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5988] close(25 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] newfstatat(AT_FDCWD, "./37/cgroup.cpu", [pid 5988] close(26 [pid 5034] <... openat resumed>) = 3 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] newfstatat(3, "", [pid 5032] unlink("./37/cgroup.cpu" [pid 5988] close(27 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] getdents64(3, [pid 5032] umount2("./37/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5988] close(28 [pid 5034] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] umount2("./37/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(AT_FDCWD, "./37/binderfs", [pid 5988] close(29 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5988] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] newfstatat(AT_FDCWD, "./37/cgroup.cpu", [pid 5032] unlink("./37/binderfs"write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5988] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5988] <... write resumed>) = 156 [pid 5034] unlink("./37/cgroup.cpu" [pid 5032] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5988] exit_group(0 [pid 5034] <... unlink resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6005] <... futex resumed>) = ? [pid 5989] <... futex resumed>) = ? [pid 5988] <... exit_group resumed>) = ? [pid 5034] umount2("./37/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(AT_FDCWD, "./37/file0", [pid 6005] +++ exited with 0 +++ [pid 5989] +++ exited with 0 +++ [pid 5988] +++ exited with 0 +++ [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] newfstatat(AT_FDCWD, "./37/binderfs", [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=111, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=63 /* 0.63 s */} --- [pid 5032] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] unlink("./37/binderfs" [pid 5032] openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] <... unlink resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5034] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(4, "", [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] newfstatat(AT_FDCWD, "./37/file0", [pid 5032] getdents64(4, [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5034] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(4, [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5034] openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] close(4 [pid 5034] <... openat resumed>) = 4 [pid 5032] <... close resumed>) = 0 [pid 5034] newfstatat(4, "", [pid 5032] rmdir("./37/file0" [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5034] getdents64(4, [pid 5032] umount2("./37/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5033] umount2("./38", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] getdents64(4, [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./37/cgroup", [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5033] openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] close(4 [pid 5033] <... openat resumed>) = 3 [pid 5032] unlink("./37/cgroup" [pid 5034] <... close resumed>) = 0 [pid 5033] newfstatat(3, "", [pid 5032] <... unlink resumed>) = 0 [pid 5034] rmdir("./37/file0" [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] umount2("./37/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... rmdir resumed>) = 0 [pid 5033] getdents64(3, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] umount2("./37/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5032] newfstatat(AT_FDCWD, "./37/cgroup.net", [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./38/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] newfstatat(AT_FDCWD, "./37/cgroup", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] unlink("./37/cgroup.net" [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] newfstatat(AT_FDCWD, "./38/cgroup.cpu", [pid 5032] <... unlink resumed>) = 0 [pid 5034] unlink("./37/cgroup" [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] getdents64(3, [pid 5034] <... unlink resumed>) = 0 [pid 5033] unlink("./38/cgroup.cpu" [pid 5032] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5034] umount2("./37/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... unlink resumed>) = 0 [pid 5032] close(3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./38/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... close resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./37/cgroup.net", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] rmdir("./37" [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] newfstatat(AT_FDCWD, "./38/binderfs", [pid 5032] <... rmdir resumed>) = 0 [pid 5034] unlink("./37/cgroup.net" [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] mkdir("./38", 0777 [pid 5034] <... unlink resumed>) = 0 [pid 5033] unlink("./38/binderfs" [pid 5032] <... mkdir resumed>) = 0 [pid 5034] getdents64(3, [pid 5033] <... unlink resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5034] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5033] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... openat resumed>) = 3 [pid 5034] close(3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5034] <... close resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./38/file0", [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] rmdir("./37" [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] close(3 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... close resumed>) = 0 [pid 5034] mkdir("./38", 0777 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6006 attached [pid 5034] <... mkdir resumed>) = 0 [pid 6006] set_robust_list(0x55555654e6a0, 24 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 113 [pid 6006] <... set_robust_list resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6006] chdir("./38" [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] openat(AT_FDCWD, "./38/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6006] <... chdir resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6006] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] close(3 [pid 5033] <... openat resumed>) = 4 [pid 6006] <... prctl resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 6006] setpgid(0, 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6007 attached [pid 6006] <... setpgid resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6007] set_robust_list(0x55555654e6a0, 24 [pid 6006] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 115 [pid 5033] getdents64(4, [pid 6007] <... set_robust_list resumed>) = 0 [pid 6006] <... symlink resumed>) = 0 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6007] chdir("./38" [pid 6006] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 5033] getdents64(4, [pid 6007] <... chdir resumed>) = 0 [pid 6006] <... symlink resumed>) = 0 [pid 6006] symlink("/syzcgroup/net/syz1", "./cgroup.net") = 0 [pid 6006] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6007] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6006] write(3, "1000", 4 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6007] <... prctl resumed>) = 0 [pid 6006] <... write resumed>) = 4 [pid 5033] close(4 [pid 6007] setpgid(0, 0 [pid 6006] close(3 [pid 5033] <... close resumed>) = 0 [pid 6007] <... setpgid resumed>) = 0 [pid 6006] <... close resumed>) = 0 [pid 5033] rmdir("./38/file0" [pid 6007] symlink("/syzcgroup/unified/syz5", "./cgroup" [pid 6006] symlink("/dev/binderfs", "./binderfs" [pid 6007] <... symlink resumed>) = 0 [pid 6006] <... symlink resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 6007] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu" [pid 6006] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] umount2("./38/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6007] <... symlink resumed>) = 0 [pid 6006] <... futex resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6007] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 6006] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5033] newfstatat(AT_FDCWD, "./38/cgroup", [pid 6007] <... symlink resumed>) = 0 [pid 6006] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6007] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6006] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5033] unlink("./38/cgroup" [pid 6007] <... openat resumed>) = 3 [pid 6006] <... mprotect resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 6007] write(3, "1000", 4 [pid 6006] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5033] umount2("./38/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6007] <... write resumed>) = 4 [pid 6006] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6007] close(3 [pid 6006] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5033] newfstatat(AT_FDCWD, "./38/cgroup.net", ./strace-static-x86_64: Process 6008 attached [pid 6007] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6008] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6007] symlink("/dev/binderfs", "./binderfs" [pid 6006] <... clone3 resumed> => {parent_tid=[114]}, 88) = 114 [pid 5033] unlink("./38/cgroup.net" [pid 6008] <... rseq resumed>) = 0 [pid 6007] <... symlink resumed>) = 0 [pid 6006] rt_sigprocmask(SIG_SETMASK, [], [pid 5033] <... unlink resumed>) = 0 [pid 6008] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6007] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6006] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5033] getdents64(3, [pid 6008] <... set_robust_list resumed>) = 0 [pid 6007] <... futex resumed>) = 0 [pid 6006] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6008] rt_sigprocmask(SIG_SETMASK, [], [pid 6007] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6006] <... futex resumed>) = 0 [pid 5033] close(3 [pid 6008] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6007] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6006] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5033] <... close resumed>) = 0 [pid 6008] memfd_create("syzkaller", 0 [pid 6007] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5033] rmdir("./38" [pid 6008] <... memfd_create resumed>) = 3 [pid 6007] <... mprotect resumed>) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 6008] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6007] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5033] mkdir("./39", 0777 [pid 6008] <... mmap resumed>) = 0x7f4f650a0000 [pid 6007] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6007] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5033] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 6009 attached [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6009] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6007] <... clone3 resumed> => {parent_tid=[116]}, 88) = 116 [pid 5033] <... openat resumed>) = 3 [pid 6009] <... rseq resumed>) = 0 [pid 6007] rt_sigprocmask(SIG_SETMASK, [], [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6009] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6007] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6009] <... set_robust_list resumed>) = 0 [pid 6007] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] close(3 [pid 6009] rt_sigprocmask(SIG_SETMASK, [], [pid 6007] <... futex resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 6009] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6007] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6009] memfd_create("syzkaller", 0./strace-static-x86_64: Process 6010 attached [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 114 [pid 6009] <... memfd_create resumed>) = 3 [pid 6010] set_robust_list(0x55555654e6a0, 24 [pid 6009] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6010] <... set_robust_list resumed>) = 0 [pid 6009] <... mmap resumed>) = 0x7f4f650a0000 [pid 6010] chdir("./39") = 0 [pid 6010] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6010] setpgid(0, 0) = 0 [pid 6010] symlink("/syzcgroup/unified/syz2", "./cgroup") = 0 [pid 6010] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu") = 0 [pid 6010] symlink("/syzcgroup/net/syz2", "./cgroup.net") = 0 [pid 6010] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6010] write(3, "1000", 4) = 4 [pid 6010] close(3) = 0 [pid 6010] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6010] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6010] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 6010] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6010] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6010] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6011 attached [pid 6011] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6010] <... clone3 resumed> => {parent_tid=[115]}, 88) = 115 [pid 6011] <... rseq resumed>) = 0 [pid 6010] rt_sigprocmask(SIG_SETMASK, [], [pid 6011] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6010] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5031] <... umount2 resumed>) = 0 [pid 6011] <... set_robust_list resumed>) = 0 [pid 6010] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6011] rt_sigprocmask(SIG_SETMASK, [], [pid 6010] <... futex resumed>) = 0 [pid 5993] <... ioctl resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6011] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6010] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5031] newfstatat(AT_FDCWD, "./36/file0", [pid 6011] memfd_create("syzkaller", 0 [pid 5992] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6011] <... memfd_create resumed>) = 3 [pid 5992] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6011] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5992] <... futex resumed>) = 0 [pid 5031] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6011] <... mmap resumed>) = 0x7f4f650a0000 [pid 5992] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5993] close(4) = 0 [pid 5993] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5993] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5992] <... mmap resumed>) = 0x7f4f6607f000 [pid 5031] openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5992] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5992] <... mprotect resumed>) = 0 [pid 5031] getdents64(4, [pid 5992] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5992] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5992] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5031] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 ./strace-static-x86_64: Process 6012 attached [pid 5031] close(4 [pid 5992] <... clone3 resumed> => {parent_tid=[106]}, 88) = 106 [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./36/file0" [pid 5992] rt_sigprocmask(SIG_SETMASK, [], [pid 6012] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053) = 0 [pid 6012] set_robust_list(0x7f4f6609f9a0, 24 [pid 5031] <... rmdir resumed>) = 0 [pid 5992] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6012] <... set_robust_list resumed>) = 0 [pid 6012] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6012] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5992] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] umount2("./36/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6012] <... futex resumed>) = 0 [pid 5992] <... futex resumed>) = 1 [pid 5031] newfstatat(AT_FDCWD, "./36/cgroup", [pid 6012] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5992] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6012] <... openat resumed>) = 3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6012] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] unlink("./36/cgroup" [pid 6012] <... futex resumed>) = 1 [pid 5992] <... futex resumed>) = 0 [pid 6012] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5992] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] <... unlink resumed>) = 0 [pid 5993] <... futex resumed>) = 0 [pid 5992] <... futex resumed>) = 1 [pid 5993] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5992] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5031] umount2("./36/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5993] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5993] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5993] <... futex resumed>) = 1 [pid 5992] <... futex resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./36/cgroup.net", [pid 5993] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5992] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5993] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5992] <... futex resumed>) = 0 [pid 5031] unlink("./36/cgroup.net" [pid 5993] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5992] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5993] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5031] <... unlink resumed>) = 0 [pid 5993] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] getdents64(3, [pid 5993] <... futex resumed>) = 1 [pid 5992] <... futex resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5993] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5992] close(3 [pid 5031] close(3 [pid 5992] <... close resumed>) = 0 [pid 5992] close(4 [pid 5031] <... close resumed>) = 0 [pid 5992] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] rmdir("./36" [pid 5992] close(5) = -1 EBADF (Bad file descriptor) [pid 5992] close(6) = -1 EBADF (Bad file descriptor) [pid 5992] close(7) = -1 EBADF (Bad file descriptor) [pid 5992] close(8) = -1 EBADF (Bad file descriptor) [pid 5031] <... rmdir resumed>) = 0 [pid 5992] close(9 [pid 5031] mkdir("./37", 0777 [pid 5992] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5992] close(10) = -1 EBADF (Bad file descriptor) [pid 5992] close(11) = -1 EBADF (Bad file descriptor) [pid 5992] close(12 [pid 5031] <... mkdir resumed>) = 0 [pid 5992] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5992] close(13) = -1 EBADF (Bad file descriptor) [pid 5031] <... openat resumed>) = 3 [pid 5992] close(14) = -1 EBADF (Bad file descriptor) [pid 5992] close(15) = -1 EBADF (Bad file descriptor) [pid 5992] close(16) = -1 EBADF (Bad file descriptor) [pid 5992] close(17) = -1 EBADF (Bad file descriptor) [pid 5992] close(18) = -1 EBADF (Bad file descriptor) [pid 5992] close(19) = -1 EBADF (Bad file descriptor) [pid 5992] close(20) = -1 EBADF (Bad file descriptor) [pid 5992] close(21) = -1 EBADF (Bad file descriptor) [pid 5992] close(22) = -1 EBADF (Bad file descriptor) [pid 5992] close(23) = -1 EBADF (Bad file descriptor) [pid 5992] close(24) = -1 EBADF (Bad file descriptor) [pid 5992] close(25) = -1 EBADF (Bad file descriptor) [pid 5992] close(26) = -1 EBADF (Bad file descriptor) [pid 5992] close(27) = -1 EBADF (Bad file descriptor) [pid 5992] close(28) = -1 EBADF (Bad file descriptor) [pid 5992] close(29) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5992] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5992] exit_group(0 [pid 6012] <... futex resumed>) = ? [pid 5993] <... futex resumed>) = ? [pid 5992] <... exit_group resumed>) = ? [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6012] +++ exited with 0 +++ [pid 5993] +++ exited with 0 +++ [pid 5992] +++ exited with 0 +++ [pid 5031] close(3) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=104, si_uid=0, si_status=0, si_utime=0, si_stime=64 /* 0.64 s */} --- [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] restart_syscall(<... resuming interrupted clone ...>./strace-static-x86_64: Process 6013 attached [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 111 [pid 5030] <... restart_syscall resumed>) = 0 [pid 5030] umount2("./36", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6013] set_robust_list(0x55555654e6a0, 24 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6013] <... set_robust_list resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6013] chdir("./37" [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 6013] <... chdir resumed>) = 0 [pid 6013] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] umount2("./36/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6013] <... prctl resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./36/cgroup.cpu", [pid 6013] setpgid(0, 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6013] <... setpgid resumed>) = 0 [pid 5030] unlink("./36/cgroup.cpu") = 0 [pid 6013] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 5030] umount2("./36/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6002] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5030] newfstatat(AT_FDCWD, "./36/binderfs", [pid 6013] <... symlink resumed>) = 0 [pid 6013] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./36/binderfs" [pid 6013] <... symlink resumed>) = 0 [pid 6013] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 5030] <... unlink resumed>) = 0 [pid 5030] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./36/file0", [pid 6013] <... symlink resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6013] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6013] <... openat resumed>) = 3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6013] write(3, "1000", 4 [pid 5030] <... openat resumed>) = 4 [pid 5030] newfstatat(4, "", [pid 6013] <... write resumed>) = 4 [pid 6013] close(3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, [pid 6013] <... close resumed>) = 0 [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6013] symlink("/dev/binderfs", "./binderfs" [pid 5030] getdents64(4, [pid 6013] <... symlink resumed>) = 0 [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 6013] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] <... close resumed>) = 0 [pid 5030] rmdir("./36/file0" [pid 6013] <... futex resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6013] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5030] umount2("./36/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6013] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5030] newfstatat(AT_FDCWD, "./36/cgroup", [pid 6013] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./36/cgroup" [pid 6013] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5030] <... unlink resumed>) = 0 [pid 6013] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5030] umount2("./36/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6013] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./36/cgroup.net", ./strace-static-x86_64: Process 6014 attached {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6014] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6013] <... clone3 resumed> => {parent_tid=[112]}, 88) = 112 [pid 6013] rt_sigprocmask(SIG_SETMASK, [], [pid 6014] <... rseq resumed>) = 0 [pid 5030] unlink("./36/cgroup.net" [pid 6014] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6013] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6014] <... set_robust_list resumed>) = 0 [pid 6013] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] <... unlink resumed>) = 0 [pid 6014] rt_sigprocmask(SIG_SETMASK, [], [pid 6013] <... futex resumed>) = 0 [pid 5030] getdents64(3, [pid 6014] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6013] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6014] memfd_create("syzkaller", 0) = 3 [pid 5030] close(3 [pid 6014] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... close resumed>) = 0 [pid 6014] <... mmap resumed>) = 0x7f4f650a0000 [pid 5030] rmdir("./36") = 0 [pid 5030] mkdir("./37", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6015 attached [pid 6015] set_robust_list(0x55555654e6a0, 24 [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 107 [pid 6015] <... set_robust_list resumed>) = 0 [pid 6015] chdir("./37") = 0 [pid 6015] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6015] setpgid(0, 0) = 0 [pid 6015] symlink("/syzcgroup/unified/syz3", "./cgroup") = 0 [pid 6015] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu") = 0 [pid 6015] symlink("/syzcgroup/net/syz3", "./cgroup.net") = 0 [pid 6015] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6015] write(3, "1000", 4) = 4 [pid 6015] close(3) = 0 [pid 6015] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6015] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6015] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 6015] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6015] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6015] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6016 attached [pid 6016] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6015] <... clone3 resumed> => {parent_tid=[108]}, 88) = 108 [pid 6016] <... rseq resumed>) = 0 [pid 6015] rt_sigprocmask(SIG_SETMASK, [], [pid 6016] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6015] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6016] <... set_robust_list resumed>) = 0 [pid 6015] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6016] rt_sigprocmask(SIG_SETMASK, [], [pid 6015] <... futex resumed>) = 0 [pid 6016] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6015] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6016] memfd_create("syzkaller", 0) = 3 [pid 6016] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 6009] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6008] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6011] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6014] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6002] <... write resumed>) = 16777216 [pid 6002] munmap(0x7f4f650a0000, 16777216 [pid 6016] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6002] <... munmap resumed>) = 0 [pid 6002] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6002] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6002] close(3) = 0 [pid 6002] mkdir("./file0", 0777) = 0 [ 289.247685][ T6002] loop0: detected capacity change from 0 to 32768 [ 289.344277][ T6002] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 289.377820][ T6002] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 289.401215][ T6002] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [pid 6002] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6008] <... write resumed>) = 16777216 [ 289.449324][ T5084] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 289.458003][ T5084] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [pid 6008] munmap(0x7f4f650a0000, 16777216 [pid 6009] <... write resumed>) = 16777216 [pid 6009] munmap(0x7f4f650a0000, 16777216 [pid 6011] <... write resumed>) = 16777216 [pid 6011] munmap(0x7f4f650a0000, 16777216 [pid 6009] <... munmap resumed>) = 0 [pid 6008] <... munmap resumed>) = 0 [pid 6008] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 6008] ioctl(4, LOOP_SET_FD, 3 [pid 6009] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [ 289.699498][ T5084] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 241ms [ 289.724789][ T6008] loop1: detected capacity change from 0 to 32768 [ 289.738684][ T6009] loop5: detected capacity change from 0 to 32768 [pid 6009] ioctl(4, LOOP_SET_FD, 3 [pid 6008] <... ioctl resumed>) = 0 [pid 6008] close(3) = 0 [pid 6008] mkdir("./file0", 0777) = 0 [pid 6008] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6009] <... ioctl resumed>) = 0 [pid 6009] close(3) = 0 [pid 6009] mkdir("./file0", 0777) = 0 [ 289.751732][ T5084] gfs2: fsid=syz:syz.0: jid=0: Done [ 289.757456][ T6002] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 289.791018][ T6008] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [pid 6009] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6002] <... mount resumed>) = 0 [pid 6002] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6002] chdir("./file0") = 0 [pid 6002] ioctl(4, LOOP_CLR_FD) = 0 [pid 6002] close(4) = 0 [pid 6002] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6000] <... futex resumed>) = 0 [pid 6002] openat(AT_FDCWD, "./file0", O_RDONLY [ 289.796400][ T6009] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 289.819652][ T6002] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 289.828474][ T6008] CPU: 1 PID: 6008 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 289.838953][ T6008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 289.849044][ T6008] Call Trace: [pid 6000] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 289.852372][ T6008] [ 289.855334][ T6008] dump_stack_lvl+0x136/0x150 [ 289.860088][ T6008] sysfs_warn_dup+0x80/0xa0 [ 289.864654][ T6008] sysfs_create_dir_ns+0x237/0x290 [ 289.869831][ T6008] ? sysfs_create_mount_point+0xb0/0xb0 [ 289.875463][ T6008] ? spin_bug+0x1c0/0x1c0 [ 289.879861][ T6008] ? do_raw_spin_unlock+0x175/0x230 [ 289.885103][ T6008] kobject_add_internal+0x2c9/0x9c0 [ 289.891124][ T6008] ? kfree+0x11/0x150 [ 289.895142][ T6008] kobject_init_and_add+0x101/0x170 [ 289.900379][ T6008] ? kobject_create_and_add+0xf0/0xf0 [ 289.905790][ T6008] ? lockdep_init_map_type+0x21e/0x810 [ 289.911290][ T6008] ? lockdep_hardirqs_on+0x7d/0x100 [ 289.916526][ T6008] ? lockdep_init_map_type+0x21e/0x810 [ 289.922021][ T6008] gfs2_sys_fs_add+0x1d5/0x450 [ 289.926816][ T6008] ? recover_store+0x170/0x170 [ 289.931625][ T6008] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 289.937396][ T6008] gfs2_fill_super+0x1312/0x2aa0 [ 289.942451][ T6008] ? gfs2_reconfigure+0xf90/0xf90 [ 289.947519][ T6008] ? snprintf+0xbf/0x100 [ 289.951816][ T6008] ? vsprintf+0x30/0x30 [ 289.956021][ T6008] ? wait_for_completion_io_timeout+0x20/0x20 [ 289.962143][ T6008] ? set_blocksize+0x2d8/0x370 [ 289.966947][ T6008] get_tree_bdev+0x43e/0x7d0 [ 289.971579][ T6008] ? gfs2_reconfigure+0xf90/0xf90 [ 289.976640][ T6008] gfs2_get_tree+0x4e/0x270 [ 289.981177][ T6008] vfs_get_tree+0x8d/0x350 [ 289.985631][ T6008] path_mount+0x136e/0x1e70 [ 289.990171][ T6008] ? putname+0x102/0x140 [ 289.994448][ T6008] ? lockdep_hardirqs_on+0x7d/0x100 [ 289.999675][ T6008] ? finish_automount+0xa30/0xa30 [ 290.004761][ T6008] ? putname+0x102/0x140 [ 290.009036][ T6008] __x64_sys_mount+0x283/0x300 [ 290.013840][ T6008] ? copy_mnt_ns+0xb30/0xb30 [ 290.018473][ T6008] ? lockdep_hardirqs_on+0x7d/0x100 [ 290.023726][ T6008] ? _raw_spin_unlock_irq+0x2e/0x50 [ 290.028972][ T6008] ? ptrace_notify+0xfe/0x140 [ 290.033696][ T6008] do_syscall_64+0x39/0xb0 [ 290.038136][ T6008] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 290.044074][ T6008] RIP: 0033:0x7f4f6dd11c5a [ 290.048510][ T6008] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 290.068162][ T6008] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 290.076604][ T6008] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 290.084600][ T6008] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 290.092610][ T6008] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [pid 6000] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 6000] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6000] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 6000] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [ 290.100603][ T6008] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 290.108595][ T6008] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 290.116591][ T6008] [ 290.129133][ T6008] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 290.135889][ T6002] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [pid 6000] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6000] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[118]}, 88) = 118 ./strace-static-x86_64: Process 6020 attached [pid 6000] rt_sigprocmask(SIG_SETMASK, [], [pid 6011] <... munmap resumed>) = 0 [pid 6011] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6020] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6000] <... rt_sigprocmask resumed>NULL, 8) = 0 [ 290.135889][ T6002] inode = 12 2341 [ 290.135889][ T6002] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 290.162024][ T6009] CPU: 1 PID: 6009 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 290.172539][ T6009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 290.178391][ T6011] loop2: detected capacity change from 0 to 32768 [ 290.182820][ T6009] Call Trace: [ 290.182833][ T6009] [ 290.195536][ T6009] dump_stack_lvl+0x136/0x150 [ 290.198153][ T6020] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 290.200267][ T6009] sysfs_warn_dup+0x80/0xa0 [ 290.209752][ T6008] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 290.213080][ T6009] sysfs_create_dir_ns+0x237/0x290 [ 290.213123][ T6009] ? sysfs_create_mount_point+0xb0/0xb0 [ 290.230354][ T6009] ? spin_bug+0x1c0/0x1c0 [ 290.234755][ T6009] ? do_raw_spin_unlock+0x175/0x230 [ 290.240024][ T6009] kobject_add_internal+0x2c9/0x9c0 [ 290.245294][ T6009] ? kfree+0x11/0x150 [pid 6020] <... rseq resumed>) = 0 [pid 6011] <... openat resumed>) = 4 [pid 6020] set_robust_list(0x7f4f6609f9a0, 24 [pid 6011] ioctl(4, LOOP_SET_FD, 3 [pid 6000] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6020] <... set_robust_list resumed>) = 0 [pid 6000] <... futex resumed>) = 0 [pid 6020] rt_sigprocmask(SIG_SETMASK, [], [pid 6000] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6020] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6020] ioctl(0, VFAT_IOCTL_READDIR_SHORT, 0) = -1 ENOTTY (Inappropriate ioctl for device) [ 290.249332][ T6009] kobject_init_and_add+0x101/0x170 [ 290.254590][ T6009] ? kobject_create_and_add+0xf0/0xf0 [ 290.260027][ T6009] ? lockdep_init_map_type+0x21e/0x810 [ 290.262135][ T6011] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 290.265514][ T6009] ? lockdep_hardirqs_on+0x7d/0x100 [ 290.265563][ T6009] ? lockdep_init_map_type+0x21e/0x810 [ 290.283671][ T6009] gfs2_sys_fs_add+0x1d5/0x450 [ 290.288494][ T6009] ? recover_store+0x170/0x170 [ 290.293313][ T6009] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 290.299110][ T6009] gfs2_fill_super+0x1312/0x2aa0 [ 290.304109][ T6009] ? gfs2_reconfigure+0xf90/0xf90 [ 290.309188][ T6009] ? snprintf+0xbf/0x100 [ 290.313483][ T6009] ? vsprintf+0x30/0x30 [ 290.316764][ T6020] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 290.316764][ T6020] inode = 12 2341 [ 290.316764][ T6020] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 290.317659][ T6009] ? wait_for_completion_io_timeout+0x20/0x20 [ 290.317708][ T6009] ? set_blocksize+0x2d8/0x370 [ 290.347265][ T6009] get_tree_bdev+0x43e/0x7d0 [ 290.351917][ T6009] ? gfs2_reconfigure+0xf90/0xf90 [ 290.357017][ T6009] gfs2_get_tree+0x4e/0x270 [ 290.361575][ T6009] vfs_get_tree+0x8d/0x350 [ 290.366051][ T6009] path_mount+0x136e/0x1e70 [ 290.370696][ T6009] ? putname+0x102/0x140 [ 290.374994][ T6009] ? lockdep_hardirqs_on+0x7d/0x100 [ 290.380253][ T6009] ? finish_automount+0xa30/0xa30 [ 290.385339][ T6009] ? putname+0x102/0x140 [ 290.389651][ T6009] __x64_sys_mount+0x283/0x300 [ 290.394462][ T6009] ? copy_mnt_ns+0xb30/0xb30 [ 290.399111][ T6009] ? lockdep_hardirqs_on+0x7d/0x100 [ 290.404676][ T6009] ? _raw_spin_unlock_irq+0x2e/0x50 [ 290.409941][ T6009] ? ptrace_notify+0xfe/0x140 [ 290.414698][ T6009] do_syscall_64+0x39/0xb0 [ 290.418461][ T6002] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:4 m:20 p:1 [ 290.419134][ T6009] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 290.434179][ T6009] RIP: 0033:0x7f4f6dd11c5a [ 290.438632][ T6009] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 290.458295][ T6009] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 290.463290][ T6020] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:4 m:20 p:1 [ 290.466742][ T6009] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 290.466769][ T6009] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 290.466793][ T6009] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [pid 6020] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6000] <... futex resumed>) = 0 [pid 6020] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6000] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6020] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6000] <... futex resumed>) = 0 [pid 6020] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6000] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6011] <... ioctl resumed>) = 0 [pid 6011] close(3) = 0 [pid 6011] mkdir("./file0", 0777) = 0 [pid 6011] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6016] <... write resumed>) = 16777216 [pid 6016] munmap(0x7f4f650a0000, 16777216 [pid 6000] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 290.466815][ T6009] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 290.466838][ T6009] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 290.515831][ T6009] [ 290.519905][ T6011] CPU: 0 PID: 6011 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 290.530393][ T6011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 290.540493][ T6011] Call Trace: [ 290.543809][ T6011] [ 290.546777][ T6011] dump_stack_lvl+0x136/0x150 [ 290.551528][ T6011] sysfs_warn_dup+0x80/0xa0 [ 290.556081][ T6011] sysfs_create_dir_ns+0x237/0x290 [ 290.561243][ T6011] ? sysfs_create_mount_point+0xb0/0xb0 [ 290.566843][ T6011] ? spin_bug+0x1c0/0x1c0 [ 290.571228][ T6011] ? do_raw_spin_unlock+0x175/0x230 [ 290.576495][ T6011] kobject_add_internal+0x2c9/0x9c0 [ 290.581755][ T6011] ? kfree+0x11/0x150 [ 290.585798][ T6011] kobject_init_and_add+0x101/0x170 [ 290.590965][ T6009] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 290.591027][ T6011] ? kobject_create_and_add+0xf0/0xf0 [ 290.604967][ T6009] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 290.610276][ T6011] ? lockdep_init_map_type+0x21e/0x810 [ 290.610319][ T6011] ? lockdep_hardirqs_on+0x7d/0x100 [ 290.627576][ T6011] ? lockdep_init_map_type+0x21e/0x810 [ 290.628615][ T6002] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6002 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 290.633075][ T6011] gfs2_sys_fs_add+0x1d5/0x450 [ 290.633110][ T6011] ? recover_store+0x170/0x170 [ 290.650751][ T6020] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6002 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 290.652630][ T6011] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 290.663522][ T6002] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6020 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 290.669176][ T6011] gfs2_fill_super+0x1312/0x2aa0 [ 290.669219][ T6011] ? gfs2_reconfigure+0xf90/0xf90 [ 290.669252][ T6011] ? snprintf+0xbf/0x100 [ 290.669290][ T6011] ? vsprintf+0x30/0x30 [ 290.669328][ T6011] ? wait_for_completion_io_timeout+0x20/0x20 [ 290.669373][ T6011] ? set_blocksize+0x2d8/0x370 [ 290.669413][ T6011] get_tree_bdev+0x43e/0x7d0 [ 290.669464][ T6011] ? gfs2_reconfigure+0xf90/0xf90 [ 290.669500][ T6011] gfs2_get_tree+0x4e/0x270 [ 290.669534][ T6011] vfs_get_tree+0x8d/0x350 [ 290.669605][ T6011] path_mount+0x136e/0x1e70 [ 290.669645][ T6011] ? putname+0x102/0x140 [ 290.691555][ T6020] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6020 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 290.693823][ T6011] ? lockdep_hardirqs_on+0x7d/0x100 [ 290.698024][ T6020] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 290.704030][ T6011] ? finish_automount+0xa30/0xa30 [ 290.708831][ T6002] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 290.713365][ T6011] ? putname+0x102/0x140 [ 290.725855][ T6020] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 290.727291][ T6011] __x64_sys_mount+0x283/0x300 [ 290.731793][ T6020] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 290.736025][ T6011] ? copy_mnt_ns+0xb30/0xb30 [ 290.736067][ T6011] ? lockdep_hardirqs_on+0x7d/0x100 [ 290.746614][ T6020] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 290.751227][ T6011] ? _raw_spin_unlock_irq+0x2e/0x50 [ 290.760894][ T6020] gfs2: fsid=syz:syz.0: File system withdrawn [ 290.764652][ T6011] ? ptrace_notify+0xfe/0x140 [ 290.830543][ T6011] do_syscall_64+0x39/0xb0 [ 290.835000][ T6011] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 290.840941][ T6011] RIP: 0033:0x7f4f6dd11c5a [ 290.845380][ T6011] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 290.865036][ T6011] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 290.873488][ T6011] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 290.881495][ T6011] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 290.889500][ T6011] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 290.897509][ T6011] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [pid 6016] <... munmap resumed>) = 0 [pid 6014] <... write resumed>) = 16777216 [pid 6009] <... mount resumed>) = -1 EEXIST (File exists) [pid 6008] <... mount resumed>) = -1 EEXIST (File exists) [pid 6016] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6014] munmap(0x7f4f650a0000, 16777216 [pid 6009] ioctl(4, LOOP_CLR_FD [ 290.905592][ T6011] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 290.913590][ T6011] [ 290.930109][ T6020] CPU: 1 PID: 6020 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 290.935546][ T6011] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 6008] ioctl(4, LOOP_CLR_FD [pid 6016] <... openat resumed>) = 4 [pid 6016] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6016] close(3) = 0 [pid 6016] mkdir("./file0", 0777) = 0 [ 290.940614][ T6020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 290.940635][ T6020] Call Trace: [ 290.940645][ T6020] [ 290.940657][ T6020] dump_stack_lvl+0x136/0x150 [ 290.940714][ T6020] gfs2_withdraw+0xb33/0x1060 [ 290.940749][ T6020] ? gfs2_consist_inode_i+0x104/0x150 [ 290.940784][ T6020] gfs2_dirent_scan+0x32a/0x3d0 [ 290.940830][ T6020] ? gfs2_dirent_prev+0x210/0x210 [ 290.940878][ T6020] ? gfs2_dirent_prev+0x210/0x210 [ 290.968491][ T6016] loop3: detected capacity change from 0 to 32768 [ 290.971090][ T6020] gfs2_dirent_search+0x47d/0x580 [ 290.971147][ T6020] ? get_first_leaf+0x190/0x190 [ 291.017216][ T6020] ? gfs2_permission+0x256/0x3e0 [ 291.021154][ T6011] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 291.022195][ T6020] gfs2_dir_search+0x8d/0x2d0 [ 291.033421][ T6020] ? gfs2_dir_read+0x14e0/0x14e0 [ 291.038439][ T6020] gfs2_lookupi+0x481/0x640 [ 291.043003][ T6020] ? gfs2_lookup_by_inum+0x100/0x100 [ 291.048347][ T6020] ? __gfs2_lookup+0x83/0x280 [ 291.053089][ T6020] __gfs2_lookup+0x83/0x280 [pid 6016] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6014] <... munmap resumed>) = 0 [pid 6014] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [ 291.057652][ T6020] ? gfs2_lookupi+0x640/0x640 [ 291.062392][ T6020] ? lockdep_init_map_type+0x21e/0x810 [ 291.067915][ T6020] ? avc_has_perm_noaudit+0x10b/0x3a0 [ 291.073358][ T6020] ? lockdep_init_map_type+0x21e/0x810 [ 291.078878][ T6020] __lookup_slow+0x24c/0x460 [ 291.083529][ T6020] ? lookup_one_qstr_excl+0x180/0x180 [ 291.088969][ T6020] ? lookup_fast+0x14e/0x520 [ 291.093616][ T6020] walk_component+0x33f/0x5a0 [ 291.098358][ T6020] link_path_walk.part.0+0x74e/0xd60 [ 291.102252][ T6014] loop4: detected capacity change from 0 to 32768 [ 291.103697][ T6020] ? walk_component+0x5a0/0x5a0 [ 291.103746][ T6020] path_lookupat+0xb7/0x840 [ 291.119587][ T6020] path_openat+0x1710/0x2710 [ 291.124250][ T6020] ? __lock_acquire+0x1984/0x5e20 [ 291.129341][ T6020] ? path_lookupat+0x840/0x840 [ 291.134069][ T6014] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 291.134153][ T6020] do_filp_open+0x1ba/0x410 [ 291.146057][ T6020] ? may_open_dev+0xf0/0xf0 [ 291.150598][ T6020] ? find_held_lock+0x2d/0x110 [ 291.155393][ T6020] ? do_raw_spin_lock+0x124/0x2b0 [ 291.160451][ T6020] ? spin_bug+0x1c0/0x1c0 [ 291.164826][ T6020] ? _raw_spin_unlock+0x28/0x40 [ 291.169801][ T6020] ? alloc_fd+0x2e4/0x750 [ 291.174172][ T6020] do_sys_openat2+0x160/0x1c0 [ 291.178890][ T6020] ? build_open_flags+0x720/0x720 [ 291.183963][ T6020] ? ptrace_notify+0xfe/0x140 [ 291.188682][ T6020] ? lock_downgrade+0x690/0x690 [ 291.193564][ T6020] __x64_sys_openat+0x143/0x1f0 [ 291.198457][ T6020] ? __ia32_sys_open+0x1c0/0x1c0 [ 291.203432][ T6020] ? _raw_spin_unlock_irq+0x23/0x50 [ 291.208670][ T6020] ? lockdep_hardirqs_on+0x7d/0x100 [ 291.213910][ T6020] ? _raw_spin_unlock_irq+0x2e/0x50 [ 291.219149][ T6020] ? ptrace_notify+0xfe/0x140 [ 291.223880][ T6020] do_syscall_64+0x39/0xb0 [ 291.228322][ T6020] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 291.234269][ T6020] RIP: 0033:0x7f4f6dd107f9 [ 291.238709][ T6020] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 291.258348][ T6020] RSP: 002b:00007f4f6609f228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 291.266787][ T6020] RAX: ffffffffffffffda RBX: 00007f4f6dda46f8 RCX: 00007f4f6dd107f9 [ 291.274790][ T6020] RDX: 0000000000200002 RSI: 00000000200001c0 RDI: ffffffffffffff9c [ 291.282782][ T6020] RBP: 00007f4f6dda46f0 R08: 00007f4f6609f6c0 R09: 00007f4f6609f6c0 [ 291.290804][ T6020] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46fc [ 291.298799][ T6020] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [pid 6014] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6014] close(3) = 0 [pid 6014] mkdir("./file0", 0777) = 0 [pid 6014] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6020] <... openat resumed>) = -1 EIO (Input/output error) [pid 6011] <... mount resumed>) = -1 EEXIST (File exists) [pid 6002] <... openat resumed>) = -1 EIO (Input/output error) [pid 6020] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6011] ioctl(4, LOOP_CLR_FD [pid 6002] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6020] <... futex resumed>) = 0 [pid 6002] <... futex resumed>) = 0 [pid 6020] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6002] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6000] close(3) = 0 [pid 6000] close(4) = -1 EBADF (Bad file descriptor) [pid 6000] close(5) = -1 EBADF (Bad file descriptor) [pid 6000] close(6) = -1 EBADF (Bad file descriptor) [pid 6000] close(7) = -1 EBADF (Bad file descriptor) [pid 6000] close(8) = -1 EBADF (Bad file descriptor) [pid 6000] close(9) = -1 EBADF (Bad file descriptor) [pid 6000] close(10) = -1 EBADF (Bad file descriptor) [pid 6000] close(11) = -1 EBADF (Bad file descriptor) [ 291.306803][ T6020] [ 291.318609][ T6014] CPU: 1 PID: 6014 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 291.329106][ T6014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 291.336795][ T6016] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 291.339174][ T6014] Call Trace: [ 291.339187][ T6014] [ 291.352832][ T6014] dump_stack_lvl+0x136/0x150 [pid 6000] close(12) = -1 EBADF (Bad file descriptor) [pid 6000] close(13) = -1 EBADF (Bad file descriptor) [pid 6000] close(14) = -1 EBADF (Bad file descriptor) [pid 6000] close(15) = -1 EBADF (Bad file descriptor) [ 291.357593][ T6014] sysfs_warn_dup+0x80/0xa0 [ 291.362158][ T6014] sysfs_create_dir_ns+0x237/0x290 [ 291.367326][ T6014] ? sysfs_create_mount_point+0xb0/0xb0 [ 291.372939][ T6014] ? spin_bug+0x1c0/0x1c0 [ 291.377335][ T6014] ? do_raw_spin_unlock+0x175/0x230 [ 291.382605][ T6014] kobject_add_internal+0x2c9/0x9c0 [ 291.387867][ T6014] ? kfree+0x11/0x150 [ 291.391909][ T6014] kobject_init_and_add+0x101/0x170 [ 291.397171][ T6014] ? kobject_create_and_add+0xf0/0xf0 [ 291.402622][ T6014] ? lockdep_init_map_type+0x21e/0x810 [ 291.408147][ T6014] ? lockdep_hardirqs_on+0x7d/0x100 [ 291.413412][ T6014] ? lockdep_init_map_type+0x21e/0x810 [ 291.418943][ T6014] gfs2_sys_fs_add+0x1d5/0x450 [ 291.423765][ T6014] ? recover_store+0x170/0x170 [ 291.428575][ T6014] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 291.434357][ T6014] gfs2_fill_super+0x1312/0x2aa0 [ 291.439351][ T6014] ? gfs2_reconfigure+0xf90/0xf90 [ 291.444428][ T6014] ? snprintf+0xbf/0x100 [ 291.448722][ T6014] ? vsprintf+0x30/0x30 [ 291.452927][ T6014] ? wait_for_completion_io_timeout+0x20/0x20 [ 291.459047][ T6014] ? set_blocksize+0x2d8/0x370 [ 291.463852][ T6014] get_tree_bdev+0x43e/0x7d0 [ 291.468488][ T6014] ? gfs2_reconfigure+0xf90/0xf90 [ 291.473560][ T6014] gfs2_get_tree+0x4e/0x270 [ 291.478105][ T6014] vfs_get_tree+0x8d/0x350 [ 291.482655][ T6014] path_mount+0x136e/0x1e70 [ 291.487207][ T6014] ? putname+0x102/0x140 [ 291.491502][ T6014] ? lockdep_hardirqs_on+0x7d/0x100 [ 291.496748][ T6014] ? finish_automount+0xa30/0xa30 [ 291.501830][ T6014] ? putname+0x102/0x140 [ 291.506126][ T6014] __x64_sys_mount+0x283/0x300 [ 291.510952][ T6014] ? copy_mnt_ns+0xb30/0xb30 [ 291.515593][ T6014] ? lockdep_hardirqs_on+0x7d/0x100 [ 291.520838][ T6014] ? _raw_spin_unlock_irq+0x2e/0x50 [ 291.526103][ T6014] ? ptrace_notify+0xfe/0x140 [ 291.530844][ T6014] do_syscall_64+0x39/0xb0 [ 291.535306][ T6014] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 291.541288][ T6014] RIP: 0033:0x7f4f6dd11c5a [ 291.545737][ T6014] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 291.565480][ T6014] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 291.573937][ T6014] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 291.581945][ T6014] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 291.589950][ T6014] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 291.597966][ T6014] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6000] close(16) = -1 EBADF (Bad file descriptor) [pid 6000] close(17) = -1 EBADF (Bad file descriptor) [pid 6000] close(18) = -1 EBADF (Bad file descriptor) [pid 6000] close(19) = -1 EBADF (Bad file descriptor) [pid 6000] close(20) = -1 EBADF (Bad file descriptor) [pid 6000] close(21) = -1 EBADF (Bad file descriptor) [pid 6000] close(22) = -1 EBADF (Bad file descriptor) [pid 6000] close(23) = -1 EBADF (Bad file descriptor) [pid 6000] close(24) = -1 EBADF (Bad file descriptor) [pid 6000] close(25) = -1 EBADF (Bad file descriptor) [pid 6000] close(26) = -1 EBADF (Bad file descriptor) [pid 6000] close(27) = -1 EBADF (Bad file descriptor) [pid 6000] close(28) = -1 EBADF (Bad file descriptor) [pid 6000] close(29) = -1 EBADF (Bad file descriptor) [pid 6000] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 6000] exit_group(0 [pid 6020] <... futex resumed>) = ? [pid 6002] <... futex resumed>) = ? [pid 6000] <... exit_group resumed>) = ? [pid 6020] +++ exited with 0 +++ [pid 6002] +++ exited with 0 +++ [pid 6000] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=116, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=72 /* 0.72 s */} --- [pid 5029] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5029] umount2("./37", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5029] umount2("./37/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./37/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./37/cgroup.cpu") = 0 [pid 5029] umount2("./37/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./37/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./37/binderfs") = 0 [ 291.605980][ T6014] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 291.613993][ T6014] [ 291.635620][ T6014] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 291.659187][ T6016] CPU: 0 PID: 6016 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 291.665867][ T6014] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 291.669740][ T6016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 291.686345][ T6016] Call Trace: [ 291.689660][ T6016] [ 291.692623][ T6016] dump_stack_lvl+0x136/0x150 [ 291.697365][ T6016] sysfs_warn_dup+0x80/0xa0 [ 291.701928][ T6016] sysfs_create_dir_ns+0x237/0x290 [ 291.707096][ T6016] ? sysfs_create_mount_point+0xb0/0xb0 [ 291.712699][ T6016] ? spin_bug+0x1c0/0x1c0 [ 291.717091][ T6016] ? do_raw_spin_unlock+0x175/0x230 [ 291.722351][ T6016] kobject_add_internal+0x2c9/0x9c0 [ 291.727609][ T6016] ? kfree+0x11/0x150 [ 291.731650][ T6016] kobject_init_and_add+0x101/0x170 [ 291.736910][ T6016] ? kobject_create_and_add+0xf0/0xf0 [ 291.742344][ T6016] ? lockdep_init_map_type+0x21e/0x810 [ 291.747862][ T6016] ? lockdep_hardirqs_on+0x7d/0x100 [ 291.753115][ T6016] ? lockdep_init_map_type+0x21e/0x810 [ 291.758635][ T6016] gfs2_sys_fs_add+0x1d5/0x450 [ 291.763450][ T6016] ? recover_store+0x170/0x170 [ 291.768269][ T6016] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 291.774141][ T6016] gfs2_fill_super+0x1312/0x2aa0 [ 291.779133][ T6016] ? gfs2_reconfigure+0xf90/0xf90 [ 291.784215][ T6016] ? snprintf+0xbf/0x100 [ 291.788520][ T6016] ? vsprintf+0x30/0x30 [ 291.792729][ T6016] ? wait_for_completion_io_timeout+0x20/0x20 [ 291.798890][ T6016] ? set_blocksize+0x2d8/0x370 [ 291.803713][ T6016] get_tree_bdev+0x43e/0x7d0 [ 291.808384][ T6016] ? gfs2_reconfigure+0xf90/0xf90 [ 291.813453][ T6016] gfs2_get_tree+0x4e/0x270 [ 291.817992][ T6016] vfs_get_tree+0x8d/0x350 [ 291.822444][ T6016] path_mount+0x136e/0x1e70 [ 291.826996][ T6016] ? putname+0x102/0x140 [ 291.831280][ T6016] ? lockdep_hardirqs_on+0x7d/0x100 [ 291.836522][ T6016] ? finish_automount+0xa30/0xa30 [ 291.841589][ T6016] ? putname+0x102/0x140 [ 291.845864][ T6016] __x64_sys_mount+0x283/0x300 [ 291.850664][ T6016] ? copy_mnt_ns+0xb30/0xb30 [ 291.855285][ T6016] ? lockdep_hardirqs_on+0x7d/0x100 [ 291.860518][ T6016] ? _raw_spin_unlock_irq+0x2e/0x50 [ 291.865767][ T6016] ? ptrace_notify+0xfe/0x140 [ 291.870501][ T6016] do_syscall_64+0x39/0xb0 [ 291.874952][ T6016] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 291.880899][ T6016] RIP: 0033:0x7f4f6dd11c5a [ 291.885345][ T6016] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [pid 5029] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6008] <... ioctl resumed>) = 0 [pid 6007] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6006] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6006] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6008] close(4 [pid 6014] <... mount resumed>) = -1 EEXIST (File exists) [pid 6006] <... futex resumed>) = 0 [pid 6014] ioctl(4, LOOP_CLR_FD [pid 6008] <... close resumed>) = 0 [pid 6006] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6010] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6008] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6006] <... mmap resumed>) = 0x7f4f6607f000 [ 291.904981][ T6016] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 291.913422][ T6016] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 291.921419][ T6016] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 291.929413][ T6016] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 291.937421][ T6016] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 291.945419][ T6016] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 291.953419][ T6016] [pid 6010] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6007] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6010] <... futex resumed>) = 0 [pid 6010] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 6010] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6006] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6010] <... mprotect resumed>) = 0 [pid 6010] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6010] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[116]}, 88) = 116 [pid 6008] <... futex resumed>) = 0 [pid 6006] <... mprotect resumed>) = 0 [pid 6008] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6006] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6006] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[115]}, 88) = 115 [pid 6006] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6006] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6006] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 6025 attached ./strace-static-x86_64: Process 6024 attached [pid 6010] rt_sigprocmask(SIG_SETMASK, [], [pid 6025] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6024] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6010] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6025] <... rseq resumed>) = 0 [pid 6025] set_robust_list(0x7f4f6609f9a0, 24) = 0 [pid 6025] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6025] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 6025] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6006] <... futex resumed>) = 0 [pid 6025] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6006] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6008] <... futex resumed>) = 0 [pid 6006] <... futex resumed>) = 1 [pid 6008] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6006] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6008] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6024] <... rseq resumed>) = 0 [ 292.018223][ T6016] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 292.032565][ T6016] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 6010] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6008] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6024] set_robust_list(0x7f4f6609f9a0, 24 [pid 6010] <... futex resumed>) = 0 [pid 6008] <... futex resumed>) = 1 [pid 6006] <... futex resumed>) = 0 [pid 6024] <... set_robust_list resumed>) = 0 [pid 6010] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6008] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6006] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6024] rt_sigprocmask(SIG_SETMASK, [], [pid 6008] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6006] <... futex resumed>) = 0 [pid 6024] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6008] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6006] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6024] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6008] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6024] <... openat resumed>) = 3 [pid 6008] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6024] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6008] <... futex resumed>) = 1 [pid 6006] <... futex resumed>) = 0 [pid 6024] <... futex resumed>) = 1 [pid 6016] <... mount resumed>) = -1 EEXIST (File exists) [pid 6010] <... futex resumed>) = 0 [pid 6008] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6007] <... futex resumed>) = 0 [pid 6006] close(3 [pid 6024] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6010] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6006] <... close resumed>) = 0 [pid 6024] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6010] <... futex resumed>) = 0 [pid 6006] close(4 [pid 6024] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6010] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6006] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6024] <... futex resumed>) = 0 [pid 6010] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6006] close(5 [pid 6024] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6010] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6006] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6024] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6016] ioctl(4, LOOP_CLR_FD [pid 6010] <... futex resumed>) = 0 [pid 6006] close(6 [pid 6024] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6010] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6006] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6024] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6006] close(7 [pid 6024] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6006] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6024] <... futex resumed>) = 1 [pid 6010] <... futex resumed>) = 0 [pid 6006] close(8 [pid 6024] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6007] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6006] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6006] close(9) = -1 EBADF (Bad file descriptor) [pid 6006] close(10 [pid 6007] <... mmap resumed>) = 0x7f4f6607f000 [pid 6006] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6006] close(11) = -1 EBADF (Bad file descriptor) [pid 6006] close(12) = -1 EBADF (Bad file descriptor) [pid 6006] close(13) = -1 EBADF (Bad file descriptor) [pid 6006] close(14) = -1 EBADF (Bad file descriptor) [pid 6006] close(15) = -1 EBADF (Bad file descriptor) [pid 6006] close(16) = -1 EBADF (Bad file descriptor) [pid 6006] close(17 [pid 6007] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6006] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6006] close(18) = -1 EBADF (Bad file descriptor) [pid 6007] <... mprotect resumed>) = 0 [pid 6006] close(19) = -1 EBADF (Bad file descriptor) [pid 6006] close(20) = -1 EBADF (Bad file descriptor) [pid 6006] close(21 [pid 6007] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6006] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6006] close(22 [pid 6007] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6006] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6006] close(23) = -1 EBADF (Bad file descriptor) [pid 6006] close(24) = -1 EBADF (Bad file descriptor) [pid 6006] close(25) = -1 EBADF (Bad file descriptor) [pid 6006] close(26 [pid 6013] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6006] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6013] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6006] close(27 [pid 6007] <... clone3 resumed> => {parent_tid=[117]}, 88) = 117 [pid 6013] <... futex resumed>) = 0 [pid 6007] rt_sigprocmask(SIG_SETMASK, [], [pid 6006] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6013] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6006] close(28./strace-static-x86_64: Process 6026 attached [pid 6013] <... mmap resumed>) = 0x7f4f6607f000 [pid 6006] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6026] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6013] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6006] close(29 [pid 6026] <... rseq resumed>) = 0 [pid 6013] <... mprotect resumed>) = 0 [pid 6007] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6006] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6026] set_robust_list(0x7f4f6609f9a0, 24 [pid 6013] rt_sigprocmask(SIG_BLOCK, ~[], write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6006] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6026] <... set_robust_list resumed>) = 0 [pid 6013] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6006] <... write resumed>) = 156 [pid 6026] rt_sigprocmask(SIG_SETMASK, [], [pid 6013] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6006] exit_group(0./strace-static-x86_64: Process 6027 attached [pid 6026] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6025] <... futex resumed>) = ? [pid 6008] <... futex resumed>) = ? [pid 6006] <... exit_group resumed>) = ? [pid 6027] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6026] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6025] +++ exited with 0 +++ [pid 6013] <... clone3 resumed> => {parent_tid=[113]}, 88) = 113 [pid 6008] +++ exited with 0 +++ [pid 6006] +++ exited with 0 +++ [pid 6027] <... rseq resumed>) = 0 [pid 6013] rt_sigprocmask(SIG_SETMASK, [], [pid 6027] set_robust_list(0x7f4f6609f9a0, 24 [pid 6013] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=113, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=57 /* 0.57 s */} --- [pid 6027] <... set_robust_list resumed>) = 0 [pid 6013] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] umount2("./38", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6027] rt_sigprocmask(SIG_SETMASK, [], [pid 6013] <... futex resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6027] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6013] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5032] openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6027] openat(AT_FDCWD, "./file0", O_RDONLY [pid 5032] <... openat resumed>) = 3 [pid 6027] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", [pid 6027] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6011] <... ioctl resumed>) = 0 [pid 6007] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6027] <... futex resumed>) = 1 [pid 6026] <... futex resumed>) = 0 [pid 6013] <... futex resumed>) = 0 [pid 6011] close(4 [pid 6007] <... futex resumed>) = 1 [pid 5032] getdents64(3, [pid 6027] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6026] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6013] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6011] <... close resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6027] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6026] <... openat resumed>) = 3 [pid 6013] <... futex resumed>) = 0 [pid 6011] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] umount2("./38/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6027] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6026] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6013] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6011] <... futex resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6027] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6026] <... futex resumed>) = 0 [pid 6011] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6010] close(3 [pid 5032] newfstatat(AT_FDCWD, "./38/cgroup.cpu", [pid 6027] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6026] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6010] <... close resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6027] <... futex resumed>) = 1 [pid 6013] <... futex resumed>) = 0 [pid 6010] close(4 [pid 5032] unlink("./38/cgroup.cpu" [pid 6027] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6015] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6013] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... unlink resumed>) = 0 [pid 6027] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6015] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6013] <... futex resumed>) = 0 [pid 6010] close(5 [pid 6007] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5032] umount2("./38/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6027] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6015] <... futex resumed>) = 0 [pid 6013] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6027] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6015] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6010] close(6 [pid 5032] newfstatat(AT_FDCWD, "./38/binderfs", [pid 6027] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6027] <... futex resumed>) = 1 [pid 6015] <... mmap resumed>) = 0x7f4f6607f000 [pid 6013] <... futex resumed>) = 0 [pid 6010] close(7 [pid 5032] unlink("./38/binderfs" [pid 6027] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6015] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5032] <... unlink resumed>) = 0 [pid 6010] close(8 [pid 6007] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6026] <... futex resumed>) = 0 [pid 6015] <... mprotect resumed>) = 0 [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] <... futex resumed>) = 1 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6026] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6010] close(9 [pid 6007] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5032] newfstatat(AT_FDCWD, "./38/file0", [pid 6026] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6026] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6010] close(10 [pid 6007] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5032] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6026] <... futex resumed>) = 0 [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6026] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6010] close(11 [pid 6007] <... futex resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./38/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6026] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6015] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5032] <... openat resumed>) = 4 [pid 6026] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6010] close(12 [pid 6007] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5032] newfstatat(4, "", [pid 6026] <... futex resumed>) = 0 [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6026] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6010] close(13 [pid 5032] getdents64(4, [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6010] close(14 [pid 5032] getdents64(4, [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6010] close(15 [pid 5032] close(4 [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... close resumed>) = 0 [pid 6010] close(16 [pid 5032] rmdir("./38/file0" [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... rmdir resumed>) = 0 [pid 6010] close(17 [pid 5032] umount2("./38/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6010] close(18 [pid 5032] newfstatat(AT_FDCWD, "./38/cgroup", [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6010] close(19 [pid 5032] unlink("./38/cgroup" [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... unlink resumed>) = 0 [pid 6010] close(20 [pid 5032] umount2("./38/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6010] close(21 [pid 5032] newfstatat(AT_FDCWD, "./38/cgroup.net", [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6010] close(22 [pid 5032] unlink("./38/cgroup.net" [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... unlink resumed>) = 0 [pid 6010] close(23 [pid 5032] getdents64(3, [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6010] close(24 [pid 5032] close(3 [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... close resumed>) = 0 [pid 6010] close(25 [pid 5032] rmdir("./38" [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... rmdir resumed>) = 0 [pid 6010] close(26 [pid 5032] mkdir("./39", 0777 [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... mkdir resumed>) = 0 [pid 6010] close(27 [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... openat resumed>) = 3 [pid 6010] close(28 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6010] close(29 [pid 5032] close(3 [pid 6010] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... close resumed>) = 0 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6010] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6028 attached [pid 6010] <... write resumed>) = 156 [pid 6028] set_robust_list(0x55555654e6a0, 24 [pid 6010] exit_group(0 [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 116 [pid 6028] <... set_robust_list resumed>) = 0 [pid 6024] <... futex resumed>) = ? [pid 6011] <... futex resumed>) = ? [pid 6010] <... exit_group resumed>) = ? [pid 6028] chdir("./39" [pid 6024] +++ exited with 0 +++ [pid 6011] +++ exited with 0 +++ [pid 6010] +++ exited with 0 +++ [pid 6028] <... chdir resumed>) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=114, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=68 /* 0.68 s */} --- [pid 6028] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6028] setpgid(0, 0) = 0 [pid 6028] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 6015] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6014] <... ioctl resumed>) = 0 [pid 6009] <... ioctl resumed>) = 0 [pid 5033] umount2("./39", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6028] <... symlink resumed>) = 0 [pid 6014] close(4 [pid 6009] close(4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6028] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 6014] <... close resumed>) = 0 [pid 6009] <... close resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./39", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6028] <... symlink resumed>) = 0 [pid 6015] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6014] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6009] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] <... openat resumed>) = 3 [pid 6028] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 6014] <... futex resumed>) = 0 [pid 6009] <... futex resumed>) = 0 [pid 5033] newfstatat(3, "", ./strace-static-x86_64: Process 6029 attached [pid 6028] <... symlink resumed>) = 0 [pid 6016] <... ioctl resumed>) = 0 [pid 6015] <... clone3 resumed> => {parent_tid=[109]}, 88) = 109 [pid 6014] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6013] close(3 [pid 6009] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6029] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6028] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6016] close(4 [pid 6015] rt_sigprocmask(SIG_SETMASK, [], [pid 6013] <... close resumed>) = 0 [pid 6007] close(3 [pid 5033] getdents64(3, [pid 6029] <... rseq resumed>) = 0 [pid 6028] <... openat resumed>) = 3 [pid 6016] <... close resumed>) = 0 [pid 6015] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6013] close(4 [pid 6007] <... close resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6029] set_robust_list(0x7f4f6609f9a0, 24 [pid 6028] write(3, "1000", 4 [pid 6016] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6015] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] close(4 [pid 5033] umount2("./39/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6029] <... set_robust_list resumed>) = 0 [pid 6028] <... write resumed>) = 4 [pid 6016] <... futex resumed>) = 0 [pid 6015] <... futex resumed>) = 0 [pid 6013] close(5 [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6029] rt_sigprocmask(SIG_SETMASK, [], [pid 6028] close(3 [pid 6016] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6015] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] close(5 [pid 5033] newfstatat(AT_FDCWD, "./39/cgroup.cpu", [pid 6029] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6028] <... close resumed>) = 0 [pid 6013] close(6 [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6029] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6028] symlink("/dev/binderfs", "./binderfs" [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] close(6 [pid 5033] unlink("./39/cgroup.cpu" [pid 6029] <... openat resumed>) = 3 [pid 6028] <... symlink resumed>) = 0 [pid 6013] close(7 [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... unlink resumed>) = 0 [pid 6029] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6028] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] close(7 [pid 5033] umount2("./39/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6029] <... futex resumed>) = 1 [pid 6028] <... futex resumed>) = 0 [pid 6015] <... futex resumed>) = 0 [pid 6013] close(8 [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6029] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6028] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6015] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] close(8 [pid 5033] newfstatat(AT_FDCWD, "./39/binderfs", [pid 6028] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6016] <... futex resumed>) = 0 [pid 6015] <... futex resumed>) = 1 [pid 6013] close(9 [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6028] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6016] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6015] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] close(9 [pid 5033] unlink("./39/binderfs" [pid 6028] <... mprotect resumed>) = 0 [pid 6016] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6013] close(10 [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6028] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6016] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] close(10 [pid 5033] <... unlink resumed>) = 0 [pid 6028] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6016] <... futex resumed>) = 1 [pid 6015] <... futex resumed>) = 0 [pid 6013] close(11 [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6028] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 6016] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6015] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] close(11 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6030 attached [pid 6016] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6015] <... futex resumed>) = 0 [pid 6013] close(12 [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(AT_FDCWD, "./39/file0", [pid 6030] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6028] <... clone3 resumed> => {parent_tid=[117]}, 88) = 117 [pid 6016] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6015] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] close(12 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6030] <... rseq resumed>) = 0 [pid 6028] rt_sigprocmask(SIG_SETMASK, [], [pid 6016] <... futex resumed>) = 0 [pid 6015] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6013] close(13 [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6030] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6028] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6016] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6015] close(3 [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] close(13 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6030] <... set_robust_list resumed>) = 0 [pid 6028] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6015] <... close resumed>) = 0 [pid 6013] close(14 [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] openat(AT_FDCWD, "./39/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6030] rt_sigprocmask(SIG_SETMASK, [], [pid 6028] <... futex resumed>) = 0 [pid 6015] close(4 [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6030] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6028] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6013] close(15 [pid 6030] memfd_create("syzkaller", 0 [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6030] <... memfd_create resumed>) = 3 [pid 6013] close(16 [pid 6030] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6030] <... mmap resumed>) = 0x7f4f650a0000 [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6013] close(17 [pid 6007] close(14 [pid 5033] <... openat resumed>) = 4 [pid 6015] close(5 [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6013] close(18) = -1 EBADF (Bad file descriptor) [pid 6013] close(19) = -1 EBADF (Bad file descriptor) [pid 6013] close(20) = -1 EBADF (Bad file descriptor) [pid 6013] close(21) = -1 EBADF (Bad file descriptor) [pid 6013] close(22 [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(4, "", [pid 6015] close(6 [pid 6013] close(23 [pid 6007] close(15 [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6015] close(7 [pid 6013] close(24 [pid 6007] close(16 [pid 5033] getdents64(4, [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6015] close(8 [pid 6013] close(25 [pid 6007] close(17 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6013] close(26) = -1 EBADF (Bad file descriptor) [pid 6013] close(27) = -1 EBADF (Bad file descriptor) [pid 6013] close(28) = -1 EBADF (Bad file descriptor) [pid 6013] close(29 [pid 6015] close(9 [pid 6013] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] close(18 [pid 5033] getdents64(4, [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6013] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6015] close(10 [pid 6013] <... write resumed>) = 156 [pid 6007] close(19 [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6013] exit_group(0 [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] close(4 [pid 6027] <... futex resumed>) = ? [pid 6015] close(11 [pid 6014] <... futex resumed>) = ? [pid 6013] <... exit_group resumed>) = ? [pid 6007] close(20 [pid 5033] <... close resumed>) = 0 [pid 6027] +++ exited with 0 +++ [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] rmdir("./39/file0" [pid 6015] close(12 [pid 6007] close(21) = -1 EBADF (Bad file descriptor) [pid 5033] <... rmdir resumed>) = 0 [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] close(22 [pid 5033] umount2("./39/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6015] close(13 [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6015] close(14 [pid 6007] close(23 [pid 5033] newfstatat(AT_FDCWD, "./39/cgroup", [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6014] +++ exited with 0 +++ [pid 6013] +++ exited with 0 +++ [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6015] close(15 [pid 6007] close(24 [pid 5033] unlink("./39/cgroup" [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6015] close(16 [pid 6007] close(25 [pid 5033] <... unlink resumed>) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=111, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=69 /* 0.69 s */} --- [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./39/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 6015] close(17 [pid 6007] close(26 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(AT_FDCWD, "./39/cgroup.net", [pid 5031] <... restart_syscall resumed>) = 0 [pid 6015] close(18 [pid 6007] close(27 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6015] close(19 [pid 6007] close(28 [pid 5033] unlink("./39/cgroup.net" [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6015] close(20 [pid 6007] close(29 [pid 5033] <... unlink resumed>) = 0 [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] <... close resumed>) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5033] getdents64(3, [pid 5031] umount2("./37", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6015] close(21 [pid 6007] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5033] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6007] <... write resumed>) = 156 [pid 5033] close(3 [pid 6015] close(22 [pid 6007] exit_group(0 [pid 5033] <... close resumed>) = 0 [pid 5031] openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6026] <... futex resumed>) = ? [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6009] <... futex resumed>) = ? [pid 6007] <... exit_group resumed>) = ? [pid 5033] rmdir("./39" [pid 6026] +++ exited with 0 +++ [pid 6015] close(23 [pid 5031] <... openat resumed>) = 3 [pid 6009] +++ exited with 0 +++ [pid 6007] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=115, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=69 /* 0.69 s */} --- [pid 5033] <... rmdir resumed>) = 0 [pid 5031] newfstatat(3, "", [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] mkdir("./40", 0777 [pid 5034] umount2("./38", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5034] umount2("./38/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./38/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./38/cgroup.cpu") = 0 [pid 5034] umount2("./38/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6015] close(24 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] newfstatat(AT_FDCWD, "./38/binderfs", [pid 5033] <... mkdir resumed>) = 0 [pid 5031] getdents64(3, [pid 5029] <... umount2 resumed>) = 0 [pid 6015] close(25 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] unlink("./38/binderfs" [pid 5033] <... openat resumed>) = 3 [pid 5031] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6015] close(26 [pid 5034] <... unlink resumed>) = 0 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5031] umount2("./37/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6015] close(27 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] close(3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] newfstatat(AT_FDCWD, "./38/file0", [pid 5033] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] newfstatat(AT_FDCWD, "./37/cgroup.cpu", [pid 6015] close(28 [pid 5034] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./38/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... openat resumed>) = 4 [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] newfstatat(4, "", [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] newfstatat(AT_FDCWD, "./37/file0", ./strace-static-x86_64: Process 6031 attached [pid 6015] close(29 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 117 [pid 5031] unlink("./37/cgroup.cpu" [pid 6031] set_robust_list(0x55555654e6a0, 24 [pid 6015] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] getdents64(4, [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6031] <... set_robust_list resumed>) = 0 [pid 6015] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5031] <... unlink resumed>) = 0 [pid 5029] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6031] chdir("./40" [pid 6015] <... write resumed>) = 156 [pid 5034] getdents64(4, [pid 5031] umount2("./37/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6031] <... chdir resumed>) = 0 [pid 6015] exit_group(0 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6031] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6029] <... futex resumed>) = ? [pid 6016] <... futex resumed>) = ? [pid 6015] <... exit_group resumed>) = ? [pid 5034] close(4 [pid 5031] newfstatat(AT_FDCWD, "./37/binderfs", [pid 5029] <... openat resumed>) = 4 [pid 6031] <... prctl resumed>) = 0 [pid 6029] +++ exited with 0 +++ [pid 6016] +++ exited with 0 +++ [pid 5034] <... close resumed>) = 0 [pid 5029] newfstatat(4, "", [pid 5034] rmdir("./38/file0" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6015] +++ exited with 0 +++ [pid 5034] <... rmdir resumed>) = 0 [pid 5029] getdents64(4, [pid 6031] setpgid(0, 0 [pid 5034] umount2("./38/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(4, [pid 5034] newfstatat(AT_FDCWD, "./38/cgroup", [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] close(4 [pid 5034] unlink("./38/cgroup" [pid 5029] <... close resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5029] rmdir("./37/file0" [pid 5034] umount2("./38/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... rmdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] umount2("./37/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(AT_FDCWD, "./38/cgroup.net", [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6031] <... setpgid resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./37/binderfs" [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=107, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=73 /* 0.73 s */} --- [pid 5029] newfstatat(AT_FDCWD, "./37/cgroup", [pid 6031] symlink("/syzcgroup/unified/syz2", "./cgroup" [pid 5034] unlink("./38/cgroup.net" [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5029] unlink("./37/cgroup" [pid 5034] getdents64(3, [pid 5031] <... unlink resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 6031] <... symlink resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5031] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./37", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./37/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6031] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu" [pid 5034] close(3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... close resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./37/cgroup.net", [pid 5034] rmdir("./38" [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5029] unlink("./37/cgroup.net" [pid 6031] <... symlink resumed>) = 0 [pid 5034] mkdir("./39", 0777 [pid 5031] newfstatat(AT_FDCWD, "./37/file0", [pid 5030] openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... unlink resumed>) = 0 [pid 6031] symlink("/syzcgroup/net/syz2", "./cgroup.net" [pid 5034] <... mkdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5029] getdents64(3, [pid 6031] <... symlink resumed>) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(3, "", [pid 5029] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6031] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... openat resumed>) = 3 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] close(3 [pid 6031] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5031] openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] getdents64(3, [pid 5029] <... close resumed>) = 0 [pid 6031] write(3, "1000", 4 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... openat resumed>) = 4 [pid 5029] rmdir("./37" [pid 5034] close(3 [pid 5029] <... rmdir resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5031] newfstatat(4, "", [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5029] mkdir("./38", 0777 [pid 6031] <... write resumed>) = 4 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] umount2("./37/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 6032 attached [pid 6031] close(3 [pid 5031] getdents64(4, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6032] set_robust_list(0x55555654e6a0, 24 [pid 6031] <... close resumed>) = 0 [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 118 [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] newfstatat(AT_FDCWD, "./37/cgroup.cpu", [pid 5029] <... openat resumed>) = 3 [pid 6032] <... set_robust_list resumed>) = 0 [pid 6031] symlink("/dev/binderfs", "./binderfs" [pid 5031] getdents64(4, [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6032] chdir("./39" [pid 6031] <... symlink resumed>) = 0 [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] unlink("./37/cgroup.cpu" [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6032] <... chdir resumed>) = 0 [pid 6031] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] close(4 [pid 5030] <... unlink resumed>) = 0 [pid 5029] close(3 [pid 6032] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6031] <... futex resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5030] umount2("./37/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 6032] <... prctl resumed>) = 0 [pid 6031] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5031] rmdir("./37/file0" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6033 attached [pid 6032] setpgid(0, 0 [pid 6031] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5031] <... rmdir resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./37/binderfs", [pid 6033] set_robust_list(0x55555654e6a0, 24 [pid 6032] <... setpgid resumed>) = 0 [pid 6031] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5031] umount2("./37/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 119 [pid 6033] <... set_robust_list resumed>) = 0 [pid 6032] symlink("/syzcgroup/unified/syz5", "./cgroup" [pid 6031] <... mprotect resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] unlink("./37/binderfs" [pid 6033] chdir("./38" [pid 6032] <... symlink resumed>) = 0 [pid 6031] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5031] newfstatat(AT_FDCWD, "./37/cgroup", [pid 6033] <... chdir resumed>) = 0 [pid 6032] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu" [pid 6031] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 6033] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6032] <... symlink resumed>) = 0 [pid 6031] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6034 attached [pid 6033] <... prctl resumed>) = 0 [pid 6032] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 5031] unlink("./37/cgroup" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6034] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6033] setpgid(0, 0 [pid 6032] <... symlink resumed>) = 0 [pid 6031] <... clone3 resumed> => {parent_tid=[118]}, 88) = 118 [pid 5031] <... unlink resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./37/file0", [pid 6034] <... rseq resumed>) = 0 [pid 6033] <... setpgid resumed>) = 0 [pid 6032] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6031] rt_sigprocmask(SIG_SETMASK, [], [pid 5031] umount2("./37/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6034] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6033] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 6032] <... openat resumed>) = 3 [pid 6031] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6034] <... set_robust_list resumed>) = 0 [pid 6033] <... symlink resumed>) = 0 [pid 6032] write(3, "1000", 4 [pid 6031] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] newfstatat(AT_FDCWD, "./37/cgroup.net", [pid 5030] umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6034] rt_sigprocmask(SIG_SETMASK, [], [pid 6033] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu" [pid 6032] <... write resumed>) = 4 [pid 6031] <... futex resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6034] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6033] <... symlink resumed>) = 0 [pid 6032] close(3 [pid 6031] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5031] unlink("./37/cgroup.net" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6033] symlink("/syzcgroup/net/syz0", "./cgroup.net" [pid 6032] <... close resumed>) = 0 [pid 6034] memfd_create("syzkaller", 0 [pid 6033] <... symlink resumed>) = 0 [pid 6032] symlink("/dev/binderfs", "./binderfs" [pid 5031] <... unlink resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6034] <... memfd_create resumed>) = 3 [pid 6033] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6032] <... symlink resumed>) = 0 [pid 5031] getdents64(3, [pid 6034] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6033] <... openat resumed>) = 3 [pid 6032] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] <... openat resumed>) = 4 [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6034] <... mmap resumed>) = 0x7f4f650a0000 [pid 6033] write(3, "1000", 4 [pid 6032] <... futex resumed>) = 0 [pid 5031] close(3 [pid 5030] newfstatat(4, "", [pid 6033] <... write resumed>) = 4 [pid 6032] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6033] close(3 [pid 6032] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5031] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6033] <... close resumed>) = 0 [pid 6032] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5031] rmdir("./37" [pid 5030] getdents64(4, [pid 6033] symlink("/dev/binderfs", "./binderfs" [pid 6032] <... mprotect resumed>) = 0 [pid 6033] <... symlink resumed>) = 0 [pid 6032] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6033] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6032] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5031] mkdir("./38", 0777 [pid 5030] getdents64(4, [pid 6033] <... futex resumed>) = 0 [pid 6032] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6035 attached [pid 6033] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5031] <... mkdir resumed>) = 0 [pid 6035] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6033] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6032] <... clone3 resumed> => {parent_tid=[119]}, 88) = 119 [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6035] <... rseq resumed>) = 0 [pid 6033] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6032] rt_sigprocmask(SIG_SETMASK, [], [pid 6035] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6033] <... mprotect resumed>) = 0 [pid 6032] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5030] close(4 [pid 6035] <... set_robust_list resumed>) = 0 [pid 6033] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6032] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5030] <... close resumed>) = 0 [pid 6035] rt_sigprocmask(SIG_SETMASK, [], [pid 6033] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6032] <... futex resumed>) = 0 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] rmdir("./37/file0" [pid 6035] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6033] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 6032] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5031] close(3./strace-static-x86_64: Process 6036 attached [pid 6035] memfd_create("syzkaller", 0 [pid 5031] <... close resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6036] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6035] <... memfd_create resumed>) = 3 [pid 6033] <... clone3 resumed> => {parent_tid=[120]}, 88) = 120 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] umount2("./37/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6036] <... rseq resumed>) = 0 [pid 6035] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6033] rt_sigprocmask(SIG_SETMASK, [], [pid 6036] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6035] <... mmap resumed>) = 0x7f4f650a0000 [pid 6033] <... rt_sigprocmask resumed>NULL, 8) = 0 ./strace-static-x86_64: Process 6037 attached [pid 6036] <... set_robust_list resumed>) = 0 [pid 6033] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6037] set_robust_list(0x55555654e6a0, 24 [pid 6036] rt_sigprocmask(SIG_SETMASK, [], [pid 6033] <... futex resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 114 [pid 5030] newfstatat(AT_FDCWD, "./37/cgroup", [pid 6037] <... set_robust_list resumed>) = 0 [pid 6036] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6033] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6037] chdir("./38" [pid 6036] memfd_create("syzkaller", 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6036] <... memfd_create resumed>) = 3 [pid 6036] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 6037] <... chdir resumed>) = 0 [pid 5030] unlink("./37/cgroup" [pid 6037] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 6037] setpgid(0, 0) = 0 [pid 5030] umount2("./37/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6037] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6037] <... symlink resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./37/cgroup.net", [pid 6037] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6037] <... symlink resumed>) = 0 [pid 5030] unlink("./37/cgroup.net" [pid 6037] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 5030] <... unlink resumed>) = 0 [pid 6037] <... symlink resumed>) = 0 [pid 6037] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5030] getdents64(3, [pid 6037] <... openat resumed>) = 3 [pid 6037] write(3, "1000", 4 [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6037] <... write resumed>) = 4 [pid 5030] close(3 [pid 6037] close(3) = 0 [pid 6037] symlink("/dev/binderfs", "./binderfs" [pid 5030] <... close resumed>) = 0 [pid 6037] <... symlink resumed>) = 0 [pid 6037] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] rmdir("./37" [pid 6037] <... futex resumed>) = 0 [pid 6037] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6037] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6037] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5030] mkdir("./38", 0777 [pid 6037] <... mprotect resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 6037] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6037] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5030] <... openat resumed>) = 3 ./strace-static-x86_64: Process 6038 attached [pid 6037] <... clone3 resumed> => {parent_tid=[115]}, 88) = 115 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6037] rt_sigprocmask(SIG_SETMASK, [], [pid 6038] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6037] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6038] <... rseq resumed>) = 0 [pid 6037] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6038] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5030] close(3 [pid 6038] <... set_robust_list resumed>) = 0 [pid 6037] <... futex resumed>) = 0 [pid 6038] rt_sigprocmask(SIG_SETMASK, [], [pid 6037] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5030] <... close resumed>) = 0 [pid 6038] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6038] memfd_create("syzkaller", 0./strace-static-x86_64: Process 6039 attached ) = 3 [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 110 [pid 6038] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6039] set_robust_list(0x55555654e6a0, 24) = 0 [pid 6038] <... mmap resumed>) = 0x7f4f650a0000 [pid 6039] chdir("./38") = 0 [pid 6039] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6039] setpgid(0, 0) = 0 [pid 6039] symlink("/syzcgroup/unified/syz3", "./cgroup") = 0 [pid 6039] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu") = 0 [pid 6039] symlink("/syzcgroup/net/syz3", "./cgroup.net") = 0 [pid 6039] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6039] write(3, "1000", 4) = 4 [pid 6039] close(3) = 0 [pid 6039] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6039] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6039] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 6039] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6039] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6039] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6040 attached [pid 6040] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6039] <... clone3 resumed> => {parent_tid=[111]}, 88) = 111 [pid 6040] <... rseq resumed>) = 0 [pid 6039] rt_sigprocmask(SIG_SETMASK, [], [pid 6040] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6039] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6040] <... set_robust_list resumed>) = 0 [pid 6040] rt_sigprocmask(SIG_SETMASK, [], [pid 6039] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6040] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6039] <... futex resumed>) = 0 [pid 6039] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6040] memfd_create("syzkaller", 0) = 3 [pid 6040] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 6030] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6038] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6036] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6035] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6034] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6040] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6030] <... write resumed>) = 16777216 [pid 6030] munmap(0x7f4f650a0000, 16777216) = 0 [pid 6030] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 6030] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6030] close(3) = 0 [pid 6030] mkdir("./file0", 0777) = 0 [ 294.452301][ T6030] loop1: detected capacity change from 0 to 32768 [ 294.509897][ T6030] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [pid 6030] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6036] <... write resumed>) = 16777216 [ 294.579357][ T6030] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 294.611083][ T6030] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [pid 6036] munmap(0x7f4f650a0000, 16777216) = 0 [pid 6036] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6038] <... write resumed>) = 16777216 [pid 6036] <... openat resumed>) = 4 [ 294.636344][ T5084] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 294.644732][ T5084] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [pid 6038] munmap(0x7f4f650a0000, 16777216 [pid 6036] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6036] close(3) = 0 [pid 6036] mkdir("./file0", 0777) = 0 [ 294.687933][ T6036] loop0: detected capacity change from 0 to 32768 [ 294.717663][ T6036] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 294.729432][ T6036] CPU: 0 PID: 6036 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 294.739928][ T6036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 294.750037][ T6036] Call Trace: [ 294.753378][ T6036] [ 294.756347][ T6036] dump_stack_lvl+0x136/0x150 [ 294.761096][ T6036] sysfs_warn_dup+0x80/0xa0 [ 294.765672][ T6036] sysfs_create_dir_ns+0x237/0x290 [ 294.770842][ T6036] ? sysfs_create_mount_point+0xb0/0xb0 [ 294.776476][ T6036] ? spin_bug+0x1c0/0x1c0 [ 294.780871][ T6036] ? do_raw_spin_unlock+0x175/0x230 [pid 6036] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6034] <... write resumed>) = 16777216 [pid 6034] munmap(0x7f4f650a0000, 16777216 [pid 6035] <... write resumed>) = 16777216 [ 294.786137][ T6036] kobject_add_internal+0x2c9/0x9c0 [ 294.791396][ T6036] ? kfree+0x11/0x150 [ 294.795522][ T6036] kobject_init_and_add+0x101/0x170 [ 294.800786][ T6036] ? kobject_create_and_add+0xf0/0xf0 [ 294.806221][ T6036] ? lockdep_init_map_type+0x21e/0x810 [ 294.811743][ T6036] ? lockdep_hardirqs_on+0x7d/0x100 [ 294.817004][ T6036] ? lockdep_init_map_type+0x21e/0x810 [ 294.822526][ T6036] gfs2_sys_fs_add+0x1d5/0x450 [ 294.827348][ T6036] ? recover_store+0x170/0x170 [ 294.832182][ T6036] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 294.837964][ T6036] gfs2_fill_super+0x1312/0x2aa0 [ 294.842961][ T6036] ? gfs2_reconfigure+0xf90/0xf90 [ 294.848041][ T6036] ? snprintf+0xbf/0x100 [ 294.852339][ T6036] ? vsprintf+0x30/0x30 [ 294.856542][ T6036] ? wait_for_completion_io_timeout+0x20/0x20 [ 294.862690][ T6036] ? set_blocksize+0x2d8/0x370 [ 294.867610][ T6036] get_tree_bdev+0x43e/0x7d0 [ 294.872261][ T6036] ? gfs2_reconfigure+0xf90/0xf90 [ 294.877354][ T6036] gfs2_get_tree+0x4e/0x270 [ 294.881916][ T6036] vfs_get_tree+0x8d/0x350 [pid 6035] munmap(0x7f4f650a0000, 16777216 [pid 6040] <... write resumed>) = 16777216 [ 294.886448][ T6036] path_mount+0x136e/0x1e70 [ 294.891030][ T6036] ? putname+0x102/0x140 [ 294.895319][ T6036] ? lockdep_hardirqs_on+0x7d/0x100 [ 294.900590][ T6036] ? finish_automount+0xa30/0xa30 [ 294.905668][ T6036] ? putname+0x102/0x140 [ 294.909966][ T6036] __x64_sys_mount+0x283/0x300 [ 294.914782][ T6036] ? copy_mnt_ns+0xb30/0xb30 [ 294.919423][ T6036] ? lockdep_hardirqs_on+0x7d/0x100 [ 294.924679][ T6036] ? _raw_spin_unlock_irq+0x2e/0x50 [ 294.929943][ T6036] ? ptrace_notify+0xfe/0x140 [ 294.934694][ T6036] do_syscall_64+0x39/0xb0 [ 294.939161][ T6036] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 294.945128][ T6036] RIP: 0033:0x7f4f6dd11c5a [ 294.949587][ T6036] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 294.969278][ T6036] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 294.977751][ T6036] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [pid 6040] munmap(0x7f4f650a0000, 16777216 [pid 6038] <... munmap resumed>) = 0 [pid 6038] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [ 294.985763][ T6036] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 294.993779][ T6036] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 295.001800][ T6036] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 295.009819][ T6036] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 295.017847][ T6036] [ 295.022709][ T6038] loop4: detected capacity change from 0 to 32768 [pid 6038] ioctl(4, LOOP_SET_FD, 3 [pid 6034] <... munmap resumed>) = 0 [pid 6038] <... ioctl resumed>) = 0 [pid 6038] close(3 [pid 6035] <... munmap resumed>) = 0 [pid 6038] <... close resumed>) = 0 [pid 6038] mkdir("./file0", 0777) = 0 [pid 6035] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6038] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6035] <... openat resumed>) = 4 [pid 6034] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 6034] ioctl(4, LOOP_SET_FD, 3 [ 295.047105][ T5084] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 402ms [ 295.074678][ T5084] gfs2: fsid=syz:syz.0: jid=0: Done [ 295.084202][ T6030] gfs2: fsid=syz:syz.0: first mount done, others may mount [pid 6035] ioctl(4, LOOP_SET_FD, 3 [pid 6034] <... ioctl resumed>) = 0 [pid 6034] close(3 [pid 6035] <... ioctl resumed>) = 0 [pid 6030] <... mount resumed>) = 0 [pid 6035] close(3) = 0 [pid 6035] mkdir("./file0", 0777) = 0 [pid 6030] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6035] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6030] <... openat resumed>) = 3 [pid 6030] chdir("./file0") = 0 [pid 6030] ioctl(4, LOOP_CLR_FD) = 0 [ 295.093107][ T6034] loop2: detected capacity change from 0 to 32768 [ 295.100428][ T6036] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 295.103961][ T6038] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 295.122996][ T6035] loop5: detected capacity change from 0 to 32768 [ 295.133493][ T6036] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 6030] close(4 [pid 6036] <... mount resumed>) = -1 EEXIST (File exists) [pid 6034] <... close resumed>) = 0 [pid 6030] <... close resumed>) = 0 [pid 6034] mkdir("./file0", 0777) = 0 [ 295.155705][ T6038] CPU: 0 PID: 6038 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 295.166284][ T6038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 295.176386][ T6038] Call Trace: [ 295.179709][ T6038] [ 295.182686][ T6038] dump_stack_lvl+0x136/0x150 [ 295.183095][ T6035] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 295.187410][ T6038] sysfs_warn_dup+0x80/0xa0 [ 295.187450][ T6038] sysfs_create_dir_ns+0x237/0x290 [pid 6034] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6030] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6030] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6036] ioctl(4, LOOP_CLR_FD [pid 6040] <... munmap resumed>) = 0 [pid 6040] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [ 295.187487][ T6038] ? sysfs_create_mount_point+0xb0/0xb0 [ 295.210118][ T6038] ? spin_bug+0x1c0/0x1c0 [ 295.214607][ T6038] ? do_raw_spin_unlock+0x175/0x230 [ 295.219965][ T6038] kobject_add_internal+0x2c9/0x9c0 [ 295.225229][ T6038] ? kfree+0x11/0x150 [ 295.229282][ T6038] kobject_init_and_add+0x101/0x170 [ 295.234524][ T6038] ? kobject_create_and_add+0xf0/0xf0 [ 295.239942][ T6038] ? lockdep_init_map_type+0x21e/0x810 [ 295.245463][ T6038] ? lockdep_hardirqs_on+0x7d/0x100 [ 295.250723][ T6038] ? lockdep_init_map_type+0x21e/0x810 [ 295.254497][ T6040] loop3: detected capacity change from 0 to 32768 [ 295.256220][ T6038] gfs2_sys_fs_add+0x1d5/0x450 [ 295.256257][ T6038] ? recover_store+0x170/0x170 [ 295.256288][ T6038] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 295.256335][ T6038] gfs2_fill_super+0x1312/0x2aa0 [ 295.256374][ T6038] ? gfs2_reconfigure+0xf90/0xf90 [ 295.256410][ T6038] ? snprintf+0xbf/0x100 [ 295.256448][ T6038] ? vsprintf+0x30/0x30 [ 295.256481][ T6038] ? wait_for_completion_io_timeout+0x20/0x20 [ 295.256524][ T6038] ? set_blocksize+0x2d8/0x370 [ 295.307542][ T6038] get_tree_bdev+0x43e/0x7d0 [ 295.312173][ T6038] ? gfs2_reconfigure+0xf90/0xf90 [ 295.317227][ T6038] gfs2_get_tree+0x4e/0x270 [ 295.321757][ T6038] vfs_get_tree+0x8d/0x350 [ 295.326201][ T6038] path_mount+0x136e/0x1e70 [ 295.330732][ T6038] ? putname+0x102/0x140 [ 295.335000][ T6038] ? lockdep_hardirqs_on+0x7d/0x100 [ 295.340230][ T6038] ? finish_automount+0xa30/0xa30 [ 295.345285][ T6038] ? putname+0x102/0x140 [ 295.349555][ T6038] __x64_sys_mount+0x283/0x300 [ 295.354352][ T6038] ? copy_mnt_ns+0xb30/0xb30 [ 295.358972][ T6038] ? lockdep_hardirqs_on+0x7d/0x100 [ 295.364204][ T6038] ? _raw_spin_unlock_irq+0x2e/0x50 [ 295.369443][ T6038] ? ptrace_notify+0xfe/0x140 [ 295.374164][ T6038] do_syscall_64+0x39/0xb0 [ 295.378603][ T6038] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 295.384543][ T6038] RIP: 0033:0x7f4f6dd11c5a [ 295.388974][ T6038] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 295.408617][ T6038] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 295.417054][ T6038] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 295.425057][ T6038] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 295.433057][ T6038] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 295.441065][ T6038] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 295.449057][ T6038] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 295.457049][ T6038] [ 295.464108][ T6035] CPU: 0 PID: 6035 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 295.474625][ T6035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 295.477477][ T6034] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 295.484695][ T6035] Call Trace: [ 295.484708][ T6035] [ 295.498316][ T6035] dump_stack_lvl+0x136/0x150 [ 295.503038][ T6035] sysfs_warn_dup+0x80/0xa0 [ 295.507580][ T6035] sysfs_create_dir_ns+0x237/0x290 [ 295.512743][ T6035] ? sysfs_create_mount_point+0xb0/0xb0 [ 295.518338][ T6035] ? spin_bug+0x1c0/0x1c0 [ 295.522706][ T6035] ? do_raw_spin_unlock+0x175/0x230 [ 295.527948][ T6035] kobject_add_internal+0x2c9/0x9c0 [ 295.533188][ T6035] ? kfree+0x11/0x150 [ 295.537198][ T6035] kobject_init_and_add+0x101/0x170 [ 295.542429][ T6035] ? kobject_create_and_add+0xf0/0xf0 [ 295.547834][ T6035] ? lockdep_init_map_type+0x21e/0x810 [ 295.553327][ T6035] ? lockdep_hardirqs_on+0x7d/0x100 [ 295.558565][ T6035] ? lockdep_init_map_type+0x21e/0x810 [ 295.564070][ T6035] gfs2_sys_fs_add+0x1d5/0x450 [ 295.568863][ T6035] ? recover_store+0x170/0x170 [ 295.573654][ T6035] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 295.579409][ T6035] gfs2_fill_super+0x1312/0x2aa0 [ 295.584375][ T6035] ? gfs2_reconfigure+0xf90/0xf90 [ 295.589449][ T6035] ? snprintf+0xbf/0x100 [ 295.593727][ T6035] ? vsprintf+0x30/0x30 [ 295.597923][ T6035] ? wait_for_completion_io_timeout+0x20/0x20 [ 295.604026][ T6035] ? set_blocksize+0x2d8/0x370 [ 295.608835][ T6035] get_tree_bdev+0x43e/0x7d0 [ 295.613476][ T6035] ? gfs2_reconfigure+0xf90/0xf90 [ 295.618554][ T6035] gfs2_get_tree+0x4e/0x270 [ 295.623085][ T6035] vfs_get_tree+0x8d/0x350 [ 295.627536][ T6035] path_mount+0x136e/0x1e70 [ 295.632080][ T6035] ? putname+0x102/0x140 [ 295.636351][ T6035] ? lockdep_hardirqs_on+0x7d/0x100 [ 295.641603][ T6035] ? finish_automount+0xa30/0xa30 [ 295.646665][ T6035] ? putname+0x102/0x140 [ 295.650938][ T6035] __x64_sys_mount+0x283/0x300 [ 295.655736][ T6035] ? copy_mnt_ns+0xb30/0xb30 [ 295.660461][ T6035] ? lockdep_hardirqs_on+0x7d/0x100 [ 295.665716][ T6035] ? _raw_spin_unlock_irq+0x2e/0x50 [ 295.670970][ T6035] ? ptrace_notify+0xfe/0x140 [ 295.675693][ T6035] do_syscall_64+0x39/0xb0 [ 295.680138][ T6035] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 295.686080][ T6035] RIP: 0033:0x7f4f6dd11c5a [pid 6040] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6028] <... futex resumed>) = 0 [pid 6028] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6030] <... futex resumed>) = 0 [pid 6028] <... futex resumed>) = 1 [ 295.690520][ T6035] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 295.710164][ T6035] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 295.714339][ T6038] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 295.718602][ T6035] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 295.718626][ T6035] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 295.718648][ T6035] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [pid 6030] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6028] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6040] close(3) = 0 [ 295.751916][ T6030] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 295.756468][ T6035] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 295.756493][ T6035] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 295.756524][ T6035] [ 295.787304][ T6035] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 295.817004][ T6038] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 295.817750][ T6034] CPU: 1 PID: 6034 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 295.823749][ T6030] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 295.823749][ T6030] inode = 12 2341 [ 295.823749][ T6030] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 295.833964][ T6034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 295.833986][ T6034] Call Trace: [ 295.834002][ T6034] [ 295.834013][ T6034] dump_stack_lvl+0x136/0x150 [ 295.834067][ T6034] sysfs_warn_dup+0x80/0xa0 [ 295.853913][ T6035] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 295.862680][ T6034] sysfs_create_dir_ns+0x237/0x290 [ 295.862723][ T6034] ? sysfs_create_mount_point+0xb0/0xb0 [ 295.862760][ T6034] ? spin_bug+0x1c0/0x1c0 [ 295.899904][ T6034] ? do_raw_spin_unlock+0x175/0x230 [ 295.905145][ T6034] kobject_add_internal+0x2c9/0x9c0 [ 295.910374][ T6034] ? kfree+0x11/0x150 [ 295.914386][ T6034] kobject_init_and_add+0x101/0x170 [ 295.919624][ T6034] ? kobject_create_and_add+0xf0/0xf0 [ 295.925023][ T6034] ? lockdep_init_map_type+0x21e/0x810 [ 295.930543][ T6034] ? lockdep_hardirqs_on+0x7d/0x100 [ 295.935777][ T6034] ? lockdep_init_map_type+0x21e/0x810 [ 295.941290][ T6034] gfs2_sys_fs_add+0x1d5/0x450 [ 295.946076][ T6034] ? recover_store+0x170/0x170 [ 295.950862][ T6034] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 295.956614][ T6034] gfs2_fill_super+0x1312/0x2aa0 [ 295.961578][ T6034] ? gfs2_reconfigure+0xf90/0xf90 [ 295.966650][ T6034] ? snprintf+0xbf/0x100 [ 295.970930][ T6034] ? vsprintf+0x30/0x30 [ 295.975114][ T6034] ? wait_for_completion_io_timeout+0x20/0x20 [ 295.981213][ T6034] ? set_blocksize+0x2d8/0x370 [ 295.986009][ T6034] get_tree_bdev+0x43e/0x7d0 [ 295.990632][ T6034] ? gfs2_reconfigure+0xf90/0xf90 [ 295.995703][ T6034] gfs2_get_tree+0x4e/0x270 [ 296.000234][ T6034] vfs_get_tree+0x8d/0x350 [ 296.004680][ T6034] path_mount+0x136e/0x1e70 [ 296.009214][ T6034] ? putname+0x102/0x140 [ 296.013483][ T6034] ? lockdep_hardirqs_on+0x7d/0x100 [ 296.018712][ T6034] ? finish_automount+0xa30/0xa30 [ 296.023767][ T6034] ? putname+0x102/0x140 [ 296.028063][ T6034] __x64_sys_mount+0x283/0x300 [ 296.032860][ T6034] ? copy_mnt_ns+0xb30/0xb30 [ 296.037499][ T6034] ? lockdep_hardirqs_on+0x7d/0x100 [ 296.042730][ T6034] ? _raw_spin_unlock_irq+0x2e/0x50 [ 296.047964][ T6034] ? ptrace_notify+0xfe/0x140 [ 296.052687][ T6034] do_syscall_64+0x39/0xb0 [ 296.057126][ T6034] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 296.063064][ T6034] RIP: 0033:0x7f4f6dd11c5a [ 296.067498][ T6034] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 296.087128][ T6034] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 296.095566][ T6034] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 296.103555][ T6034] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [pid 6040] mkdir("./file0", 0777) = 0 [pid 6028] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6038] <... mount resumed>) = -1 EEXIST (File exists) [pid 6040] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6038] ioctl(4, LOOP_CLR_FD [pid 6035] <... mount resumed>) = -1 EEXIST (File exists) [pid 6028] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6035] ioctl(4, LOOP_CLR_FD [pid 6028] <... futex resumed>) = 0 [pid 6028] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [ 296.111552][ T6034] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 296.119547][ T6034] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 296.127538][ T6034] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 296.135537][ T6034] [pid 6028] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6028] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6028] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 6047 attached [pid 6047] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6028] <... clone3 resumed> => {parent_tid=[118]}, 88) = 118 [ 296.179065][ T6040] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 296.189571][ T6040] CPU: 0 PID: 6040 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 296.200066][ T6040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 296.202235][ T6030] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 296.210155][ T6040] Call Trace: [ 296.210167][ T6040] [ 296.210179][ T6040] dump_stack_lvl+0x136/0x150 [ 296.210236][ T6040] sysfs_warn_dup+0x80/0xa0 [ 296.220786][ T6030] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6030 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 296.222533][ T6040] sysfs_create_dir_ns+0x237/0x290 [ 296.226420][ T6030] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 296.230162][ T6040] ? sysfs_create_mount_point+0xb0/0xb0 [ 296.235187][ T6030] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 296.244642][ T6040] ? spin_bug+0x1c0/0x1c0 [ 296.244689][ T6040] ? do_raw_spin_unlock+0x175/0x230 [ 296.263648][ T6030] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 296.263770][ T6040] kobject_add_internal+0x2c9/0x9c0 [ 296.274398][ T6030] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 296.275283][ T6040] ? kfree+0x11/0x150 [ 296.275321][ T6040] kobject_init_and_add+0x101/0x170 [ 296.282038][ T6030] gfs2: fsid=syz:syz.0: File system withdrawn [ 296.289267][ T6040] ? kobject_create_and_add+0xf0/0xf0 [ 296.289310][ T6040] ? lockdep_init_map_type+0x21e/0x810 [pid 6028] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6028] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6028] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6047] <... rseq resumed>) = 0 [pid 6047] set_robust_list(0x7f4f6609f9a0, 24) = 0 [pid 6047] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6047] ioctl(0, VFAT_IOCTL_READDIR_SHORT, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 6047] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6028] <... futex resumed>) = 0 [ 296.289351][ T6040] ? lockdep_hardirqs_on+0x7d/0x100 [ 296.332616][ T6040] ? lockdep_init_map_type+0x21e/0x810 [ 296.338141][ T6040] gfs2_sys_fs_add+0x1d5/0x450 [ 296.342948][ T6040] ? recover_store+0x170/0x170 [ 296.347853][ T6040] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 296.353639][ T6040] gfs2_fill_super+0x1312/0x2aa0 [ 296.358634][ T6040] ? gfs2_reconfigure+0xf90/0xf90 [ 296.363719][ T6040] ? snprintf+0xbf/0x100 [ 296.368035][ T6040] ? vsprintf+0x30/0x30 [ 296.372249][ T6040] ? wait_for_completion_io_timeout+0x20/0x20 [pid 6047] <... futex resumed>) = 1 [pid 6028] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6047] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6028] <... futex resumed>) = 0 [pid 6047] <... openat resumed>) = -1 EIO (Input/output error) [pid 6028] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6047] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6028] <... futex resumed>) = 0 [ 296.378378][ T6040] ? set_blocksize+0x2d8/0x370 [ 296.383203][ T6040] get_tree_bdev+0x43e/0x7d0 [ 296.387863][ T6040] ? gfs2_reconfigure+0xf90/0xf90 [ 296.392954][ T6040] gfs2_get_tree+0x4e/0x270 [ 296.397515][ T6040] vfs_get_tree+0x8d/0x350 [ 296.401991][ T6040] path_mount+0x136e/0x1e70 [ 296.406554][ T6040] ? putname+0x102/0x140 [ 296.410849][ T6040] ? lockdep_hardirqs_on+0x7d/0x100 [ 296.416104][ T6040] ? finish_automount+0xa30/0xa30 [ 296.421186][ T6040] ? putname+0x102/0x140 [ 296.425485][ T6040] __x64_sys_mount+0x283/0x300 [ 296.430317][ T6040] ? copy_mnt_ns+0xb30/0xb30 [ 296.434975][ T6040] ? lockdep_hardirqs_on+0x7d/0x100 [ 296.440233][ T6040] ? _raw_spin_unlock_irq+0x2e/0x50 [ 296.445507][ T6040] ? ptrace_notify+0xfe/0x140 [ 296.450260][ T6040] do_syscall_64+0x39/0xb0 [ 296.454720][ T6040] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 296.460685][ T6040] RIP: 0033:0x7f4f6dd11c5a [ 296.465141][ T6040] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 296.484807][ T6040] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 296.493316][ T6040] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 296.501339][ T6040] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 296.509355][ T6040] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 296.517377][ T6040] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 296.525396][ T6040] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 296.533418][ T6040] [ 296.536476][ T6030] CPU: 1 PID: 6030 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 296.546955][ T6030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 296.557039][ T6030] Call Trace: [ 296.560767][ T6030] [ 296.563711][ T6030] dump_stack_lvl+0x136/0x150 [ 296.568518][ T6030] gfs2_withdraw+0xb33/0x1060 [ 296.573224][ T6030] ? gfs2_consist_inode_i+0x104/0x150 [ 296.578669][ T6030] gfs2_dirent_scan+0x32a/0x3d0 [ 296.583557][ T6030] ? gfs2_dirent_prev+0x210/0x210 [ 296.588618][ T6030] ? gfs2_dirent_prev+0x210/0x210 [ 296.593706][ T6030] gfs2_dirent_search+0x47d/0x580 [ 296.598792][ T6030] ? get_first_leaf+0x190/0x190 [ 296.603711][ T6030] ? gfs2_permission+0x256/0x3e0 [ 296.608686][ T6030] gfs2_dir_search+0x8d/0x2d0 [ 296.613427][ T6030] ? gfs2_dir_read+0x14e0/0x14e0 [ 296.618422][ T6030] gfs2_lookupi+0x481/0x640 [ 296.622960][ T6030] ? gfs2_lookup_by_inum+0x100/0x100 [ 296.628279][ T6030] ? __gfs2_lookup+0x83/0x280 [ 296.632983][ T6030] ? d_alloc_parallel+0x693/0x1530 [ 296.638157][ T6030] __gfs2_lookup+0x83/0x280 [ 296.642686][ T6030] ? gfs2_lookupi+0x640/0x640 [ 296.647390][ T6030] ? __d_lookup_rcu+0x4e0/0x4e0 [ 296.652268][ T6030] ? __d_lookup+0x289/0x4c0 [ 296.656800][ T6030] gfs2_atomic_open+0xde/0x250 [ 296.661591][ T6030] ? __gfs2_lookup+0x280/0x280 [ 296.666381][ T6030] lookup_open.isra.0+0xce2/0x1400 [ 296.671527][ T6030] ? link_path_walk.part.0+0xd60/0xd60 [ 296.677023][ T6030] ? lookup_fast+0x14e/0x520 [ 296.681643][ T6030] path_openat+0x969/0x2710 [ 296.686182][ T6030] ? path_lookupat+0x840/0x840 [ 296.690978][ T6030] ? irqentry_enter+0x2c/0x50 [ 296.695690][ T6030] do_filp_open+0x1ba/0x410 [ 296.700229][ T6030] ? may_open_dev+0xf0/0xf0 [ 296.704766][ T6030] ? find_held_lock+0x2d/0x110 [ 296.709559][ T6030] ? do_raw_spin_lock+0x124/0x2b0 [ 296.714621][ T6030] ? spin_bug+0x1c0/0x1c0 [ 296.718984][ T6030] ? _raw_spin_unlock+0x28/0x40 [ 296.723894][ T6030] ? alloc_fd+0x2e4/0x750 [ 296.728279][ T6030] do_sys_openat2+0x160/0x1c0 [ 296.733024][ T6030] ? build_open_flags+0x720/0x720 [ 296.738101][ T6030] ? ptrace_notify+0xfe/0x140 [ 296.742913][ T6030] ? lock_downgrade+0x690/0x690 [ 296.747798][ T6030] __x64_sys_openat+0x143/0x1f0 [ 296.752696][ T6030] ? __ia32_sys_open+0x1c0/0x1c0 [ 296.757677][ T6030] ? _raw_spin_unlock_irq+0x23/0x50 [ 296.762912][ T6030] ? lockdep_hardirqs_on+0x7d/0x100 [ 296.768140][ T6030] ? _raw_spin_unlock_irq+0x2e/0x50 [ 296.773376][ T6030] ? ptrace_notify+0xfe/0x140 [ 296.778267][ T6030] do_syscall_64+0x39/0xb0 [ 296.782715][ T6030] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 296.788655][ T6030] RIP: 0033:0x7f4f6dd107f9 [ 296.793093][ T6030] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 296.812727][ T6030] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 296.821172][ T6030] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 296.829192][ T6030] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [ 296.837188][ T6030] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 296.845180][ T6030] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 296.853187][ T6030] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 296.861220][ T6030] [pid 6047] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6036] <... ioctl resumed>) = 0 [pid 6036] close(4 [pid 6030] <... openat resumed>) = -1 EIO (Input/output error) [pid 6030] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6030] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6036] <... close resumed>) = 0 [ 296.870527][ T6040] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 296.889880][ T6034] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 6036] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6033] <... futex resumed>) = 0 [pid 6036] <... futex resumed>) = 1 [pid 6036] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6033] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6036] <... openat resumed>) = 3 [pid 6033] <... futex resumed>) = 0 [pid 6033] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6036] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6033] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6036] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6033] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6032] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6032] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6033] <... futex resumed>) = 0 [pid 6036] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6036] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6033] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6036] <... futex resumed>) = 0 [pid 6033] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6032] <... futex resumed>) = 0 [pid 6036] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6033] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6036] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6033] <... futex resumed>) = 0 [pid 6032] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6031] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6036] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6033] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6036] <... futex resumed>) = 0 [pid 6033] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6036] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6033] close(3) = 0 [pid 6031] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6028] close(3 [pid 6032] <... mmap resumed>) = 0x7f4f6607f000 [pid 6032] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6040] <... mount resumed>) = -1 EEXIST (File exists) [pid 6033] close(4 [pid 6040] ioctl(4, LOOP_CLR_FD [pid 6031] <... futex resumed>) = 0 [pid 6033] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6033] close(5) = -1 EBADF (Bad file descriptor) [pid 6033] close(6) = -1 EBADF (Bad file descriptor) [pid 6033] close(7) = -1 EBADF (Bad file descriptor) [pid 6033] close(8) = -1 EBADF (Bad file descriptor) [pid 6033] close(9) = -1 EBADF (Bad file descriptor) [pid 6033] close(10) = -1 EBADF (Bad file descriptor) [pid 6033] close(11) = -1 EBADF (Bad file descriptor) [pid 6033] close(12) = -1 EBADF (Bad file descriptor) [pid 6033] close(13) = -1 EBADF (Bad file descriptor) [pid 6033] close(14) = -1 EBADF (Bad file descriptor) [pid 6031] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6033] close(15 [pid 6031] <... mmap resumed>) = 0x7f4f6607f000 [pid 6033] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6028] <... close resumed>) = 0 [pid 6033] close(16 [pid 6031] <... mprotect resumed>) = 0 [pid 6028] close(4 [pid 6033] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6033] close(17) = -1 EBADF (Bad file descriptor) [pid 6033] close(18) = -1 EBADF (Bad file descriptor) [ 296.953201][ T6040] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 296.987915][ T6034] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 6033] close(19 [pid 6032] <... mprotect resumed>) = 0 [pid 6031] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6033] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6033] close(20) = -1 EBADF (Bad file descriptor) [pid 6033] close(21) = -1 EBADF (Bad file descriptor) [pid 6033] close(22) = -1 EBADF (Bad file descriptor) [pid 6033] close(23) = -1 EBADF (Bad file descriptor) [pid 6033] close(24) = -1 EBADF (Bad file descriptor) [pid 6033] close(25) = -1 EBADF (Bad file descriptor) [pid 6033] close(26) = -1 EBADF (Bad file descriptor) [pid 6033] close(27) = -1 EBADF (Bad file descriptor) [pid 6033] close(28) = -1 EBADF (Bad file descriptor) [pid 6031] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6034] <... mount resumed>) = -1 EEXIST (File exists) [pid 6033] close(29 [pid 6028] close(5./strace-static-x86_64: Process 6048 attached [pid 6037] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6034] ioctl(4, LOOP_CLR_FD [pid 6033] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6048] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6033] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6048] <... rseq resumed>) = 0 [pid 6033] <... write resumed>) = 156 [pid 6048] set_robust_list(0x7f4f6609f9a0, 24 [pid 6033] exit_group(0 [pid 6048] <... set_robust_list resumed>) = 0 [pid 6036] <... futex resumed>) = ? [pid 6033] <... exit_group resumed>) = ? [pid 6048] rt_sigprocmask(SIG_SETMASK, [], [pid 6037] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6036] +++ exited with 0 +++ [pid 6033] +++ exited with 0 +++ [pid 6031] <... clone3 resumed> => {parent_tid=[119]}, 88) = 119 [pid 6028] close(6 [pid 6048] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6037] <... futex resumed>) = 0 [pid 6031] rt_sigprocmask(SIG_SETMASK, [], [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=119, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=60 /* 0.60 s */} --- [pid 6048] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6037] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6031] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6028] close(7 [pid 6037] <... mmap resumed>) = 0x7f4f6607f000 [pid 6031] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6048] <... futex resumed>) = 0 [pid 6037] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6031] <... futex resumed>) = 1 [pid 6028] close(8 [pid 5029] umount2("./38", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6048] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6037] <... mprotect resumed>) = 0 [pid 6031] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6048] <... openat resumed>) = 3 [pid 6037] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6028] close(9 [pid 5029] openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6048] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6037] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... openat resumed>) = 3 [pid 6048] <... futex resumed>) = 1 [pid 6031] <... futex resumed>) = 0 [pid 5029] newfstatat(3, "", [pid 6048] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6037] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6032] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6028] close(10 [pid 5029] getdents64(3, ./strace-static-x86_64: Process 6049 attached [pid 6032] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6031] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6049] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6048] <... futex resumed>) = 0 [pid 6037] <... clone3 resumed> => {parent_tid=[116]}, 88) = 116 [pid 6032] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6031] <... futex resumed>) = 1 [pid 6028] close(11 [pid 5029] umount2("./38/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6050 attached [pid 6049] <... rseq resumed>) = 0 [pid 6048] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6037] rt_sigprocmask(SIG_SETMASK, [], [pid 6031] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6050] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6049] set_robust_list(0x7f4f6609f9a0, 24 [pid 6048] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6037] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6032] <... clone3 resumed> => {parent_tid=[120]}, 88) = 120 [pid 6028] close(12 [pid 5029] newfstatat(AT_FDCWD, "./38/cgroup.cpu", [pid 6050] <... rseq resumed>) = 0 [pid 6049] <... set_robust_list resumed>) = 0 [pid 6048] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6037] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6032] rt_sigprocmask(SIG_SETMASK, [], [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6050] set_robust_list(0x7f4f6609f9a0, 24 [pid 6049] rt_sigprocmask(SIG_SETMASK, [], [pid 6048] <... futex resumed>) = 1 [pid 6037] <... futex resumed>) = 0 [pid 6032] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6031] <... futex resumed>) = 0 [pid 6028] close(13 [pid 5029] unlink("./38/cgroup.cpu" [pid 6050] <... set_robust_list resumed>) = 0 [pid 6049] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6048] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6037] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6032] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6031] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... unlink resumed>) = 0 [pid 6050] rt_sigprocmask(SIG_SETMASK, [], [pid 6049] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6048] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6032] <... futex resumed>) = 0 [pid 6031] <... futex resumed>) = 0 [pid 6028] close(14 [pid 5029] umount2("./38/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6050] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6049] <... openat resumed>) = 3 [pid 6048] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6032] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6031] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6050] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6049] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6048] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6028] close(15 [pid 5029] newfstatat(AT_FDCWD, "./38/binderfs", [pid 6050] <... openat resumed>) = 3 [pid 6049] <... futex resumed>) = 1 [pid 6048] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6037] <... futex resumed>) = 0 [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6050] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6049] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6048] <... futex resumed>) = 1 [pid 6037] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6031] <... futex resumed>) = 0 [pid 6028] close(16 [pid 5029] unlink("./38/binderfs" [pid 6050] <... futex resumed>) = 1 [pid 6048] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6032] <... futex resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 6050] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6049] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6037] <... futex resumed>) = 0 [pid 6032] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6050] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6049] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6037] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6032] <... futex resumed>) = 0 [pid 6028] close(17 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6050] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6049] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6032] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6039] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5029] newfstatat(AT_FDCWD, "./38/file0", [pid 6050] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6049] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6028] close(18 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6050] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6049] <... futex resumed>) = 1 [pid 6037] <... futex resumed>) = 0 [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6050] <... futex resumed>) = 1 [pid 6049] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6037] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6032] <... futex resumed>) = 0 [pid 6028] close(19 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6050] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6049] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6037] <... futex resumed>) = 0 [pid 6032] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] openat(AT_FDCWD, "./38/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6050] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6049] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6037] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6032] <... futex resumed>) = 0 [pid 6028] close(20 [pid 5029] <... openat resumed>) = 4 [pid 6050] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6049] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6032] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] newfstatat(4, "", [pid 6050] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6049] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6028] close(21 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6050] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6049] <... futex resumed>) = 1 [pid 6037] <... futex resumed>) = 0 [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] getdents64(4, [pid 6050] <... futex resumed>) = 1 [pid 6049] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6032] <... futex resumed>) = 0 [pid 6028] close(22 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6050] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6039] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] getdents64(4, [pid 6039] <... futex resumed>) = 0 [pid 6028] close(23 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6039] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] close(4 [pid 6039] <... mmap resumed>) = 0x7f4f6607f000 [pid 6028] close(24 [pid 5029] <... close resumed>) = 0 [pid 6039] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] rmdir("./38/file0" [pid 6039] <... mprotect resumed>) = 0 [pid 6028] close(25 [pid 5029] <... rmdir resumed>) = 0 [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./38/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6039] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6028] close(26 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6039] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] newfstatat(AT_FDCWD, "./38/cgroup", [pid 6039] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6028] close(27 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5029] unlink("./38/cgroup"./strace-static-x86_64: Process 6051 attached [pid 6039] <... clone3 resumed> => {parent_tid=[112]}, 88) = 112 [pid 6028] close(28 [pid 5029] <... unlink resumed>) = 0 [pid 6051] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6039] rt_sigprocmask(SIG_SETMASK, [], [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./38/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6051] <... rseq resumed>) = 0 [pid 6039] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6028] close(29 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6051] set_robust_list(0x7f4f6609f9a0, 24 [pid 6039] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6028] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] newfstatat(AT_FDCWD, "./38/cgroup.net", [pid 6051] <... set_robust_list resumed>) = 0 [pid 6039] <... futex resumed>) = 0 [pid 6028] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6051] rt_sigprocmask(SIG_SETMASK, [], [pid 6039] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6028] <... write resumed>) = 156 [pid 5029] unlink("./38/cgroup.net" [pid 6051] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6028] exit_group(0 [pid 5029] <... unlink resumed>) = 0 [pid 6051] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6047] <... futex resumed>) = ? [pid 6030] <... futex resumed>) = ? [pid 6028] <... exit_group resumed>) = ? [pid 5029] getdents64(3, [pid 6051] <... openat resumed>) = 3 [pid 6047] +++ exited with 0 +++ [pid 6030] +++ exited with 0 +++ [pid 5029] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 6028] +++ exited with 0 +++ [pid 5029] rmdir("./38") = 0 [pid 6051] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=116, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=66 /* 0.66 s */} --- [pid 5029] mkdir("./39", 0777 [pid 6051] <... futex resumed>) = 1 [pid 6039] <... futex resumed>) = 0 [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 5029] <... mkdir resumed>) = 0 [pid 6051] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6039] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] <... restart_syscall resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6051] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6039] <... futex resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 6051] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6039] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6051] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./39", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] close(3 [pid 6051] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] openat(AT_FDCWD, "./39", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... close resumed>) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6052 attached [pid 5032] newfstatat(3, "", [pid 6052] set_robust_list(0x55555654e6a0, 24 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6052] <... set_robust_list resumed>) = 0 [pid 5032] getdents64(3, [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 121 [pid 6052] chdir("./39" [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6052] <... chdir resumed>) = 0 [pid 5032] umount2("./39/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6052] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6052] <... prctl resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./39/cgroup.cpu", [pid 6052] setpgid(0, 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./39/cgroup.cpu") = 0 [pid 5032] umount2("./39/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./39/binderfs", [pid 6052] <... setpgid resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6052] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 5032] unlink("./39/binderfs" [pid 6052] <... symlink resumed>) = 0 [pid 6051] <... futex resumed>) = 0 [pid 6039] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5032] <... unlink resumed>) = 0 [pid 6052] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu" [pid 6051] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6039] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6052] <... symlink resumed>) = 0 [pid 6051] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6039] <... futex resumed>) = 0 [pid 6052] symlink("/syzcgroup/net/syz0", "./cgroup.net" [pid 6051] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6039] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6052] <... symlink resumed>) = 0 [pid 6051] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6052] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6051] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6052] <... openat resumed>) = 3 [pid 6051] <... futex resumed>) = 1 [pid 6039] <... futex resumed>) = 0 [pid 6052] write(3, "1000", 4 [pid 6051] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6052] <... write resumed>) = 4 [pid 6052] close(3) = 0 [pid 6052] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6052] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6052] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 6035] <... ioctl resumed>) = 0 [pid 6052] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6035] close(4 [pid 6052] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6035] <... close resumed>) = 0 [pid 6052] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6053 attached [pid 6053] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6052] <... clone3 resumed> => {parent_tid=[122]}, 88) = 122 [pid 6053] <... rseq resumed>) = 0 [pid 6052] rt_sigprocmask(SIG_SETMASK, [], [pid 6053] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6052] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6035] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6053] <... set_robust_list resumed>) = 0 [pid 6052] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6035] <... futex resumed>) = 0 [pid 6053] rt_sigprocmask(SIG_SETMASK, [], [pid 6052] <... futex resumed>) = 0 [pid 6035] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6032] close(3 [pid 6053] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6052] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6038] <... ioctl resumed>) = 0 [pid 6053] memfd_create("syzkaller", 0 [pid 6032] <... close resumed>) = 0 [pid 6053] <... memfd_create resumed>) = 3 [pid 6053] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6032] close(4 [pid 6053] <... mmap resumed>) = 0x7f4f650a0000 [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6032] close(5) = -1 EBADF (Bad file descriptor) [pid 6032] close(6) = -1 EBADF (Bad file descriptor) [pid 6032] close(7) = -1 EBADF (Bad file descriptor) [pid 6032] close(8) = -1 EBADF (Bad file descriptor) [pid 6038] close(4 [pid 6032] close(9 [pid 6040] <... ioctl resumed>) = 0 [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6038] <... close resumed>) = 0 [pid 6038] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6032] close(10 [pid 6038] <... futex resumed>) = 0 [pid 6038] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6040] close(4 [pid 6032] close(11) = -1 EBADF (Bad file descriptor) [pid 6032] close(12 [pid 6037] close(3 [pid 6040] <... close resumed>) = 0 [pid 6037] <... close resumed>) = 0 [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] close(4) = -1 EBADF (Bad file descriptor) [pid 6037] close(5 [pid 6040] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6032] close(13) = -1 EBADF (Bad file descriptor) [pid 6040] <... futex resumed>) = 0 [pid 6039] close(3 [pid 6037] close(6 [pid 6034] <... ioctl resumed>) = 0 [pid 6032] close(14 [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] close(7 [pid 6040] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6039] <... close resumed>) = 0 [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] close(8) = -1 EBADF (Bad file descriptor) [pid 6037] close(9 [pid 6032] close(15 [pid 6039] close(4 [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6034] close(4 [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] close(10 [pid 6032] close(16 [pid 6034] <... close resumed>) = 0 [pid 6039] close(5 [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] close(11 [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6034] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6039] close(6 [pid 6037] close(12 [pid 6034] <... futex resumed>) = 0 [pid 6032] close(17 [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] close(13 [pid 6034] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6039] close(7 [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6032] close(18 [pid 6031] close(3 [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] close(14 [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] <... close resumed>) = 0 [pid 6039] close(8 [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6032] close(19 [pid 6031] close(4 [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] close(15 [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6039] close(9 [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] close(16 [pid 6032] close(20 [pid 6031] close(5 [pid 6039] close(10 [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] close(17 [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6032] close(21 [pid 6031] close(6 [pid 6039] close(11 [pid 6037] close(18) = -1 EBADF (Bad file descriptor) [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] close(19 [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6039] close(12 [pid 6037] close(20 [pid 6032] close(22 [pid 6031] close(7 [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] close(21) = -1 EBADF (Bad file descriptor) [pid 6037] close(22) = -1 EBADF (Bad file descriptor) [pid 6037] close(23 [pid 6039] close(13 [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6032] close(23 [pid 6031] close(8 [pid 6039] close(14 [pid 6037] close(24 [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6032] close(24 [pid 6031] close(9 [pid 6039] close(15 [pid 6037] close(25 [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] close(26 [pid 6032] close(25 [pid 6031] close(10 [pid 6039] close(16 [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] close(27) = -1 EBADF (Bad file descriptor) [pid 6037] close(28 [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6032] close(26 [pid 6031] close(11 [pid 6039] close(17 [pid 6037] close(29) = -1 EBADF (Bad file descriptor) [pid 6037] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory ) = 156 [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6037] exit_group(0 [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6049] <... futex resumed>) = ? [pid 6038] <... futex resumed>) = ? [pid 6037] <... exit_group resumed>) = ? [pid 6049] +++ exited with 0 +++ [pid 6039] close(18 [pid 6038] +++ exited with 0 +++ [pid 6037] +++ exited with 0 +++ [pid 6032] close(27 [pid 6031] close(12 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=114, si_uid=0, si_status=0, si_utime=0, si_stime=61 /* 0.61 s */} --- [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 6039] close(19 [pid 6032] close(28 [pid 5031] umount2("./38", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6031] close(13 [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6039] close(20 [pid 6032] close(29 [pid 6031] close(14 [pid 5031] openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6032] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... openat resumed>) = 3 [pid 6039] close(21 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6032] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6031] close(15 [pid 5031] newfstatat(3, "", [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6032] <... write resumed>) = 156 [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6039] close(22 [pid 6032] exit_group(0 [pid 6031] close(16 [pid 5031] getdents64(3, [pid 6050] <... futex resumed>) = ? [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6035] <... futex resumed>) = ? [pid 6032] <... exit_group resumed>) = ? [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6050] +++ exited with 0 +++ [pid 6035] +++ exited with 0 +++ [pid 5031] umount2("./38/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./38/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./38/cgroup.cpu") = 0 [pid 5031] umount2("./38/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./38/binderfs", [pid 6039] close(23 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./38/binderfs") = 0 [pid 5031] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./38/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6032] +++ exited with 0 +++ [pid 6031] close(17 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./38/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 6039] close(24 [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=118, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=72 /* 0.72 s */} --- [pid 5031] newfstatat(4, "", [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] close(18 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6039] close(25 [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] getdents64(4, [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] close(19 [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6039] close(26 [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] getdents64(4, [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] close(20 [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6039] close(27 [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] close(4 [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] close(21 [pid 5034] umount2("./39", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... close resumed>) = 0 [pid 6039] close(28 [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] rmdir("./38/file0" [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] close(22 [pid 5034] openat(AT_FDCWD, "./39", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... rmdir resumed>) = 0 [pid 6039] close(29 [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... openat resumed>) = 3 [pid 5031] umount2("./38/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6039] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6031] close(23 [pid 5034] newfstatat(3, "", [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6039] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] newfstatat(AT_FDCWD, "./38/cgroup", write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6039] <... write resumed>) = 156 [pid 6031] close(24 [pid 5034] getdents64(3, [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6039] exit_group(0 [pid 6031] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5033] kill(-117, SIGKILL [pid 5031] unlink("./38/cgroup" [pid 6051] <... futex resumed>) = ? [pid 6039] <... exit_group resumed>) = ? [pid 5031] <... unlink resumed>) = 0 [pid 6048] <... futex resumed>) = ? [pid 6040] <... futex resumed>) = ? [pid 6034] <... futex resumed>) = ? [pid 5034] umount2("./39/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... kill resumed>) = 0 [pid 5031] umount2("./38/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6051] +++ exited with 0 +++ [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./38/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./38/cgroup.net") = 0 [pid 5031] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5031] close(3 [pid 6048] +++ killed by SIGKILL +++ [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... close resumed>) = 0 [pid 5033] kill(117, SIGKILL [pid 5031] rmdir("./38" [pid 5033] <... kill resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 5031] mkdir("./39", 0777) = 0 [pid 5034] newfstatat(AT_FDCWD, "./39/cgroup.cpu", [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] unlink("./39/cgroup.cpu" [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6054 attached [pid 6034] +++ killed by SIGKILL +++ [pid 6031] +++ killed by SIGKILL +++ [pid 5034] <... unlink resumed>) = 0 [pid 6054] set_robust_list(0x55555654e6a0, 24 [pid 5034] umount2("./39/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 117 [pid 6054] <... set_robust_list resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6040] +++ exited with 0 +++ [pid 6039] +++ exited with 0 +++ [pid 6054] chdir("./39" [pid 5034] newfstatat(AT_FDCWD, "./39/binderfs", [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=110, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=58 /* 0.58 s */} --- [pid 6054] <... chdir resumed>) = 0 [pid 6054] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=117, si_uid=0, si_status=SIGKILL, si_utime=9 /* 0.09 s */, si_stime=78 /* 0.78 s */} --- [pid 6054] setpgid(0, 0) = 0 [pid 6054] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 5034] unlink("./39/binderfs" [pid 6054] <... symlink resumed>) = 0 [pid 6054] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu") = 0 [pid 5034] <... unlink resumed>) = 0 [pid 6054] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 5034] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] umount2("./40", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6054] <... symlink resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6054] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] newfstatat(AT_FDCWD, "./39/file0", [pid 5033] openat(AT_FDCWD, "./40", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./38", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6054] <... openat resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6054] write(3, "1000", 4 [pid 5034] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... openat resumed>) = 3 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6054] <... write resumed>) = 4 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(3, "", [pid 6054] close(3 [pid 5034] openat(AT_FDCWD, "./39/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6054] <... close resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6054] symlink("/dev/binderfs", "./binderfs" [pid 5033] getdents64(3, [pid 5030] <... openat resumed>) = 3 [pid 5034] newfstatat(4, "", [pid 6054] <... symlink resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5030] newfstatat(3, "", [pid 6054] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] umount2("./40/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6054] <... futex resumed>) = 0 [pid 5034] getdents64(4, [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6054] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6054] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5033] newfstatat(AT_FDCWD, "./40/cgroup.cpu", [pid 5030] getdents64(3, [pid 6054] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5034] getdents64(4, [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6054] <... mprotect resumed>) = 0 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5033] unlink("./40/cgroup.cpu" [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6054] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5034] close(4 [pid 6054] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 5030] umount2("./38/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6054] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5034] <... close resumed>) = 0 [pid 5033] umount2("./40/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6055 attached [pid 5034] rmdir("./39/file0" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6055] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6054] <... clone3 resumed> => {parent_tid=[118]}, 88) = 118 [pid 6055] <... rseq resumed>) = 0 [pid 6054] rt_sigprocmask(SIG_SETMASK, [], [pid 6055] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6054] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./40/binderfs", [pid 5030] newfstatat(AT_FDCWD, "./38/cgroup.cpu", [pid 6055] <... set_robust_list resumed>) = 0 [pid 6054] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] umount2("./39/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6055] rt_sigprocmask(SIG_SETMASK, [], [pid 6054] <... futex resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] unlink("./40/binderfs" [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6055] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6054] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5034] newfstatat(AT_FDCWD, "./39/cgroup", [pid 5033] <... unlink resumed>) = 0 [pid 5030] unlink("./38/cgroup.cpu" [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./40/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6055] memfd_create("syzkaller", 0 [pid 5034] unlink("./39/cgroup" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... unlink resumed>) = 0 [pid 6055] <... memfd_create resumed>) = 3 [pid 6055] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... unlink resumed>) = 0 [pid 5033] newfstatat(AT_FDCWD, "./40/file0", [pid 5030] umount2("./38/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6055] <... mmap resumed>) = 0x7f4f650a0000 [pid 5034] umount2("./39/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./40/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(AT_FDCWD, "./38/binderfs", [pid 5034] newfstatat(AT_FDCWD, "./39/cgroup.net", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] openat(AT_FDCWD, "./40/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] unlink("./38/binderfs" [pid 5033] <... openat resumed>) = 4 [pid 5034] unlink("./39/cgroup.net") = 0 [pid 5033] newfstatat(4, "", [pid 5030] <... unlink resumed>) = 0 [pid 5034] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5034] close(3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... close resumed>) = 0 [pid 5033] getdents64(4, [pid 5034] rmdir("./39" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] newfstatat(AT_FDCWD, "./38/file0", [pid 5034] mkdir("./40", 0777 [pid 5033] getdents64(4, [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5033] close(4 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... openat resumed>) = 3 [pid 5033] <... close resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./38/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5033] rmdir("./40/file0" [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... openat resumed>) = 4 [pid 5034] close(3) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5030] newfstatat(4, "", [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6056 attached [pid 5033] umount2("./40/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] getdents64(4, [pid 5033] newfstatat(AT_FDCWD, "./40/cgroup", [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] getdents64(4, [pid 5033] unlink("./40/cgroup" [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6056] set_robust_list(0x55555654e6a0, 24 [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 121 [pid 6056] <... set_robust_list resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 5030] close(4 [pid 6056] chdir("./40" [pid 5033] umount2("./40/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6056] <... chdir resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... close resumed>) = 0 [pid 6056] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5033] newfstatat(AT_FDCWD, "./40/cgroup.net", [pid 5030] rmdir("./38/file0" [pid 6056] <... prctl resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6056] setpgid(0, 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6056] <... setpgid resumed>) = 0 [pid 6056] symlink("/syzcgroup/unified/syz5", "./cgroup") = 0 [pid 5033] unlink("./40/cgroup.net" [pid 5030] umount2("./38/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6056] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu") = 0 [pid 6056] symlink("/syzcgroup/net/syz5", "./cgroup.net") = 0 [pid 6056] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6056] write(3, "1000", 4) = 4 [pid 6056] close(3) = 0 [pid 6056] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6056] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6056] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 6056] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6056] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6056] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6057 attached [pid 6057] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6056] <... clone3 resumed> => {parent_tid=[122]}, 88) = 122 [pid 6057] <... rseq resumed>) = 0 [pid 6056] rt_sigprocmask(SIG_SETMASK, [], [pid 6057] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6056] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6057] <... set_robust_list resumed>) = 0 [pid 6056] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6057] rt_sigprocmask(SIG_SETMASK, [], [pid 6056] <... futex resumed>) = 0 [pid 6057] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6056] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5033] <... unlink resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6057] memfd_create("syzkaller", 0 [pid 5033] getdents64(3, [pid 5030] newfstatat(AT_FDCWD, "./38/cgroup", [pid 5033] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6057] <... memfd_create resumed>) = 3 [pid 5033] close(3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... close resumed>) = 0 [pid 5030] unlink("./38/cgroup" [pid 5033] rmdir("./40" [pid 6057] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] <... unlink resumed>) = 0 [pid 6057] <... mmap resumed>) = 0x7f4f650a0000 [pid 5033] <... rmdir resumed>) = 0 [pid 5030] umount2("./38/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] mkdir("./41", 0777 [pid 5030] newfstatat(AT_FDCWD, "./38/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5030] unlink("./38/cgroup.net" [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] <... unlink resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5030] getdents64(3, [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5033] close(3) = 0 [pid 5030] rmdir("./38" [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] <... rmdir resumed>) = 0 ./strace-static-x86_64: Process 6058 attached [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 120 [pid 5030] mkdir("./39", 0777 [pid 6058] set_robust_list(0x55555654e6a0, 24 [pid 5030] <... mkdir resumed>) = 0 [pid 6058] <... set_robust_list resumed>) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6058] chdir("./41" [pid 5030] <... openat resumed>) = 3 [pid 6058] <... chdir resumed>) = 0 [pid 6058] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6058] <... prctl resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] close(3) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6059 attached [pid 6058] setpgid(0, 0 [pid 6059] set_robust_list(0x55555654e6a0, 24) = 0 [pid 6059] chdir("./39" [pid 6058] <... setpgid resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 113 [pid 6059] <... chdir resumed>) = 0 [pid 6059] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6059] setpgid(0, 0) = 0 [pid 6059] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 6058] symlink("/syzcgroup/unified/syz2", "./cgroup" [pid 6059] <... symlink resumed>) = 0 [pid 6059] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu") = 0 [pid 6059] symlink("/syzcgroup/net/syz3", "./cgroup.net") = 0 [pid 6058] <... symlink resumed>) = 0 [pid 6059] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6058] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu") = 0 [pid 6058] symlink("/syzcgroup/net/syz2", "./cgroup.net" [pid 6059] write(3, "1000", 4) = 4 [pid 6059] close(3) = 0 [pid 6059] symlink("/dev/binderfs", "./binderfs" [pid 6058] <... symlink resumed>) = 0 [pid 6059] <... symlink resumed>) = 0 [pid 6058] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6059] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6059] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 6058] write(3, "1000", 4 [pid 6059] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6058] <... write resumed>) = 4 [pid 5032] <... umount2 resumed>) = 0 [pid 6059] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6058] close(3 [pid 5032] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6059] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6059] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6058] <... close resumed>) = 0 ./strace-static-x86_64: Process 6060 attached [pid 6058] symlink("/dev/binderfs", "./binderfs" [pid 5032] newfstatat(AT_FDCWD, "./39/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6059] <... clone3 resumed> => {parent_tid=[114]}, 88) = 114 [pid 6059] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6058] <... symlink resumed>) = 0 [pid 6060] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5032] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6060] <... rseq resumed>) = 0 [pid 6058] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6060] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6059] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6058] <... futex resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6059] <... futex resumed>) = 0 [pid 6059] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6060] <... set_robust_list resumed>) = 0 [pid 6058] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5032] openat(AT_FDCWD, "./39/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6058] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5032] <... openat resumed>) = 4 [pid 6060] rt_sigprocmask(SIG_SETMASK, [], [pid 6058] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5032] newfstatat(4, "", [pid 6060] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6058] <... mprotect resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6060] memfd_create("syzkaller", 0 [pid 6058] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5032] getdents64(4, [pid 6058] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6058] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5032] getdents64(4, ./strace-static-x86_64: Process 6061 attached 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6060] <... memfd_create resumed>) = 3 [pid 5032] close(4 [pid 6058] <... clone3 resumed> => {parent_tid=[121]}, 88) = 121 [pid 6061] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053) = 0 [pid 6061] set_robust_list(0x7f4f6d4c09a0, 24) = 0 [pid 6061] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6060] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6058] rt_sigprocmask(SIG_SETMASK, [], [pid 5032] <... close resumed>) = 0 [pid 5032] rmdir("./39/file0" [pid 6058] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6061] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6060] <... mmap resumed>) = 0x7f4f650a0000 [pid 5032] <... rmdir resumed>) = 0 [pid 6058] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] umount2("./39/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6058] <... futex resumed>) = 1 [pid 6061] <... futex resumed>) = 0 [pid 6061] memfd_create("syzkaller", 0 [pid 6058] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6061] <... memfd_create resumed>) = 3 [pid 5032] newfstatat(AT_FDCWD, "./39/cgroup", [pid 6061] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./39/cgroup") = 0 [pid 5032] umount2("./39/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./39/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./39/cgroup.net") = 0 [pid 5032] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 5032] rmdir("./39") = 0 [pid 5032] mkdir("./40", 0777) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6062 attached , child_tidptr=0x55555654e690) = 119 [pid 6062] set_robust_list(0x55555654e6a0, 24) = 0 [pid 6062] chdir("./40") = 0 [pid 6062] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6062] setpgid(0, 0) = 0 [pid 6062] symlink("/syzcgroup/unified/syz1", "./cgroup") = 0 [pid 6062] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu") = 0 [pid 6062] symlink("/syzcgroup/net/syz1", "./cgroup.net") = 0 [pid 6062] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6062] write(3, "1000", 4) = 4 [pid 6062] close(3) = 0 [pid 6062] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6062] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6062] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6053] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6062] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6062] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6062] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6062] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6063 attached => {parent_tid=[120]}, 88) = 120 [pid 6063] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6062] rt_sigprocmask(SIG_SETMASK, [], [pid 6063] <... rseq resumed>) = 0 [pid 6062] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6063] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6062] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6063] <... set_robust_list resumed>) = 0 [pid 6062] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6063] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6063] memfd_create("syzkaller", 0) = 3 [pid 6063] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 6055] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6057] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6060] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6061] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6063] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6053] <... write resumed>) = 16777216 [pid 6053] munmap(0x7f4f650a0000, 16777216) = 0 [pid 6053] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6053] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6053] close(3) = 0 [pid 6053] mkdir("./file0", 0777) = 0 [ 299.272962][ T6053] loop0: detected capacity change from 0 to 32768 [ 299.325663][ T6053] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 299.375928][ T6053] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [pid 6053] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6055] <... write resumed>) = 16777216 [ 299.431270][ T6053] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 299.482541][ T1147] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 299.497895][ T1147] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [pid 6055] munmap(0x7f4f650a0000, 16777216 [pid 6057] <... write resumed>) = 16777216 [pid 6057] munmap(0x7f4f650a0000, 16777216 [pid 6055] <... munmap resumed>) = 0 [pid 6055] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 6055] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6055] close(3) = 0 [pid 6055] mkdir("./file0", 0777) = 0 [ 299.723899][ T1147] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 226ms [ 299.746504][ T6055] loop4: detected capacity change from 0 to 32768 [pid 6055] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6060] <... write resumed>) = 16777216 [ 299.773798][ T1147] gfs2: fsid=syz:syz.0: jid=0: Done [ 299.781125][ T6055] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 299.805426][ T6053] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 299.814155][ T6055] CPU: 1 PID: 6055 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 299.824632][ T6055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 299.834743][ T6055] Call Trace: [ 299.838061][ T6055] [ 299.841026][ T6055] dump_stack_lvl+0x136/0x150 [ 299.845770][ T6055] sysfs_warn_dup+0x80/0xa0 [ 299.850327][ T6055] sysfs_create_dir_ns+0x237/0x290 [ 299.855482][ T6055] ? sysfs_create_mount_point+0xb0/0xb0 [ 299.861089][ T6055] ? spin_bug+0x1c0/0x1c0 [ 299.865483][ T6055] ? do_raw_spin_unlock+0x175/0x230 [ 299.870758][ T6055] kobject_add_internal+0x2c9/0x9c0 [ 299.876017][ T6055] ? kfree+0x11/0x150 [ 299.880048][ T6055] kobject_init_and_add+0x101/0x170 [ 299.885373][ T6055] ? kobject_create_and_add+0xf0/0xf0 [ 299.890796][ T6055] ? lockdep_init_map_type+0x21e/0x810 [ 299.896299][ T6055] ? lockdep_hardirqs_on+0x7d/0x100 [ 299.901535][ T6055] ? lockdep_init_map_type+0x21e/0x810 [ 299.907051][ T6055] gfs2_sys_fs_add+0x1d5/0x450 [ 299.911865][ T6055] ? recover_store+0x170/0x170 [ 299.916695][ T6055] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 299.922484][ T6055] gfs2_fill_super+0x1312/0x2aa0 [ 299.927468][ T6055] ? gfs2_reconfigure+0xf90/0xf90 [ 299.932529][ T6055] ? snprintf+0xbf/0x100 [ 299.936823][ T6055] ? vsprintf+0x30/0x30 [ 299.941010][ T6055] ? wait_for_completion_io_timeout+0x20/0x20 [ 299.947109][ T6055] ? set_blocksize+0x2d8/0x370 [ 299.951905][ T6055] get_tree_bdev+0x43e/0x7d0 [ 299.956525][ T6055] ? gfs2_reconfigure+0xf90/0xf90 [ 299.961582][ T6055] gfs2_get_tree+0x4e/0x270 [ 299.966116][ T6055] vfs_get_tree+0x8d/0x350 [ 299.970562][ T6055] path_mount+0x136e/0x1e70 [ 299.975104][ T6055] ? finish_automount+0xa30/0xa30 [ 299.980162][ T6055] ? putname+0x102/0x140 [ 299.984436][ T6055] __x64_sys_mount+0x283/0x300 [ 299.989234][ T6055] ? copy_mnt_ns+0xb30/0xb30 [ 299.993857][ T6055] ? lockdep_hardirqs_on+0x7d/0x100 [ 299.999090][ T6055] ? _raw_spin_unlock_irq+0x2e/0x50 [ 300.004328][ T6055] ? ptrace_notify+0xfe/0x140 [ 300.009046][ T6055] do_syscall_64+0x39/0xb0 [ 300.013482][ T6055] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 300.019433][ T6055] RIP: 0033:0x7f4f6dd11c5a [ 300.023874][ T6055] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 300.043539][ T6055] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 300.052000][ T6055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 300.059998][ T6055] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 300.067990][ T6055] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [pid 6060] munmap(0x7f4f650a0000, 16777216 [pid 6063] <... write resumed>) = 16777216 [pid 6057] <... munmap resumed>) = 0 [pid 6063] munmap(0x7f4f650a0000, 16777216 [pid 6057] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6057] ioctl(4, LOOP_SET_FD, 3 [pid 6053] <... mount resumed>) = 0 [pid 6053] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6053] chdir("./file0") = 0 [pid 6053] ioctl(4, LOOP_CLR_FD) = 0 [pid 6053] close(4) = 0 [pid 6053] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6052] <... futex resumed>) = 0 [pid 6053] openat(AT_FDCWD, "./file0", O_RDONLY [ 300.075984][ T6055] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 300.084001][ T6055] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 300.091999][ T6055] [ 300.113825][ T6057] loop5: detected capacity change from 0 to 32768 [pid 6052] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6057] <... ioctl resumed>) = 0 [pid 6052] <... futex resumed>) = 0 [pid 6057] close(3) = 0 [pid 6057] mkdir("./file0", 0777) = 0 [pid 6057] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [ 300.148086][ T6053] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 300.178084][ T6053] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 300.178084][ T6053] inode = 12 2341 [ 300.178084][ T6053] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [pid 6052] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6060] <... munmap resumed>) = 0 [ 300.188961][ T6057] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 300.205170][ T6057] CPU: 0 PID: 6057 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 300.215657][ T6057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 300.217980][ T6053] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 300.225728][ T6057] Call Trace: [ 300.225742][ T6057] [ 300.225755][ T6057] dump_stack_lvl+0x136/0x150 [ 300.225811][ T6057] sysfs_warn_dup+0x80/0xa0 [ 300.250425][ T6057] sysfs_create_dir_ns+0x237/0x290 [ 300.255595][ T6057] ? sysfs_create_mount_point+0xb0/0xb0 [ 300.261211][ T6057] ? spin_bug+0x1c0/0x1c0 [ 300.265605][ T6057] ? do_raw_spin_unlock+0x175/0x230 [ 300.267397][ T6053] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6053 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 300.270838][ T6057] kobject_add_internal+0x2c9/0x9c0 [ 300.270877][ T6057] ? kfree+0x11/0x150 [ 300.290550][ T6057] kobject_init_and_add+0x101/0x170 [ 300.295804][ T6057] ? kobject_create_and_add+0xf0/0xf0 [ 300.301232][ T6057] ? lockdep_init_map_type+0x21e/0x810 [ 300.306746][ T6057] ? lockdep_hardirqs_on+0x7d/0x100 [ 300.312006][ T6057] ? lockdep_init_map_type+0x21e/0x810 [ 300.315484][ T6053] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 300.317504][ T6057] gfs2_sys_fs_add+0x1d5/0x450 [ 300.317539][ T6057] ? recover_store+0x170/0x170 [ 300.317571][ T6057] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 300.341305][ T6057] gfs2_fill_super+0x1312/0x2aa0 [ 300.346312][ T6057] ? gfs2_reconfigure+0xf90/0xf90 [ 300.351394][ T6057] ? snprintf+0xbf/0x100 [ 300.355694][ T6057] ? vsprintf+0x30/0x30 [ 300.359902][ T6057] ? wait_for_completion_io_timeout+0x20/0x20 [ 300.366029][ T6057] ? set_blocksize+0x2d8/0x370 [ 300.366797][ T6053] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 300.370937][ T6057] get_tree_bdev+0x43e/0x7d0 [ 300.370985][ T6057] ? gfs2_reconfigure+0xf90/0xf90 [ 300.386888][ T6061] loop2: detected capacity change from 0 to 32768 [ 300.387783][ T6057] gfs2_get_tree+0x4e/0x270 [pid 6060] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6061] <... write resumed>) = 16777216 [pid 6061] munmap(0x7f4f650a0000, 16777216 [pid 6052] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6052] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6052] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 6052] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6052] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6052] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[123]}, 88) = 123 [pid 6052] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6052] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6052] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 6052] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6052] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6605e000 [pid 6052] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6052] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6052] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} => {parent_tid=[124]}, 88) = 124 [pid 6052] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6052] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6052] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6061] <... munmap resumed>) = 0 [pid 6061] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 6061] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6061] close(3) = 0 [pid 6061] mkdir("./file0", 0777) = 0 [pid 6061] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6052] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) ./strace-static-x86_64: Process 6068 attached [pid 6068] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053) = 0 [pid 6068] set_robust_list(0x7f4f6607e9a0, 24) = 0 [pid 6068] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6068] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6063] <... munmap resumed>) = 0 [ 300.398828][ T6057] vfs_get_tree+0x8d/0x350 [ 300.403312][ T6057] path_mount+0x136e/0x1e70 [ 300.407872][ T6057] ? putname+0x102/0x140 [ 300.412174][ T6057] ? lockdep_hardirqs_on+0x7d/0x100 [ 300.417437][ T6057] ? finish_automount+0xa30/0xa30 [ 300.422524][ T6057] ? putname+0x102/0x140 [ 300.426833][ T6057] __x64_sys_mount+0x283/0x300 [ 300.429476][ T6053] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 300.431668][ T6057] ? copy_mnt_ns+0xb30/0xb30 [pid 6063] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 6063] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6063] close(3) = 0 [pid 6063] mkdir("./file0", 0777) = 0 [pid 6063] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6068] <... openat resumed>) = -1 EIO (Input/output error) [pid 6068] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 300.431714][ T6057] ? lockdep_hardirqs_on+0x7d/0x100 [ 300.450312][ T6057] ? _raw_spin_unlock_irq+0x2e/0x50 [ 300.454653][ T6063] loop1: detected capacity change from 0 to 32768 [ 300.455558][ T6057] ? ptrace_notify+0xfe/0x140 [ 300.466744][ T6057] do_syscall_64+0x39/0xb0 [ 300.471220][ T6057] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 300.477203][ T6057] RIP: 0033:0x7f4f6dd11c5a [ 300.481669][ T6057] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 300.482472][ T6053] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 300.502083][ T6057] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 300.502121][ T6057] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 300.502144][ T6057] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 300.502165][ T6057] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 300.502195][ T6057] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [pid 6068] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 6067 attached [ 300.536523][ T6053] gfs2: fsid=syz:syz.0: File system withdrawn [ 300.540966][ T6057] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 300.540998][ T6057] [ 300.576179][ T6061] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 300.583605][ T6061] CPU: 1 PID: 6061 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 300.590068][ T6057] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 300.594039][ T6061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 300.615934][ T6057] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 300.617966][ T6061] Call Trace: [ 300.617978][ T6061] [ 300.630768][ T6061] dump_stack_lvl+0x136/0x150 [ 300.635516][ T6061] sysfs_warn_dup+0x80/0xa0 [ 300.637950][ T6055] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 300.640051][ T6061] sysfs_create_dir_ns+0x237/0x290 [ 300.659084][ T6061] ? sysfs_create_mount_point+0xb0/0xb0 [ 300.662986][ T6055] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 300.664653][ T6061] ? spin_bug+0x1c0/0x1c0 [ 300.675509][ T6061] ? do_raw_spin_unlock+0x175/0x230 [ 300.680756][ T6061] kobject_add_internal+0x2c9/0x9c0 [ 300.685992][ T6061] ? kfree+0x11/0x150 [ 300.690005][ T6061] kobject_init_and_add+0x101/0x170 [ 300.695241][ T6061] ? kobject_create_and_add+0xf0/0xf0 [ 300.700636][ T6061] ? lockdep_init_map_type+0x21e/0x810 [ 300.706122][ T6061] ? lockdep_hardirqs_on+0x7d/0x100 [ 300.711342][ T6061] ? lockdep_init_map_type+0x21e/0x810 [ 300.716831][ T6061] gfs2_sys_fs_add+0x1d5/0x450 [ 300.721610][ T6061] ? recover_store+0x170/0x170 [ 300.726401][ T6061] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 300.732154][ T6061] gfs2_fill_super+0x1312/0x2aa0 [ 300.737120][ T6061] ? gfs2_reconfigure+0xf90/0xf90 [ 300.742176][ T6061] ? snprintf+0xbf/0x100 [ 300.746442][ T6061] ? vsprintf+0x30/0x30 [ 300.750621][ T6061] ? wait_for_completion_io_timeout+0x20/0x20 [ 300.756734][ T6061] ? set_blocksize+0x2d8/0x370 [ 300.761545][ T6061] get_tree_bdev+0x43e/0x7d0 [ 300.766206][ T6061] ? gfs2_reconfigure+0xf90/0xf90 [ 300.771273][ T6061] gfs2_get_tree+0x4e/0x270 [ 300.775822][ T6061] vfs_get_tree+0x8d/0x350 [ 300.780281][ T6061] path_mount+0x136e/0x1e70 [ 300.784828][ T6061] ? finish_automount+0xa30/0xa30 [ 300.789886][ T6061] ? putname+0x102/0x140 [ 300.794161][ T6061] __x64_sys_mount+0x283/0x300 [ 300.798957][ T6061] ? copy_mnt_ns+0xb30/0xb30 [ 300.803583][ T6061] ? lockdep_hardirqs_on+0x7d/0x100 [ 300.808817][ T6061] ? _raw_spin_unlock_irq+0x2e/0x50 [ 300.814072][ T6061] ? ptrace_notify+0xfe/0x140 [ 300.818796][ T6061] do_syscall_64+0x39/0xb0 [ 300.823238][ T6061] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 300.829176][ T6061] RIP: 0033:0x7f4f6dd11c5a [ 300.833610][ T6061] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 300.853243][ T6061] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 300.861681][ T6061] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 300.869673][ T6061] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 300.877835][ T6061] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 300.885843][ T6061] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [pid 6060] <... openat resumed>) = 4 [ 300.893875][ T6061] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 300.901908][ T6061] [ 300.907909][ T6053] CPU: 0 PID: 6053 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 300.918428][ T6053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 300.928528][ T6053] Call Trace: [ 300.930186][ T6063] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 300.931825][ T6053] [ 300.931839][ T6053] dump_stack_lvl+0x136/0x150 [ 300.946896][ T6053] gfs2_withdraw+0xb33/0x1060 [pid 6060] ioctl(4, LOOP_SET_FD, 3 [pid 6057] <... mount resumed>) = -1 EEXIST (File exists) [pid 6057] ioctl(4, LOOP_CLR_FD [pid 6060] <... ioctl resumed>) = 0 [pid 6060] close(3) = 0 [ 300.951627][ T6053] ? gfs2_consist_inode_i+0x104/0x150 [ 300.957069][ T6053] gfs2_dirent_scan+0x32a/0x3d0 [ 300.961981][ T6053] ? gfs2_dirent_prev+0x210/0x210 [ 300.967063][ T6053] ? gfs2_dirent_prev+0x210/0x210 [ 300.967624][ T6060] loop3: detected capacity change from 0 to 32768 [ 300.972126][ T6053] gfs2_dirent_search+0x47d/0x580 [ 300.972179][ T6053] ? get_first_leaf+0x190/0x190 [ 300.988599][ T6053] ? gfs2_permission+0x256/0x3e0 [ 300.993599][ T6053] gfs2_dir_search+0x8d/0x2d0 [pid 6060] mkdir("./file0", 0777) = 0 [ 300.998346][ T6053] ? gfs2_dir_read+0x14e0/0x14e0 [ 301.003369][ T6053] gfs2_lookupi+0x481/0x640 [ 301.007935][ T6053] ? gfs2_lookup_by_inum+0x100/0x100 [ 301.013290][ T6053] ? __gfs2_lookup+0x83/0x280 [ 301.018013][ T6053] ? d_alloc_parallel+0x693/0x1530 [ 301.023196][ T6053] __gfs2_lookup+0x83/0x280 [ 301.027740][ T6053] ? gfs2_lookupi+0x640/0x640 [ 301.032456][ T6053] ? __d_lookup_rcu+0x4e0/0x4e0 [ 301.037370][ T6053] ? __d_lookup+0x289/0x4c0 [ 301.041932][ T6053] gfs2_atomic_open+0xde/0x250 [ 301.046766][ T6053] ? __gfs2_lookup+0x280/0x280 [pid 6060] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6067] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053) = 0 [pid 6067] set_robust_list(0x7f4f6609f9a0, 24) = 0 [pid 6067] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6067] ioctl(0, VFAT_IOCTL_READDIR_SHORT, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 6067] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 301.051589][ T6053] lookup_open.isra.0+0xce2/0x1400 [ 301.056760][ T6053] ? link_path_walk.part.0+0xd60/0xd60 [ 301.062293][ T6053] ? lookup_fast+0x14e/0x520 [ 301.066936][ T6053] path_openat+0x969/0x2710 [ 301.071509][ T6053] ? path_lookupat+0x840/0x840 [ 301.076338][ T6053] ? find_held_lock+0x2d/0x110 [ 301.081172][ T6053] do_filp_open+0x1ba/0x410 [ 301.085732][ T6053] ? may_open_dev+0xf0/0xf0 [ 301.090281][ T6053] ? find_held_lock+0x2d/0x110 [ 301.095077][ T6053] ? do_raw_spin_lock+0x124/0x2b0 [ 301.100153][ T6053] ? spin_bug+0x1c0/0x1c0 [ 301.104533][ T6053] ? _raw_spin_unlock+0x28/0x40 [ 301.109425][ T6053] ? alloc_fd+0x2e4/0x750 [ 301.113811][ T6053] do_sys_openat2+0x160/0x1c0 [ 301.118547][ T6053] ? build_open_flags+0x720/0x720 [ 301.123612][ T6053] ? ptrace_notify+0xfe/0x140 [ 301.128337][ T6053] ? lock_downgrade+0x690/0x690 [ 301.133245][ T6053] __x64_sys_openat+0x143/0x1f0 [ 301.138164][ T6053] ? __ia32_sys_open+0x1c0/0x1c0 [ 301.143154][ T6053] ? _raw_spin_unlock_irq+0x23/0x50 [ 301.148418][ T6053] ? lockdep_hardirqs_on+0x7d/0x100 [ 301.153695][ T6053] ? _raw_spin_unlock_irq+0x2e/0x50 [ 301.158947][ T6053] ? ptrace_notify+0xfe/0x140 [ 301.163696][ T6053] do_syscall_64+0x39/0xb0 [ 301.168191][ T6053] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 301.174152][ T6053] RIP: 0033:0x7f4f6dd107f9 [ 301.178661][ T6053] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [pid 6067] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6052] close(3) = 0 [pid 6052] close(4) = -1 EBADF (Bad file descriptor) [pid 6052] close(5) = -1 EBADF (Bad file descriptor) [pid 6052] close(6) = -1 EBADF (Bad file descriptor) [pid 6055] <... mount resumed>) = -1 EEXIST (File exists) [pid 6052] close(7 [pid 6055] ioctl(4, LOOP_CLR_FD [pid 6052] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6052] close(8) = -1 EBADF (Bad file descriptor) [pid 6052] close(9) = -1 EBADF (Bad file descriptor) [ 301.198354][ T6053] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 301.206821][ T6053] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 301.214839][ T6053] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [ 301.222847][ T6053] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 301.230862][ T6053] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 301.238878][ T6053] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 301.246895][ T6053] [pid 6052] close(10) = -1 EBADF (Bad file descriptor) [pid 6052] close(11) = -1 EBADF (Bad file descriptor) [pid 6052] close(12) = -1 EBADF (Bad file descriptor) [pid 6053] <... openat resumed>) = -1 EIO (Input/output error) [ 301.263046][ T6060] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 301.275107][ T6061] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 301.276433][ T6060] CPU: 1 PID: 6060 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 301.299487][ T6060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 301.309585][ T6060] Call Trace: [ 301.312903][ T6060] [ 301.315884][ T6060] dump_stack_lvl+0x136/0x150 [ 301.320675][ T6060] sysfs_warn_dup+0x80/0xa0 [ 301.325238][ T6060] sysfs_create_dir_ns+0x237/0x290 [ 301.330410][ T6060] ? sysfs_create_mount_point+0xb0/0xb0 [ 301.336011][ T6060] ? spin_bug+0x1c0/0x1c0 [ 301.340391][ T6060] ? do_raw_spin_unlock+0x175/0x230 [ 301.345641][ T6060] kobject_add_internal+0x2c9/0x9c0 [ 301.350972][ T6060] ? kfree+0x11/0x150 [ 301.354998][ T6060] kobject_init_and_add+0x101/0x170 [ 301.360250][ T6060] ? kobject_create_and_add+0xf0/0xf0 [ 301.365678][ T6060] ? lockdep_init_map_type+0x21e/0x810 [ 301.371198][ T6060] ? lockdep_hardirqs_on+0x7d/0x100 [ 301.373693][ T6061] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 301.376428][ T6060] ? lockdep_init_map_type+0x21e/0x810 [ 301.376472][ T6060] gfs2_sys_fs_add+0x1d5/0x450 [ 301.376507][ T6060] ? recover_store+0x170/0x170 [ 301.376540][ T6060] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 301.403737][ T6060] gfs2_fill_super+0x1312/0x2aa0 [ 301.408710][ T6060] ? gfs2_reconfigure+0xf90/0xf90 [ 301.413766][ T6060] ? snprintf+0xbf/0x100 [ 301.418041][ T6060] ? vsprintf+0x30/0x30 [ 301.422223][ T6060] ? wait_for_completion_io_timeout+0x20/0x20 [ 301.428323][ T6060] ? set_blocksize+0x2d8/0x370 [ 301.433117][ T6060] get_tree_bdev+0x43e/0x7d0 [ 301.437744][ T6060] ? gfs2_reconfigure+0xf90/0xf90 [ 301.442794][ T6060] gfs2_get_tree+0x4e/0x270 [ 301.447326][ T6060] vfs_get_tree+0x8d/0x350 [ 301.451769][ T6060] path_mount+0x136e/0x1e70 [ 301.456302][ T6060] ? putname+0x102/0x140 [ 301.460565][ T6060] ? lockdep_hardirqs_on+0x7d/0x100 [ 301.465799][ T6060] ? finish_automount+0xa30/0xa30 [ 301.470860][ T6060] ? putname+0x102/0x140 [ 301.475129][ T6060] __x64_sys_mount+0x283/0x300 [ 301.479924][ T6060] ? copy_mnt_ns+0xb30/0xb30 [ 301.484544][ T6060] ? lockdep_hardirqs_on+0x7d/0x100 [ 301.489773][ T6060] ? _raw_spin_unlock_irq+0x2e/0x50 [ 301.495027][ T6060] ? ptrace_notify+0xfe/0x140 [ 301.499746][ T6060] do_syscall_64+0x39/0xb0 [ 301.504185][ T6060] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 301.510132][ T6060] RIP: 0033:0x7f4f6dd11c5a [ 301.514567][ T6060] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 301.534199][ T6060] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 301.542635][ T6060] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 301.550647][ T6060] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [pid 6052] close(13 [pid 6053] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6052] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6053] <... futex resumed>) = 0 [pid 6052] close(14) = -1 EBADF (Bad file descriptor) [pid 6053] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6052] close(15) = -1 EBADF (Bad file descriptor) [ 301.558637][ T6060] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 301.566648][ T6060] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 301.574814][ T6060] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 301.582810][ T6060] [pid 6052] close(16) = -1 EBADF (Bad file descriptor) [pid 6052] close(17) = -1 EBADF (Bad file descriptor) [pid 6052] close(18) = -1 EBADF (Bad file descriptor) [pid 6052] close(19) = -1 EBADF (Bad file descriptor) [pid 6052] close(20) = -1 EBADF (Bad file descriptor) [pid 6052] close(21) = -1 EBADF (Bad file descriptor) [pid 6052] close(22) = -1 EBADF (Bad file descriptor) [pid 6052] close(23) = -1 EBADF (Bad file descriptor) [pid 6052] close(24) = -1 EBADF (Bad file descriptor) [pid 6052] close(25) = -1 EBADF (Bad file descriptor) [pid 6052] close(26) = -1 EBADF (Bad file descriptor) [pid 6052] close(27) = -1 EBADF (Bad file descriptor) [pid 6052] close(28) = -1 EBADF (Bad file descriptor) [pid 6052] close(29write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory ) = -1 EBADF (Bad file descriptor) [pid 6052] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 6052] exit_group(0 [pid 6068] <... futex resumed>) = ? [pid 6067] <... futex resumed>) = ? [pid 6052] <... exit_group resumed>) = ? [pid 6068] +++ exited with 0 +++ [pid 6067] +++ exited with 0 +++ [ 301.616045][ T6063] CPU: 0 PID: 6063 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 301.626585][ T6063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 301.636710][ T6063] Call Trace: [ 301.640030][ T6063] [ 301.643004][ T6063] dump_stack_lvl+0x136/0x150 [ 301.647758][ T6063] sysfs_warn_dup+0x80/0xa0 [ 301.652314][ T6063] sysfs_create_dir_ns+0x237/0x290 [ 301.657478][ T6063] ? sysfs_create_mount_point+0xb0/0xb0 [ 301.663082][ T6063] ? spin_bug+0x1c0/0x1c0 [ 301.667491][ T6063] ? do_raw_spin_unlock+0x175/0x230 [ 301.672756][ T6063] kobject_add_internal+0x2c9/0x9c0 [ 301.678004][ T6063] ? kfree+0x11/0x150 [ 301.682034][ T6063] kobject_init_and_add+0x101/0x170 [ 301.687287][ T6063] ? kobject_create_and_add+0xf0/0xf0 [ 301.692721][ T6063] ? lockdep_init_map_type+0x21e/0x810 [ 301.698245][ T6063] ? lockdep_hardirqs_on+0x7d/0x100 [ 301.703498][ T6063] ? lockdep_init_map_type+0x21e/0x810 [ 301.709041][ T6063] gfs2_sys_fs_add+0x1d5/0x450 [pid 6053] <... futex resumed>) = ? [pid 6053] +++ exited with 0 +++ [pid 6052] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=121, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=58 /* 0.58 s */} --- [pid 5029] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5029] umount2("./39", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./39", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5029] umount2("./39/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./39/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./39/cgroup.cpu") = 0 [pid 5029] umount2("./39/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./39/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./39/binderfs") = 0 [ 301.713862][ T6063] ? recover_store+0x170/0x170 [ 301.718696][ T6063] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 301.724594][ T6063] gfs2_fill_super+0x1312/0x2aa0 [ 301.729603][ T6063] ? gfs2_reconfigure+0xf90/0xf90 [ 301.734689][ T6063] ? snprintf+0xbf/0x100 [ 301.738998][ T6063] ? vsprintf+0x30/0x30 [ 301.743209][ T6063] ? wait_for_completion_io_timeout+0x20/0x20 [ 301.749341][ T6063] ? set_blocksize+0x2d8/0x370 [ 301.754184][ T6063] get_tree_bdev+0x43e/0x7d0 [ 301.758831][ T6063] ? gfs2_reconfigure+0xf90/0xf90 [ 301.763909][ T6063] gfs2_get_tree+0x4e/0x270 [ 301.768479][ T6063] vfs_get_tree+0x8d/0x350 [ 301.772954][ T6063] path_mount+0x136e/0x1e70 [ 301.777538][ T6063] ? putname+0x102/0x140 [ 301.781858][ T6063] ? lockdep_hardirqs_on+0x7d/0x100 [ 301.787122][ T6063] ? finish_automount+0xa30/0xa30 [ 301.792208][ T6063] ? putname+0x102/0x140 [ 301.796505][ T6063] __x64_sys_mount+0x283/0x300 [ 301.801338][ T6063] ? copy_mnt_ns+0xb30/0xb30 [ 301.806010][ T6063] ? lockdep_hardirqs_on+0x7d/0x100 [ 301.811269][ T6063] ? _raw_spin_unlock_irq+0x2e/0x50 [pid 5029] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6054] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6054] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 301.816576][ T6063] ? ptrace_notify+0xfe/0x140 [ 301.821320][ T6063] do_syscall_64+0x39/0xb0 [ 301.825796][ T6063] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 301.831758][ T6063] RIP: 0033:0x7f4f6dd11c5a [ 301.836234][ T6063] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 301.855935][ T6063] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [pid 6054] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 6054] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6054] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6054] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[119]}, 88) = 119 [pid 6054] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6054] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6054] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 6072 attached [pid 6072] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053) = 0 [pid 6072] set_robust_list(0x7f4f6609f9a0, 24) = 0 [pid 6056] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6072] rt_sigprocmask(SIG_SETMASK, [], [ 301.864425][ T6063] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 301.872450][ T6063] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 301.880481][ T6063] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 301.888518][ T6063] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 301.896633][ T6063] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 301.904666][ T6063] [pid 6056] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6072] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6057] <... ioctl resumed>) = 0 [pid 6056] <... futex resumed>) = 0 [pid 6054] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6072] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 6072] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6072] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6056] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 6056] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6056] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 301.948279][ T6063] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 301.966574][ T6060] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 6054] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6061] <... mount resumed>) = -1 EEXIST (File exists) [pid 6054] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6061] ioctl(4, LOOP_CLR_FD [pid 6056] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[123]}, 88) = 123 ./strace-static-x86_64: Process 6073 attached [pid 6057] close(4 [pid 6056] rt_sigprocmask(SIG_SETMASK, [], [pid 6073] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6072] <... futex resumed>) = 0 [pid 6057] <... close resumed>) = 0 [pid 6056] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6073] <... rseq resumed>) = 0 [pid 6063] <... mount resumed>) = -1 EEXIST (File exists) [pid 6057] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6056] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6073] set_robust_list(0x7f4f6609f9a0, 24 [pid 6063] ioctl(4, LOOP_CLR_FD [pid 6057] <... futex resumed>) = 0 [pid 6056] <... futex resumed>) = 0 [pid 6073] <... set_robust_list resumed>) = 0 [pid 6073] rt_sigprocmask(SIG_SETMASK, [], [pid 6057] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6056] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6073] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6073] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 6073] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6056] <... futex resumed>) = 0 [pid 6073] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6056] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6057] <... futex resumed>) = 0 [pid 6056] <... futex resumed>) = 1 [pid 6057] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [ 301.993107][ T6063] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 302.002105][ T6060] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 6056] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6059] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6057] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6057] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6072] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6059] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6057] <... futex resumed>) = 1 [pid 6056] <... futex resumed>) = 0 [pid 6055] <... ioctl resumed>) = 0 [pid 6054] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6072] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6057] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6056] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6054] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 6072] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6059] <... futex resumed>) = 0 [pid 6057] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6056] <... futex resumed>) = 0 [pid 6055] close(4 [pid 6054] <... futex resumed>) = 0 [pid 6072] <... futex resumed>) = 0 [pid 6059] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6057] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6056] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6072] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6059] <... mmap resumed>) = 0x7f4f6607f000 [pid 6057] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6055] <... close resumed>) = 0 [pid 6054] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6060] <... mount resumed>) = -1 EEXIST (File exists) [pid 6059] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6058] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6057] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6055] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6054] <... mmap resumed>) = 0x7f4f6605e000 [pid 6059] <... mprotect resumed>) = 0 [pid 6058] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6057] <... futex resumed>) = 1 [pid 6056] <... futex resumed>) = 0 [pid 6055] <... futex resumed>) = 0 [pid 6054] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE [pid 6060] ioctl(4, LOOP_CLR_FD [pid 6059] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6058] <... futex resumed>) = 0 [pid 6057] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6056] close(3 [pid 6055] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6054] <... mprotect resumed>) = 0 [pid 6059] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6056] <... close resumed>) = 0 [pid 6054] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6059] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6056] close(4 [pid 6054] <... rt_sigprocmask resumed>[], 8) = 0 ./strace-static-x86_64: Process 6074 attached [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0}./strace-static-x86_64: Process 6075 attached [pid 6074] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6059] <... clone3 resumed> => {parent_tid=[115]}, 88) = 115 [pid 6056] close(5 [pid 6075] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 6074] <... rseq resumed>) = 0 [pid 6059] rt_sigprocmask(SIG_SETMASK, [], [pid 6058] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] <... clone3 resumed> => {parent_tid=[120]}, 88) = 120 [pid 6075] <... rseq resumed>) = 0 [pid 6074] set_robust_list(0x7f4f6609f9a0, 24 [pid 6059] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6058] <... mmap resumed>) = 0x7f4f6607f000 [pid 6056] close(6 [pid 6054] rt_sigprocmask(SIG_SETMASK, [], [pid 6075] set_robust_list(0x7f4f6607e9a0, 24 [pid 6074] <... set_robust_list resumed>) = 0 [pid 6059] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6058] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6075] <... set_robust_list resumed>) = 0 [pid 6074] rt_sigprocmask(SIG_SETMASK, [], [pid 6059] <... futex resumed>) = 0 [pid 6058] <... mprotect resumed>) = 0 [pid 6056] close(7 [pid 6054] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 6075] rt_sigprocmask(SIG_SETMASK, [], [pid 6074] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6059] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6058] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] <... futex resumed>) = 0 [pid 6075] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6074] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6058] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6056] close(8 [pid 6054] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6075] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6074] <... openat resumed>) = 3 [pid 6058] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) ./strace-static-x86_64: Process 6076 attached [pid 6075] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6074] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6056] close(9 [pid 6076] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6075] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 6074] <... futex resumed>) = 1 [pid 6059] <... futex resumed>) = 0 [pid 6058] <... clone3 resumed> => {parent_tid=[122]}, 88) = 122 [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6076] <... rseq resumed>) = 0 [pid 6075] <... futex resumed>) = 1 [pid 6074] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6059] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6058] rt_sigprocmask(SIG_SETMASK, [], [pid 6056] close(10 [pid 6054] <... futex resumed>) = 0 [pid 6076] set_robust_list(0x7f4f6609f9a0, 24 [pid 6075] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6074] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6059] <... futex resumed>) = 0 [pid 6058] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(3 [pid 6076] <... set_robust_list resumed>) = 0 [pid 6074] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6059] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6058] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6056] close(11 [pid 6054] <... close resumed>) = 0 [pid 6076] rt_sigprocmask(SIG_SETMASK, [], [pid 6074] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6058] <... futex resumed>) = 0 [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(4 [pid 6076] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6074] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6058] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6056] close(12 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6076] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6074] <... futex resumed>) = 1 [pid 6059] <... futex resumed>) = 0 [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(5 [pid 6076] <... openat resumed>) = 3 [pid 6074] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6059] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6056] close(13 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6076] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6074] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6059] <... futex resumed>) = 0 [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(6 [pid 6076] <... futex resumed>) = 1 [pid 6074] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6059] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6058] <... futex resumed>) = 0 [pid 6056] close(14 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6076] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6074] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6058] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(7 [pid 6076] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6074] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6058] <... futex resumed>) = 0 [pid 6056] close(15 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6076] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6074] <... futex resumed>) = 1 [pid 6059] <... futex resumed>) = 0 [pid 6058] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(8 [pid 6076] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6074] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6056] close(16 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6076] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(9 [pid 6076] <... futex resumed>) = 1 [pid 6058] <... futex resumed>) = 0 [pid 6056] close(17 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6076] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6058] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(10 [pid 6076] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6058] <... futex resumed>) = 0 [pid 6056] close(18 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6076] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6058] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(11 [pid 6076] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6056] close(19 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6076] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6062] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(12 [pid 6076] <... futex resumed>) = 1 [pid 6058] <... futex resumed>) = 0 [pid 6056] close(20 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6076] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(13 [pid 6056] close(21 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(14 [pid 6056] close(22 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6062] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(15 [pid 6056] close(23 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(16 [pid 6056] close(24 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(17 [pid 6056] close(25 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(18 [pid 6056] close(26 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(19 [pid 6056] close(27 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(20 [pid 6062] <... futex resumed>) = 0 [pid 6056] close(28 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6062] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(21 [pid 6062] <... mmap resumed>) = 0x7f4f6607f000 [pid 6056] close(29 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6062] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6056] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(22 [pid 6056] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6056] <... write resumed>) = 156 [pid 6054] close(23 [pid 6056] exit_group(0 [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6073] <... futex resumed>) = ? [pid 6057] <... futex resumed>) = ? [pid 6056] <... exit_group resumed>) = ? [pid 6054] close(24 [pid 6073] +++ exited with 0 +++ [pid 6062] <... mprotect resumed>) = 0 [pid 6057] +++ exited with 0 +++ [pid 6056] +++ exited with 0 +++ [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6054] close(25) = -1 EBADF (Bad file descriptor) [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=121, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=57 /* 0.57 s */} --- [pid 6054] close(26 [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... restart_syscall resumed>) = 0 [pid 6054] close(27) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6054] close(28 [pid 5034] umount2("./40", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6054] close(29 [pid 5034] openat(AT_FDCWD, "./40", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6054] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... openat resumed>) = 3 [pid 6054] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5034] newfstatat(3, "", [pid 6054] <... write resumed>) = 156 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6054] exit_group(0 [pid 5034] getdents64(3, [pid 6075] <... futex resumed>) = ? [pid 6072] <... futex resumed>) = ? [pid 6055] <... futex resumed>) = ? [pid 6054] <... exit_group resumed>) = ? [pid 5034] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6075] +++ exited with 0 +++ [pid 6072] +++ exited with 0 +++ [pid 6062] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6055] +++ exited with 0 +++ [pid 6054] +++ exited with 0 +++ [pid 5034] umount2("./40/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./40/cgroup.cpu", [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=117, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=63 /* 0.63 s */} --- [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 5034] unlink("./40/cgroup.cpu" [pid 5031] <... restart_syscall resumed>) = 0 [pid 6062] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 6062] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5034] umount2("./40/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./39", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] newfstatat(AT_FDCWD, "./40/binderfs", [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] openat(AT_FDCWD, "./39", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 6077 attached [pid 5034] unlink("./40/binderfs" [pid 5031] <... openat resumed>) = 3 [pid 6077] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6062] <... clone3 resumed> => {parent_tid=[121]}, 88) = 121 [pid 5034] <... unlink resumed>) = 0 [pid 5031] newfstatat(3, "", [pid 6077] <... rseq resumed>) = 0 [pid 5034] umount2("./40/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6077] set_robust_list(0x7f4f6609f9a0, 24 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] getdents64(3, [pid 6077] <... set_robust_list resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./40/file0", [pid 5031] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6077] rt_sigprocmask(SIG_SETMASK, [], [pid 6061] <... ioctl resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./39/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6077] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6061] close(4 [pid 5034] umount2("./40/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6077] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6062] rt_sigprocmask(SIG_SETMASK, [], [pid 6061] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./39/cgroup.cpu", [pid 5034] openat(AT_FDCWD, "./40/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... openat resumed>) = 4 [pid 5031] unlink("./39/cgroup.cpu" [pid 5034] newfstatat(4, "", [pid 5031] <... unlink resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] umount2("./39/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] getdents64(4, [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5031] newfstatat(AT_FDCWD, "./39/binderfs", [pid 5034] getdents64(4, [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5031] unlink("./39/binderfs" [pid 5034] close(4 [pid 5031] <... unlink resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5031] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] rmdir("./40/file0" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6062] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6061] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] <... rmdir resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./39/file0", [pid 6058] close(3 [pid 5034] umount2("./40/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6058] <... close resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6058] close(4 [pid 5034] newfstatat(AT_FDCWD, "./40/cgroup", [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] openat(AT_FDCWD, "./39/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6058] close(5 [pid 5034] unlink("./40/cgroup" [pid 5031] <... openat resumed>) = 4 [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... unlink resumed>) = 0 [pid 5031] newfstatat(4, "", [pid 6058] close(6 [pid 5034] umount2("./40/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] getdents64(4, [pid 6062] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6061] <... futex resumed>) = 0 [pid 6058] close(7 [pid 5034] newfstatat(AT_FDCWD, "./40/cgroup.net", [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6062] <... futex resumed>) = 0 [pid 6061] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] getdents64(4, [pid 6062] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6058] close(8 [pid 5034] unlink("./40/cgroup.net" [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... unlink resumed>) = 0 [pid 5031] close(4 [pid 6058] close(9 [pid 5034] getdents64(3, [pid 5031] <... close resumed>) = 0 [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5031] rmdir("./39/file0" [pid 6058] close(10 [pid 5034] close(3 [pid 5031] <... rmdir resumed>) = 0 [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... close resumed>) = 0 [pid 5031] umount2("./39/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6058] close(11 [pid 5034] rmdir("./40" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... rmdir resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./39/cgroup", [pid 6058] close(12 [pid 5034] mkdir("./41", 0777 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... mkdir resumed>) = 0 [pid 5031] unlink("./39/cgroup" [pid 6058] close(13 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5031] <... unlink resumed>) = 0 [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... openat resumed>) = 3 [pid 5031] umount2("./39/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6058] close(14 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] newfstatat(AT_FDCWD, "./39/cgroup.net", [pid 6058] close(15 [pid 5034] close(3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6077] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... close resumed>) = 0 [pid 5031] unlink("./39/cgroup.net" [pid 5029] <... umount2 resumed>) = 0 [pid 6058] close(16 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] <... unlink resumed>) = 0 ./strace-static-x86_64: Process 6078 attached [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] getdents64(3, [pid 5029] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6058] close(17 [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 124 [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] close(3 [pid 6058] close(18 [pid 5031] <... close resumed>) = 0 [pid 6078] set_robust_list(0x55555654e6a0, 24 [pid 6077] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] rmdir("./39" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6078] <... set_robust_list resumed>) = 0 [pid 6062] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6058] close(19 [pid 5031] <... rmdir resumed>) = 0 [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] mkdir("./40", 0777 [pid 6078] chdir("./41" [pid 6062] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 6058] close(20 [pid 5031] <... mkdir resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./39/file0", [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6058] close(21 [pid 5031] <... openat resumed>) = 3 [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6058] close(22 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6078] <... chdir resumed>) = 0 [pid 6062] <... futex resumed>) = 0 [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] close(3 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6078] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6077] <... openat resumed>) = 3 [pid 6062] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6058] close(23 [pid 5031] <... close resumed>) = 0 [pid 5029] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6078] <... prctl resumed>) = 0 [pid 6077] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6062] <... mmap resumed>) = 0x7f4f6605e000 [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6079 attached [pid 6078] setpgid(0, 0 [pid 6058] close(24 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6079] set_robust_list(0x55555654e6a0, 24 [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 121 [pid 6079] <... set_robust_list resumed>) = 0 [pid 6078] <... setpgid resumed>) = 0 [pid 6058] close(25 [pid 5029] openat(AT_FDCWD, "./39/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6079] chdir("./40" [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6079] <... chdir resumed>) = 0 [pid 6058] close(26 [pid 6079] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6079] <... prctl resumed>) = 0 [pid 6058] close(27 [pid 6079] setpgid(0, 0 [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6078] symlink("/syzcgroup/unified/syz5", "./cgroup" [pid 6079] <... setpgid resumed>) = 0 [pid 6058] close(28 [pid 5029] <... openat resumed>) = 4 [pid 6079] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 6078] <... symlink resumed>) = 0 [pid 6077] <... futex resumed>) = 0 [pid 6062] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE [pid 6060] <... ioctl resumed>) = 0 [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6079] <... symlink resumed>) = 0 [pid 6058] close(29 [pid 5029] newfstatat(4, "", [pid 6079] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 6058] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6079] <... symlink resumed>) = 0 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6058] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6079] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 6078] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu" [pid 6058] <... write resumed>) = 156 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6079] <... symlink resumed>) = 0 [pid 6077] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6058] exit_group(0 [pid 6079] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6078] <... symlink resumed>) = 0 [pid 6076] <... futex resumed>) = ? [pid 6061] <... futex resumed>) = ? [pid 6058] <... exit_group resumed>) = ? [pid 5029] getdents64(4, [pid 6079] <... openat resumed>) = 3 [pid 6078] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 6076] +++ exited with 0 +++ [pid 6062] <... mprotect resumed>) = 0 [pid 6061] +++ exited with 0 +++ [pid 6060] close(4 [pid 6058] +++ exited with 0 +++ [pid 6079] write(3, "1000", 4 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=120, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=57 /* 0.57 s */} --- [pid 6078] <... symlink resumed>) = 0 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6079] <... write resumed>) = 4 [pid 6063] <... ioctl resumed>) = 0 [pid 6062] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6060] <... close resumed>) = 0 [pid 6079] close(3 [pid 6078] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6063] close(4 [pid 6062] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6060] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] getdents64(4, [pid 6079] <... close resumed>) = 0 [pid 5033] umount2("./41", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6079] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6079] <... symlink resumed>) = 0 [pid 5033] openat(AT_FDCWD, "./41", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6079] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6078] <... openat resumed>) = 3 [pid 6063] <... close resumed>) = 0 [pid 6062] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} [pid 6060] <... futex resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 ./strace-static-x86_64: Process 6080 attached [pid 6079] <... futex resumed>) = 0 [pid 6078] write(3, "1000", 4 [pid 6063] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] newfstatat(3, "", [pid 6060] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5029] close(4 [pid 6080] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 6079] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6080] <... rseq resumed>) = 0 [pid 6079] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5033] getdents64(3, [pid 6080] set_robust_list(0x7f4f6607e9a0, 24 [pid 6079] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5033] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6080] <... set_robust_list resumed>) = 0 [pid 6079] <... mprotect resumed>) = 0 [pid 6078] <... write resumed>) = 4 [pid 6063] <... futex resumed>) = 0 [pid 6062] <... clone3 resumed> => {parent_tid=[122]}, 88) = 122 [pid 6059] close(3 [pid 5033] umount2("./41/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... close resumed>) = 0 [pid 6080] rt_sigprocmask(SIG_SETMASK, [], [pid 6079] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6078] close(3 [pid 6063] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6062] rt_sigprocmask(SIG_SETMASK, [], [pid 6059] <... close resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6080] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6079] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5033] newfstatat(AT_FDCWD, "./41/cgroup.cpu", [pid 5029] rmdir("./39/file0" [pid 6080] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6079] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 6081 attached [pid 5033] unlink("./41/cgroup.cpu" [pid 6081] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6079] <... clone3 resumed> => {parent_tid=[122]}, 88) = 122 [pid 5033] <... unlink resumed>) = 0 [pid 6081] <... rseq resumed>) = 0 [pid 6079] rt_sigprocmask(SIG_SETMASK, [], [pid 6078] <... close resumed>) = 0 [pid 6062] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6059] close(4 [pid 5033] umount2("./41/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6081] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6079] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6078] symlink("/dev/binderfs", "./binderfs" [pid 6062] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... rmdir resumed>) = 0 [pid 6081] <... set_robust_list resumed>) = 0 [pid 6080] <... futex resumed>) = 0 [pid 6079] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6078] <... symlink resumed>) = 0 [pid 6062] <... futex resumed>) = 1 [pid 6059] close(5 [pid 5033] newfstatat(AT_FDCWD, "./41/binderfs", [pid 5029] umount2("./39/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6081] rt_sigprocmask(SIG_SETMASK, [], [pid 6080] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6079] <... futex resumed>) = 0 [pid 6078] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6062] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6081] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6080] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6079] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6078] <... futex resumed>) = 0 [pid 6059] close(6 [pid 5033] unlink("./41/binderfs" [pid 5029] newfstatat(AT_FDCWD, "./39/cgroup", [pid 6081] memfd_create("syzkaller", 0 [pid 6080] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 6078] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... unlink resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6081] <... memfd_create resumed>) = 3 [pid 6080] <... futex resumed>) = 1 [pid 6078] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6062] <... futex resumed>) = 0 [pid 6059] close(7 [pid 5033] umount2("./41/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] unlink("./39/cgroup" [pid 6081] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6080] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6078] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6062] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... unlink resumed>) = 0 [pid 6081] <... mmap resumed>) = 0x7f4f650a0000 [pid 6078] <... mprotect resumed>) = 0 [pid 6063] <... futex resumed>) = 0 [pid 6062] <... futex resumed>) = 1 [pid 6059] close(8 [pid 5033] newfstatat(AT_FDCWD, "./41/file0", [pid 5029] umount2("./39/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6078] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6063] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6078] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6063] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6059] close(9 [pid 5029] newfstatat(AT_FDCWD, "./39/cgroup.net", [pid 6078] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 6063] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6062] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 6082 attached [pid 6063] <... futex resumed>) = 0 [pid 6062] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6059] close(10 [pid 5029] unlink("./39/cgroup.net" [pid 6082] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6078] <... clone3 resumed> => {parent_tid=[125]}, 88) = 125 [pid 6063] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6062] close(3 [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./41/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... unlink resumed>) = 0 [pid 6082] <... rseq resumed>) = 0 [pid 6078] rt_sigprocmask(SIG_SETMASK, [], [pid 6062] <... close resumed>) = 0 [pid 6059] close(11 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] getdents64(3, [pid 6082] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6078] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6062] close(4 [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6082] <... set_robust_list resumed>) = 0 [pid 6078] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6059] close(12 [pid 5029] close(3 [pid 6082] rt_sigprocmask(SIG_SETMASK, [], [pid 6078] <... futex resumed>) = 0 [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... close resumed>) = 0 [pid 6082] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6078] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6059] close(13 [pid 5029] rmdir("./39" [pid 6082] memfd_create("syzkaller", 0 [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] openat(AT_FDCWD, "./41/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... rmdir resumed>) = 0 [pid 6082] <... memfd_create resumed>) = 3 [pid 6062] close(5 [pid 6059] close(14 [pid 5033] <... openat resumed>) = 4 [pid 5029] mkdir("./40", 0777 [pid 6082] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(4, "", [pid 5029] <... mkdir resumed>) = 0 [pid 6082] <... mmap resumed>) = 0x7f4f650a0000 [pid 6062] close(6 [pid 6059] close(15 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] getdents64(4, [pid 5029] <... openat resumed>) = 3 [pid 6062] close(7 [pid 6059] close(16 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] getdents64(4, [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6062] close(8 [pid 6059] close(17 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5029] close(3 [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] close(4 [pid 5029] <... close resumed>) = 0 [pid 6059] close(18 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6083 attached [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6083] set_robust_list(0x55555654e6a0, 24 [pid 6059] close(19 [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 125 [pid 6083] <... set_robust_list resumed>) = 0 [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6083] chdir("./40" [pid 6059] close(20 [pid 6083] <... chdir resumed>) = 0 [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6083] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6059] close(21 [pid 6083] <... prctl resumed>) = 0 [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6083] setpgid(0, 0 [pid 6059] close(22 [pid 6062] close(9 [pid 6083] <... setpgid resumed>) = 0 [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... close resumed>) = 0 [pid 6083] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6059] close(23 [pid 5033] rmdir("./41/file0" [pid 6083] <... symlink resumed>) = 0 [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6083] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu" [pid 6059] close(24 [pid 6083] <... symlink resumed>) = 0 [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6083] symlink("/syzcgroup/net/syz0", "./cgroup.net" [pid 6059] close(25 [pid 6083] <... symlink resumed>) = 0 [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6083] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6059] close(26 [pid 6083] <... openat resumed>) = 3 [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6083] write(3, "1000", 4 [pid 6059] close(27 [pid 6083] <... write resumed>) = 4 [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6083] close(3 [pid 6059] close(28 [pid 6083] <... close resumed>) = 0 [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6083] symlink("/dev/binderfs", "./binderfs" [pid 6059] close(29 [pid 6062] close(10 [pid 6083] <... symlink resumed>) = 0 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6059] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... rmdir resumed>) = 0 [pid 6083] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6062] close(11 [pid 6059] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5033] umount2("./41/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6083] <... futex resumed>) = 0 [pid 6059] <... write resumed>) = 156 [pid 6083] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6059] exit_group(0 [pid 6083] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6060] <... futex resumed>) = ? [pid 6059] <... exit_group resumed>) = ? [pid 6083] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6060] +++ exited with 0 +++ [pid 6083] <... mprotect resumed>) = 0 [pid 6083] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6083] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6084 attached [pid 6084] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6083] <... clone3 resumed> => {parent_tid=[126]}, 88) = 126 [pid 6084] <... rseq resumed>) = 0 [pid 6083] rt_sigprocmask(SIG_SETMASK, [], [pid 6084] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6083] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6084] <... set_robust_list resumed>) = 0 [pid 6083] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6084] rt_sigprocmask(SIG_SETMASK, [], [pid 6083] <... futex resumed>) = 0 [pid 6084] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6083] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6074] <... futex resumed>) = ? [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6084] memfd_create("syzkaller", 0) = 3 [pid 6084] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 6074] +++ exited with 0 +++ [pid 6062] close(12 [pid 6059] +++ exited with 0 +++ [pid 5033] newfstatat(AT_FDCWD, "./41/cgroup", [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6062] close(13 [pid 5033] unlink("./41/cgroup" [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=113, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=63 /* 0.63 s */} --- [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6062] close(14 [pid 5033] <... unlink resumed>) = 0 [pid 5030] umount2("./39", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./41/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6062] close(15 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./39", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(AT_FDCWD, "./41/cgroup.net", [pid 5030] <... openat resumed>) = 3 [pid 6062] close(16 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] newfstatat(3, "", [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] unlink("./41/cgroup.net" [pid 6062] close(17 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 5030] getdents64(3, [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] getdents64(3, [pid 6062] close(18 [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5033] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] umount2("./39/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] close(3 [pid 6062] close(19 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... close resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./39/cgroup.cpu", [pid 6062] close(20 [pid 5033] rmdir("./41" [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6062] close(21 [pid 5033] <... rmdir resumed>) = 0 [pid 5030] unlink("./39/cgroup.cpu" [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] mkdir("./42", 0777 [pid 6062] close(22 [pid 5030] <... unlink resumed>) = 0 [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... mkdir resumed>) = 0 [pid 5030] umount2("./39/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6062] close(23 [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6062] close(24 [pid 5033] <... openat resumed>) = 3 [pid 5030] newfstatat(AT_FDCWD, "./39/binderfs", [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6062] close(25 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] unlink("./39/binderfs" [pid 6062] close(26 [pid 5033] close(3 [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] <... unlink resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 6062] close(27 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6062] <... close resumed>) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory ./strace-static-x86_64: Process 6085 attached [pid 6062] close(28) = -1 EBADF (Bad file descriptor) [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 123 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6062] close(29) = -1 EBADF (Bad file descriptor) [pid 5030] newfstatat(AT_FDCWD, "./39/file0", [pid 6062] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6085] set_robust_list(0x55555654e6a0, 24 [pid 6062] <... write resumed>) = 156 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6062] exit_group(0 [pid 5030] umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6080] <... futex resumed>) = ? [pid 6077] <... futex resumed>) = ? [pid 6062] <... exit_group resumed>) = ? [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6077] +++ exited with 0 +++ [pid 6085] <... set_robust_list resumed>) = 0 [pid 6080] +++ exited with 0 +++ [pid 6063] <... futex resumed>) = ? [pid 5030] openat(AT_FDCWD, "./39/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6085] chdir("./42" [pid 6063] +++ exited with 0 +++ [pid 6062] +++ exited with 0 +++ [pid 5030] <... openat resumed>) = 4 [pid 6085] <... chdir resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=119, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=66 /* 0.66 s */} --- [pid 5030] newfstatat(4, "", [pid 6085] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6085] setpgid(0, 0) = 0 [pid 6085] symlink("/syzcgroup/unified/syz2", "./cgroup") = 0 [pid 6085] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu") = 0 [pid 6085] symlink("/syzcgroup/net/syz2", "./cgroup.net") = 0 [pid 6085] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6085] write(3, "1000", 4) = 4 [pid 6085] close(3 [pid 5032] umount2("./40", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(4, [pid 6085] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6085] symlink("/dev/binderfs", "./binderfs" [pid 5032] openat(AT_FDCWD, "./40", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6085] <... symlink resumed>) = 0 [pid 6085] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] <... openat resumed>) = 3 [pid 5030] getdents64(4, [pid 6085] <... futex resumed>) = 0 [pid 5032] newfstatat(3, "", [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6085] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] close(4 [pid 6085] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5032] getdents64(3, [pid 5030] <... close resumed>) = 0 [pid 6085] <... mprotect resumed>) = 0 [pid 6085] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5030] rmdir("./39/file0" [pid 6085] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5032] umount2("./40/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6085] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5030] <... rmdir resumed>) = 0 ./strace-static-x86_64: Process 6086 attached [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] umount2("./39/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6086] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6085] <... clone3 resumed> => {parent_tid=[124]}, 88) = 124 [pid 5032] newfstatat(AT_FDCWD, "./40/cgroup.cpu", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6086] <... rseq resumed>) = 0 [pid 6085] rt_sigprocmask(SIG_SETMASK, [], [pid 6086] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6085] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] newfstatat(AT_FDCWD, "./39/cgroup", [pid 6086] <... set_robust_list resumed>) = 0 [pid 6085] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] unlink("./40/cgroup.cpu" [pid 6086] rt_sigprocmask(SIG_SETMASK, [], [pid 6085] <... futex resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6086] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6085] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5032] <... unlink resumed>) = 0 [pid 5030] unlink("./39/cgroup" [pid 6086] memfd_create("syzkaller", 0 [pid 5032] umount2("./40/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6086] <... memfd_create resumed>) = 3 [pid 5030] <... unlink resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6086] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5030] umount2("./39/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6086] <... mmap resumed>) = 0x7f4f650a0000 [pid 5032] newfstatat(AT_FDCWD, "./40/binderfs", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] newfstatat(AT_FDCWD, "./39/cgroup.net", [pid 5032] unlink("./40/binderfs" [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5030] unlink("./39/cgroup.net" [pid 5032] umount2("./40/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... unlink resumed>) = 0 [pid 5030] getdents64(3, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./40/file0", [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] close(3 [pid 5032] umount2("./40/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] <... close resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./40/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] rmdir("./39" [pid 5032] <... openat resumed>) = 4 [pid 5032] newfstatat(4, "", [pid 5030] <... rmdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] mkdir("./40", 0777 [pid 5032] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] <... mkdir resumed>) = 0 [pid 5032] getdents64(4, [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5032] close(4 [pid 5030] <... openat resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5032] rmdir("./40/file0" [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... rmdir resumed>) = 0 [pid 5030] close(3 [pid 5032] umount2("./40/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./40/cgroup", [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 6087 attached [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 116 [pid 5032] unlink("./40/cgroup") = 0 [pid 6087] set_robust_list(0x55555654e6a0, 24 [pid 5032] umount2("./40/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6087] <... set_robust_list resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./40/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6087] chdir("./40" [pid 5032] unlink("./40/cgroup.net") = 0 [pid 5032] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 6087] <... chdir resumed>) = 0 [pid 5032] close(3 [pid 6087] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... close resumed>) = 0 [pid 6087] <... prctl resumed>) = 0 [pid 5032] rmdir("./40") = 0 [pid 6087] setpgid(0, 0 [pid 5032] mkdir("./41", 0777 [pid 6087] <... setpgid resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 6087] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 6087] <... symlink resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6087] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu") = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6087] symlink("/syzcgroup/net/syz3", "./cgroup.net" [pid 5032] close(3 [pid 6087] <... symlink resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 6087] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6088 attached , child_tidptr=0x55555654e690) = 123 [pid 6088] set_robust_list(0x55555654e6a0, 24 [pid 6087] <... openat resumed>) = 3 [pid 6088] <... set_robust_list resumed>) = 0 [pid 6087] write(3, "1000", 4 [pid 6088] chdir("./41" [pid 6087] <... write resumed>) = 4 [pid 6088] <... chdir resumed>) = 0 [pid 6087] close(3 [pid 6088] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6087] <... close resumed>) = 0 [pid 6088] <... prctl resumed>) = 0 [pid 6087] symlink("/dev/binderfs", "./binderfs" [pid 6088] setpgid(0, 0) = 0 [pid 6087] <... symlink resumed>) = 0 [pid 6088] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 6087] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6088] <... symlink resumed>) = 0 [pid 6087] <... futex resumed>) = 0 [pid 6088] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 6087] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6088] <... symlink resumed>) = 0 [pid 6088] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 6087] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6088] <... symlink resumed>) = 0 [pid 6087] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6088] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6087] <... mprotect resumed>) = 0 [pid 6088] <... openat resumed>) = 3 [pid 6087] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6088] write(3, "1000", 4 [pid 6087] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6088] <... write resumed>) = 4 [pid 6087] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 6088] close(3./strace-static-x86_64: Process 6089 attached ) = 0 [pid 6089] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6088] symlink("/dev/binderfs", "./binderfs" [pid 6087] <... clone3 resumed> => {parent_tid=[117]}, 88) = 117 [pid 6089] <... rseq resumed>) = 0 [pid 6088] <... symlink resumed>) = 0 [pid 6089] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6087] rt_sigprocmask(SIG_SETMASK, [], [pid 6089] <... set_robust_list resumed>) = 0 [pid 6088] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6087] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6089] rt_sigprocmask(SIG_SETMASK, [], [pid 6088] <... futex resumed>) = 0 [pid 6087] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6089] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6088] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6087] <... futex resumed>) = 0 [pid 6089] memfd_create("syzkaller", 0 [pid 6087] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6089] <... memfd_create resumed>) = 3 [pid 6088] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6089] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6088] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6089] <... mmap resumed>) = 0x7f4f650a0000 [pid 6088] <... mprotect resumed>) = 0 [pid 6088] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6088] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6090 attached [pid 6090] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6088] <... clone3 resumed> => {parent_tid=[124]}, 88) = 124 [pid 6090] <... rseq resumed>) = 0 [pid 6088] rt_sigprocmask(SIG_SETMASK, [], [pid 6090] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6088] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6090] <... set_robust_list resumed>) = 0 [pid 6088] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6090] rt_sigprocmask(SIG_SETMASK, [], [pid 6088] <... futex resumed>) = 0 [pid 6090] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6088] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6090] memfd_create("syzkaller", 0) = 3 [pid 6090] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 6081] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6082] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6084] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6086] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6089] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6090] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6081] <... write resumed>) = 16777216 [pid 6081] munmap(0x7f4f650a0000, 16777216) = 0 [pid 6081] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 6081] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6081] close(3) = 0 [pid 6081] mkdir("./file0", 0777) = 0 [ 304.491494][ T6081] loop4: detected capacity change from 0 to 32768 [pid 6081] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6082] <... write resumed>) = 16777216 [pid 6082] munmap(0x7f4f650a0000, 16777216 [pid 6084] <... write resumed>) = 16777216 [ 304.540714][ T6081] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 304.575984][ T6081] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 304.616433][ T6081] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 304.649954][ T5083] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 304.658673][ T5083] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [pid 6084] munmap(0x7f4f650a0000, 16777216 [pid 6086] <... write resumed>) = 16777216 [pid 6086] munmap(0x7f4f650a0000, 16777216 [pid 6084] <... munmap resumed>) = 0 [pid 6082] <... munmap resumed>) = 0 [pid 6084] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6084] ioctl(4, LOOP_SET_FD, 3 [pid 6082] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6082] ioctl(4, LOOP_SET_FD, 3 [pid 6084] <... ioctl resumed>) = 0 [pid 6084] close(3) = 0 [pid 6084] mkdir("./file0", 0777) = 0 [pid 6084] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6082] <... ioctl resumed>) = 0 [pid 6082] close(3) = 0 [pid 6082] mkdir("./file0", 0777) = 0 [ 304.799662][ T6084] loop0: detected capacity change from 0 to 32768 [ 304.808128][ T6082] loop5: detected capacity change from 0 to 32768 [ 304.839391][ T6084] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [pid 6082] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6089] <... write resumed>) = 16777216 [ 304.852398][ T6082] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 304.878740][ T6084] CPU: 0 PID: 6084 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 304.889254][ T6084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 304.899348][ T6084] Call Trace: [pid 6089] munmap(0x7f4f650a0000, 16777216 [pid 6090] <... write resumed>) = 16777216 [ 304.902655][ T6084] [ 304.905608][ T6084] dump_stack_lvl+0x136/0x150 [ 304.910351][ T6084] sysfs_warn_dup+0x80/0xa0 [ 304.914927][ T6084] sysfs_create_dir_ns+0x237/0x290 [ 304.920091][ T6084] ? sysfs_create_mount_point+0xb0/0xb0 [ 304.925681][ T6084] ? spin_bug+0x1c0/0x1c0 [ 304.930059][ T6084] ? do_raw_spin_unlock+0x175/0x230 [ 304.935316][ T6084] kobject_add_internal+0x2c9/0x9c0 [ 304.940561][ T6084] ? kfree+0x11/0x150 [ 304.944574][ T6084] kobject_init_and_add+0x101/0x170 [pid 6090] munmap(0x7f4f650a0000, 16777216) = 0 [ 304.949808][ T6084] ? kobject_create_and_add+0xf0/0xf0 [ 304.955224][ T6084] ? lockdep_init_map_type+0x21e/0x810 [ 304.960726][ T6084] ? lockdep_hardirqs_on+0x7d/0x100 [ 304.965961][ T6084] ? lockdep_init_map_type+0x21e/0x810 [ 304.971475][ T6084] gfs2_sys_fs_add+0x1d5/0x450 [ 304.976279][ T6084] ? recover_store+0x170/0x170 [ 304.981075][ T6084] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 304.986844][ T6084] gfs2_fill_super+0x1312/0x2aa0 [ 304.991836][ T6084] ? gfs2_reconfigure+0xf90/0xf90 [ 304.996926][ T6084] ? snprintf+0xbf/0x100 [pid 6090] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 6090] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6090] close(3) = 0 [pid 6090] mkdir("./file0", 0777) = 0 [ 305.001221][ T6084] ? vsprintf+0x30/0x30 [ 305.005411][ T6084] ? wait_for_completion_io_timeout+0x20/0x20 [ 305.007516][ T6090] loop1: detected capacity change from 0 to 32768 [ 305.011496][ T6084] ? set_blocksize+0x2d8/0x370 [ 305.022699][ T6084] get_tree_bdev+0x43e/0x7d0 [ 305.027336][ T6084] ? gfs2_reconfigure+0xf90/0xf90 [ 305.032423][ T6084] gfs2_get_tree+0x4e/0x270 [ 305.036973][ T6084] vfs_get_tree+0x8d/0x350 [ 305.041463][ T6084] path_mount+0x136e/0x1e70 [ 305.046023][ T6084] ? putname+0x102/0x140 [ 305.050300][ T6084] ? lockdep_hardirqs_on+0x7d/0x100 [ 305.055549][ T6084] ? finish_automount+0xa30/0xa30 [ 305.060623][ T6084] ? putname+0x102/0x140 [ 305.065766][ T6084] __x64_sys_mount+0x283/0x300 [ 305.070578][ T6084] ? copy_mnt_ns+0xb30/0xb30 [ 305.075214][ T6084] ? lockdep_hardirqs_on+0x7d/0x100 [ 305.080460][ T6084] ? _raw_spin_unlock_irq+0x2e/0x50 [ 305.085708][ T6084] ? ptrace_notify+0xfe/0x140 [ 305.090451][ T6084] do_syscall_64+0x39/0xb0 [ 305.094601][ T6090] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 305.094891][ T6084] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 305.108283][ T6084] RIP: 0033:0x7f4f6dd11c5a [ 305.112739][ T6084] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 305.132396][ T6084] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 305.140902][ T6084] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 305.148900][ T6084] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 305.156902][ T6084] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 305.164916][ T6084] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 305.172920][ T6084] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 305.180931][ T6084] [ 305.195891][ T6082] CPU: 0 PID: 6082 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 305.206391][ T6082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 305.216619][ T6082] Call Trace: [ 305.219930][ T6082] [ 305.222896][ T6082] dump_stack_lvl+0x136/0x150 [ 305.227642][ T6082] sysfs_warn_dup+0x80/0xa0 [ 305.232193][ T6082] sysfs_create_dir_ns+0x237/0x290 [ 305.237362][ T6082] ? sysfs_create_mount_point+0xb0/0xb0 [pid 6090] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6089] <... munmap resumed>) = 0 [pid 6086] <... munmap resumed>) = 0 [pid 6089] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6086] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6089] <... openat resumed>) = 4 [pid 6086] <... openat resumed>) = 4 [ 305.238802][ T6084] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 305.242937][ T6082] ? spin_bug+0x1c0/0x1c0 [ 305.256882][ T6084] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 305.261138][ T6082] ? do_raw_spin_unlock+0x175/0x230 [ 305.272906][ T6082] kobject_add_internal+0x2c9/0x9c0 [ 305.278167][ T6082] ? kfree+0x11/0x150 [ 305.282204][ T6082] kobject_init_and_add+0x101/0x170 [ 305.287457][ T6082] ? kobject_create_and_add+0xf0/0xf0 [ 305.292884][ T6082] ? lockdep_init_map_type+0x21e/0x810 [ 305.298413][ T6082] ? lockdep_hardirqs_on+0x7d/0x100 [pid 6089] ioctl(4, LOOP_SET_FD, 3 [ 305.298946][ T6089] loop3: detected capacity change from 0 to 32768 [ 305.303824][ T6082] ? lockdep_init_map_type+0x21e/0x810 [ 305.311625][ T6086] loop2: detected capacity change from 0 to 32768 [ 305.315696][ T6082] gfs2_sys_fs_add+0x1d5/0x450 [ 305.326954][ T6082] ? recover_store+0x170/0x170 [ 305.331766][ T6082] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 305.337537][ T6082] gfs2_fill_super+0x1312/0x2aa0 [ 305.342512][ T6082] ? gfs2_reconfigure+0xf90/0xf90 [ 305.347570][ T6082] ? snprintf+0xbf/0x100 [ 305.351848][ T6082] ? vsprintf+0x30/0x30 [ 305.356034][ T6082] ? wait_for_completion_io_timeout+0x20/0x20 [ 305.362139][ T6082] ? set_blocksize+0x2d8/0x370 [ 305.366938][ T6082] get_tree_bdev+0x43e/0x7d0 [ 305.371562][ T6082] ? gfs2_reconfigure+0xf90/0xf90 [ 305.376618][ T6082] gfs2_get_tree+0x4e/0x270 [ 305.381149][ T6082] vfs_get_tree+0x8d/0x350 [ 305.385595][ T6082] path_mount+0x136e/0x1e70 [ 305.390129][ T6082] ? putname+0x102/0x140 [ 305.394396][ T6082] ? lockdep_hardirqs_on+0x7d/0x100 [ 305.399626][ T6082] ? finish_automount+0xa30/0xa30 [ 305.404685][ T6082] ? putname+0x102/0x140 [ 305.408959][ T6082] __x64_sys_mount+0x283/0x300 [ 305.413753][ T6082] ? copy_mnt_ns+0xb30/0xb30 [ 305.418375][ T6082] ? lockdep_hardirqs_on+0x7d/0x100 [ 305.423603][ T6082] ? _raw_spin_unlock_irq+0x2e/0x50 [ 305.428864][ T6082] ? ptrace_notify+0xfe/0x140 [ 305.433584][ T6082] do_syscall_64+0x39/0xb0 [ 305.438108][ T6082] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 305.444043][ T6082] RIP: 0033:0x7f4f6dd11c5a [ 305.448482][ T6082] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 305.468130][ T6082] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 305.476574][ T6082] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 305.484565][ T6082] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 305.492560][ T6082] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 305.500555][ T6082] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 305.508550][ T6082] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 305.516574][ T6082] [ 305.521193][ T6090] CPU: 0 PID: 6090 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 305.531674][ T6090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 305.541768][ T6090] Call Trace: [ 305.545068][ T6090] [ 305.548014][ T6090] dump_stack_lvl+0x136/0x150 [ 305.552753][ T6090] sysfs_warn_dup+0x80/0xa0 [ 305.557300][ T6090] sysfs_create_dir_ns+0x237/0x290 [ 305.562439][ T6090] ? sysfs_create_mount_point+0xb0/0xb0 [ 305.568013][ T6090] ? spin_bug+0x1c0/0x1c0 [ 305.572373][ T6090] ? do_raw_spin_unlock+0x175/0x230 [ 305.577605][ T6090] kobject_add_internal+0x2c9/0x9c0 [ 305.582829][ T6090] ? kfree+0x11/0x150 [ 305.586850][ T6090] kobject_init_and_add+0x101/0x170 [ 305.592093][ T6090] ? kobject_create_and_add+0xf0/0xf0 [ 305.597499][ T6090] ? lockdep_init_map_type+0x21e/0x810 [ 305.603006][ T6090] ? lockdep_hardirqs_on+0x7d/0x100 [ 305.608241][ T6090] ? lockdep_init_map_type+0x21e/0x810 [ 305.613826][ T6090] gfs2_sys_fs_add+0x1d5/0x450 [ 305.618635][ T6090] ? recover_store+0x170/0x170 [ 305.623444][ T6090] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 305.629220][ T6090] gfs2_fill_super+0x1312/0x2aa0 [ 305.634216][ T6090] ? gfs2_reconfigure+0xf90/0xf90 [ 305.639290][ T6090] ? snprintf+0xbf/0x100 [ 305.643571][ T6090] ? vsprintf+0x30/0x30 [ 305.647765][ T6090] ? wait_for_completion_io_timeout+0x20/0x20 [ 305.653876][ T6090] ? set_blocksize+0x2d8/0x370 [ 305.658676][ T6090] get_tree_bdev+0x43e/0x7d0 [ 305.663303][ T6090] ? gfs2_reconfigure+0xf90/0xf90 [ 305.668368][ T6090] gfs2_get_tree+0x4e/0x270 [ 305.672900][ T6090] vfs_get_tree+0x8d/0x350 [ 305.677369][ T6090] path_mount+0x136e/0x1e70 [ 305.681920][ T6090] ? putname+0x102/0x140 [ 305.686199][ T6090] ? lockdep_hardirqs_on+0x7d/0x100 [ 305.691435][ T6090] ? finish_automount+0xa30/0xa30 [ 305.696506][ T6090] ? putname+0x102/0x140 [ 305.700788][ T6090] __x64_sys_mount+0x283/0x300 [ 305.705591][ T6090] ? copy_mnt_ns+0xb30/0xb30 [ 305.710212][ T6090] ? lockdep_hardirqs_on+0x7d/0x100 [ 305.715453][ T6090] ? _raw_spin_unlock_irq+0x2e/0x50 [ 305.720707][ T6090] ? ptrace_notify+0xfe/0x140 [ 305.725434][ T6090] do_syscall_64+0x39/0xb0 [ 305.729883][ T6090] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 305.735829][ T6090] RIP: 0033:0x7f4f6dd11c5a [ 305.740286][ T6090] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 305.760034][ T6090] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 305.768557][ T6090] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 305.776552][ T6090] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 305.784565][ T6090] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 305.792554][ T6090] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [pid 6086] ioctl(4, LOOP_SET_FD, 3 [pid 6089] <... ioctl resumed>) = 0 [pid 6084] <... mount resumed>) = -1 EEXIST (File exists) [pid 6089] close(3) = 0 [pid 6089] mkdir("./file0", 0777) = 0 [pid 6086] <... ioctl resumed>) = 0 [pid 6089] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6086] close(3) = 0 [pid 6086] mkdir("./file0", 0777) = 0 [pid 6086] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [ 305.800572][ T6090] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 305.808572][ T6090] [ 305.814452][ T5083] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 1155ms [ 305.816171][ T6082] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 305.831787][ T5083] gfs2: fsid=syz:syz.0: jid=0: Done [ 305.842193][ T6081] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 305.851204][ T6089] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 305.864106][ T6086] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 305.872931][ T6089] CPU: 0 PID: 6089 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 305.873620][ T6082] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 305.883383][ T6089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 305.883405][ T6089] Call Trace: [ 305.883414][ T6089] [pid 6084] ioctl(4, LOOP_CLR_FD [pid 6081] <... mount resumed>) = 0 [pid 6081] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6081] chdir("./file0") = 0 [pid 6081] ioctl(4, LOOP_CLR_FD) = 0 [ 305.883425][ T6089] dump_stack_lvl+0x136/0x150 [ 305.883482][ T6089] sysfs_warn_dup+0x80/0xa0 [ 305.883519][ T6089] sysfs_create_dir_ns+0x237/0x290 [ 305.883556][ T6089] ? sysfs_create_mount_point+0xb0/0xb0 [ 305.883592][ T6089] ? spin_bug+0x1c0/0x1c0 [ 305.883636][ T6089] ? do_raw_spin_unlock+0x175/0x230 [ 305.883681][ T6089] kobject_add_internal+0x2c9/0x9c0 [ 305.883715][ T6089] ? kfree+0x11/0x150 [ 305.883747][ T6089] kobject_init_and_add+0x101/0x170 [ 305.883784][ T6089] ? kobject_create_and_add+0xf0/0xf0 [pid 6081] close(4) = 0 [pid 6081] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6081] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6079] <... futex resumed>) = 0 [pid 6079] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6081] <... futex resumed>) = 0 [pid 6079] <... futex resumed>) = 1 [pid 6081] openat(AT_FDCWD, "./file0", O_RDONLY [ 305.905852][ T6090] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 305.906571][ T6089] ? lockdep_init_map_type+0x21e/0x810 [ 305.911273][ T6090] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 305.915791][ T6089] ? lockdep_hardirqs_on+0x7d/0x100 [ 305.915835][ T6089] ? lockdep_init_map_type+0x21e/0x810 [ 305.989963][ T6081] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 305.993003][ T6089] gfs2_sys_fs_add+0x1d5/0x450 [ 306.006241][ T6089] ? recover_store+0x170/0x170 [ 306.011054][ T6089] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 306.016844][ T6089] gfs2_fill_super+0x1312/0x2aa0 [ 306.021847][ T6089] ? gfs2_reconfigure+0xf90/0xf90 [ 306.026936][ T6089] ? snprintf+0xbf/0x100 [ 306.031231][ T6089] ? vsprintf+0x30/0x30 [ 306.035428][ T6089] ? wait_for_completion_io_timeout+0x20/0x20 [ 306.041545][ T6089] ? set_blocksize+0x2d8/0x370 [ 306.046356][ T6089] get_tree_bdev+0x43e/0x7d0 [ 306.051004][ T6089] ? gfs2_reconfigure+0xf90/0xf90 [ 306.056076][ T6089] gfs2_get_tree+0x4e/0x270 [ 306.060619][ T6089] vfs_get_tree+0x8d/0x350 [ 306.064942][ T6081] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 306.064942][ T6081] inode = 12 2341 [ 306.064942][ T6081] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 306.065068][ T6089] path_mount+0x136e/0x1e70 [ 306.088190][ T6089] ? putname+0x102/0x140 [ 306.092496][ T6089] ? lockdep_hardirqs_on+0x7d/0x100 [ 306.097787][ T6089] ? finish_automount+0xa30/0xa30 [ 306.102881][ T6089] ? putname+0x102/0x140 [ 306.107180][ T6089] __x64_sys_mount+0x283/0x300 [ 306.112003][ T6089] ? copy_mnt_ns+0xb30/0xb30 [ 306.116650][ T6089] ? lockdep_hardirqs_on+0x7d/0x100 [ 306.121915][ T6089] ? _raw_spin_unlock_irq+0x2e/0x50 [ 306.127172][ T6089] ? ptrace_notify+0xfe/0x140 [ 306.131904][ T6089] do_syscall_64+0x39/0xb0 [ 306.136377][ T6089] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 306.142334][ T6089] RIP: 0033:0x7f4f6dd11c5a [pid 6079] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [ 306.146773][ T6089] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 306.166436][ T6089] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 306.170678][ T6081] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 306.174871][ T6089] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 306.174896][ T6089] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 306.200371][ T6089] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [pid 6090] <... mount resumed>) = -1 EEXIST (File exists) [pid 6082] <... mount resumed>) = -1 EEXIST (File exists) [pid 6079] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [ 306.208399][ T6089] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 306.216428][ T6089] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 306.226450][ T6089] [ 306.239681][ T6089] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 306.255964][ T6081] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6081 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 306.256691][ T6086] CPU: 1 PID: 6086 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 306.273494][ T6081] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 306.276429][ T6086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 306.276449][ T6086] Call Trace: [ 306.276460][ T6086] [ 306.276471][ T6086] dump_stack_lvl+0x136/0x150 [ 306.276526][ T6086] sysfs_warn_dup+0x80/0xa0 [ 306.276563][ T6086] sysfs_create_dir_ns+0x237/0x290 [ 306.276599][ T6086] ? sysfs_create_mount_point+0xb0/0xb0 [ 306.287388][ T6089] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 306.295279][ T6086] ? spin_bug+0x1c0/0x1c0 [ 306.299118][ T6081] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 306.301492][ T6086] ? do_raw_spin_unlock+0x175/0x230 [ 306.315955][ T6081] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 306.321315][ T6086] kobject_add_internal+0x2c9/0x9c0 [ 306.341888][ T6081] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 306.344630][ T6086] ? kfree+0x11/0x150 [ 306.369109][ T6086] kobject_init_and_add+0x101/0x170 [ 306.374512][ T6086] ? kobject_create_and_add+0xf0/0xf0 [ 306.379909][ T6086] ? lockdep_init_map_type+0x21e/0x810 [ 306.385395][ T6086] ? lockdep_hardirqs_on+0x7d/0x100 [ 306.390625][ T6086] ? lockdep_init_map_type+0x21e/0x810 [ 306.396117][ T6086] gfs2_sys_fs_add+0x1d5/0x450 [ 306.400908][ T6086] ? recover_store+0x170/0x170 [ 306.405693][ T6086] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 306.411449][ T6086] gfs2_fill_super+0x1312/0x2aa0 [ 306.416422][ T6086] ? gfs2_reconfigure+0xf90/0xf90 [ 306.421489][ T6086] ? snprintf+0xbf/0x100 [ 306.425761][ T6086] ? vsprintf+0x30/0x30 [ 306.429948][ T6086] ? wait_for_completion_io_timeout+0x20/0x20 [ 306.436043][ T6086] ? set_blocksize+0x2d8/0x370 [ 306.440838][ T6086] get_tree_bdev+0x43e/0x7d0 [ 306.445457][ T6086] ? gfs2_reconfigure+0xf90/0xf90 [ 306.450510][ T6086] gfs2_get_tree+0x4e/0x270 [ 306.455060][ T6086] vfs_get_tree+0x8d/0x350 [ 306.459512][ T6086] path_mount+0x136e/0x1e70 [ 306.464083][ T6086] ? putname+0x102/0x140 [ 306.468352][ T6086] ? lockdep_hardirqs_on+0x7d/0x100 [ 306.473584][ T6086] ? finish_automount+0xa30/0xa30 [ 306.478646][ T6086] ? putname+0x102/0x140 [ 306.482916][ T6086] __x64_sys_mount+0x283/0x300 [ 306.487713][ T6086] ? copy_mnt_ns+0xb30/0xb30 [ 306.492331][ T6086] ? lockdep_hardirqs_on+0x7d/0x100 [ 306.497559][ T6086] ? _raw_spin_unlock_irq+0x2e/0x50 [ 306.502794][ T6086] ? ptrace_notify+0xfe/0x140 [ 306.507529][ T6086] do_syscall_64+0x39/0xb0 [ 306.511966][ T6086] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 306.517906][ T6086] RIP: 0033:0x7f4f6dd11c5a [ 306.522354][ T6086] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 306.541984][ T6086] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 306.550424][ T6086] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [pid 6090] ioctl(4, LOOP_CLR_FD [ 306.558412][ T6086] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 306.566404][ T6086] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 306.574398][ T6086] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 306.582404][ T6086] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 306.590421][ T6086] [pid 6082] ioctl(4, LOOP_CLR_FD [pid 6079] <... futex resumed>) = 0 [pid 6089] <... mount resumed>) = -1 EEXIST (File exists) [ 306.607136][ T6081] gfs2: fsid=syz:syz.0: File system withdrawn [ 306.613273][ T6081] CPU: 0 PID: 6081 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 306.623745][ T6081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 306.633838][ T6081] Call Trace: [ 306.637151][ T6081] [ 306.640112][ T6081] dump_stack_lvl+0x136/0x150 [ 306.644868][ T6081] gfs2_withdraw+0xb33/0x1060 [ 306.649610][ T6081] ? gfs2_consist_inode_i+0x104/0x150 [ 306.655036][ T6081] gfs2_dirent_scan+0x32a/0x3d0 [ 306.659956][ T6081] ? gfs2_dirent_prev+0x210/0x210 [ 306.665058][ T6081] ? gfs2_dirent_prev+0x210/0x210 [ 306.670149][ T6081] gfs2_dirent_search+0x47d/0x580 [ 306.675252][ T6081] ? get_first_leaf+0x190/0x190 [ 306.680165][ T6081] ? gfs2_permission+0x256/0x3e0 [ 306.685160][ T6081] gfs2_dir_search+0x8d/0x2d0 [ 306.689901][ T6081] ? gfs2_dir_read+0x14e0/0x14e0 [ 306.694932][ T6081] gfs2_lookupi+0x481/0x640 [ 306.699492][ T6081] ? gfs2_lookup_by_inum+0x100/0x100 [ 306.704828][ T6081] ? __gfs2_lookup+0x83/0x280 [pid 6079] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6078] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6078] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6078] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [ 306.709561][ T6081] ? d_alloc_parallel+0x693/0x1530 [ 306.714743][ T6081] __gfs2_lookup+0x83/0x280 [ 306.719300][ T6081] ? gfs2_lookupi+0x640/0x640 [ 306.724032][ T6081] ? __d_lookup_rcu+0x4e0/0x4e0 [ 306.728945][ T6081] ? __d_lookup+0x289/0x4c0 [ 306.733502][ T6081] gfs2_atomic_open+0xde/0x250 [ 306.738318][ T6081] ? __gfs2_lookup+0x280/0x280 [ 306.743141][ T6081] lookup_open.isra.0+0xce2/0x1400 [ 306.748318][ T6081] ? link_path_walk.part.0+0xd60/0xd60 [ 306.753838][ T6081] ? lookup_fast+0x14e/0x520 [pid 6078] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6078] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6084] <... ioctl resumed>) = 0 [pid 6078] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 6097 attached [pid 6097] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6078] <... clone3 resumed> => {parent_tid=[126]}, 88) = 126 [pid 6097] <... rseq resumed>) = 0 [pid 6078] rt_sigprocmask(SIG_SETMASK, [], [pid 6097] set_robust_list(0x7f4f6609f9a0, 24 [pid 6078] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6097] <... set_robust_list resumed>) = 0 [pid 6078] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6097] rt_sigprocmask(SIG_SETMASK, [], [pid 6078] <... futex resumed>) = 0 [pid 6097] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6078] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6097] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 6097] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6078] <... futex resumed>) = 0 [pid 6097] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6078] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6097] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6078] <... futex resumed>) = 0 [pid 6097] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6078] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6097] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6097] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6078] <... futex resumed>) = 0 [pid 6097] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6078] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6097] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6078] <... futex resumed>) = 0 [pid 6097] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6078] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6097] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6097] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [ 306.758492][ T6081] path_openat+0x969/0x2710 [ 306.763054][ T6081] ? path_lookupat+0x840/0x840 [ 306.767893][ T6081] ? find_held_lock+0x2d/0x110 [ 306.772712][ T6081] do_filp_open+0x1ba/0x410 [ 306.777286][ T6081] ? may_open_dev+0xf0/0xf0 [ 306.781858][ T6081] ? find_held_lock+0x2d/0x110 [ 306.786695][ T6081] ? do_raw_spin_lock+0x124/0x2b0 [ 306.791794][ T6081] ? spin_bug+0x1c0/0x1c0 [ 306.796189][ T6081] ? _raw_spin_unlock+0x28/0x40 [ 306.801130][ T6081] ? alloc_fd+0x2e4/0x750 [ 306.805536][ T6081] do_sys_openat2+0x160/0x1c0 [pid 6084] close(4 [pid 6078] <... futex resumed>) = 0 [pid 6097] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6084] <... close resumed>) = 0 [pid 6084] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6083] <... futex resumed>) = 0 [pid 6084] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 6083] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6084] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6083] <... futex resumed>) = 0 [pid 6084] <... openat resumed>) = 3 [pid 6083] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6084] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6083] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6084] <... futex resumed>) = 0 [pid 6083] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6084] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6083] <... futex resumed>) = 0 [pid 6084] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6083] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6084] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6083] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6084] <... futex resumed>) = 0 [pid 6083] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6084] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6083] <... futex resumed>) = 0 [pid 6084] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6083] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6084] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6083] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6084] <... futex resumed>) = 0 [pid 6083] close(3 [pid 6084] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6083] <... close resumed>) = 0 [pid 6083] close(4) = -1 EBADF (Bad file descriptor) [pid 6083] close(5) = -1 EBADF (Bad file descriptor) [pid 6083] close(6) = -1 EBADF (Bad file descriptor) [ 306.810293][ T6081] ? build_open_flags+0x720/0x720 [ 306.815386][ T6081] ? ptrace_notify+0xfe/0x140 [ 306.820236][ T6081] ? lock_downgrade+0x690/0x690 [ 306.825147][ T6081] __x64_sys_openat+0x143/0x1f0 [ 306.830057][ T6081] ? __ia32_sys_open+0x1c0/0x1c0 [ 306.835082][ T6081] ? _raw_spin_unlock_irq+0x23/0x50 [ 306.840347][ T6081] ? lockdep_hardirqs_on+0x7d/0x100 [ 306.845600][ T6081] ? _raw_spin_unlock_irq+0x2e/0x50 [ 306.850861][ T6081] ? ptrace_notify+0xfe/0x140 [ 306.855613][ T6081] do_syscall_64+0x39/0xb0 [pid 6083] close(7) = -1 EBADF (Bad file descriptor) [pid 6083] close(8) = -1 EBADF (Bad file descriptor) [pid 6083] close(9) = -1 EBADF (Bad file descriptor) [pid 6083] close(10) = -1 EBADF (Bad file descriptor) [pid 6083] close(11) = -1 EBADF (Bad file descriptor) [pid 6083] close(12) = -1 EBADF (Bad file descriptor) [pid 6083] close(13) = -1 EBADF (Bad file descriptor) [pid 6083] close(14) = -1 EBADF (Bad file descriptor) [pid 6083] close(15) = -1 EBADF (Bad file descriptor) [pid 6083] close(16) = -1 EBADF (Bad file descriptor) [pid 6083] close(17) = -1 EBADF (Bad file descriptor) [pid 6083] close(18) = -1 EBADF (Bad file descriptor) [pid 6083] close(19) = -1 EBADF (Bad file descriptor) [pid 6083] close(20) = -1 EBADF (Bad file descriptor) [pid 6083] close(21) = -1 EBADF (Bad file descriptor) [pid 6083] close(22) = -1 EBADF (Bad file descriptor) [pid 6083] close(23) = -1 EBADF (Bad file descriptor) [pid 6083] close(24) = -1 EBADF (Bad file descriptor) [pid 6083] close(25) = -1 EBADF (Bad file descriptor) [pid 6083] close(26) = -1 EBADF (Bad file descriptor) [pid 6083] close(27) = -1 EBADF (Bad file descriptor) [ 306.860107][ T6081] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 306.866097][ T6081] RIP: 0033:0x7f4f6dd107f9 [ 306.870577][ T6081] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 306.890257][ T6081] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 306.898844][ T6081] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6083] close(28) = -1 EBADF (Bad file descriptor) [pid 6083] close(29) = -1 EBADF (Bad file descriptor) [pid 6083] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 6083] exit_group(0 [pid 6084] <... futex resumed>) = ? [pid 6083] <... exit_group resumed>) = ? [pid 6084] +++ exited with 0 +++ [pid 6083] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=125, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=74 /* 0.74 s */} --- [pid 5029] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5029] umount2("./40", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./40", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5029] umount2("./40/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./40/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./40/cgroup.cpu" [pid 6089] ioctl(4, LOOP_CLR_FD [pid 5029] <... unlink resumed>) = 0 [pid 5029] umount2("./40/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6079] <... mmap resumed>) = 0x7f4f6607f000 [pid 5029] newfstatat(AT_FDCWD, "./40/binderfs", [pid 6079] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6079] <... mprotect resumed>) = 0 [pid 5029] unlink("./40/binderfs" [pid 6079] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5029] <... unlink resumed>) = 0 [pid 6079] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5029] umount2("./40/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6079] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./40/file0", [pid 6079] <... clone3 resumed> => {parent_tid=[123]}, 88) = 123 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6079] rt_sigprocmask(SIG_SETMASK, [], [pid 5029] umount2("./40/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6079] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6079] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] openat(AT_FDCWD, "./40/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6079] <... futex resumed>) = 0 [pid 5029] <... openat resumed>) = 4 [pid 6079] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [ 306.906906][ T6081] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [ 306.914931][ T6081] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 306.922957][ T6081] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 306.930988][ T6081] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 306.939020][ T6081] [pid 5029] close(4) = 0 [pid 5029] rmdir("./40/file0") = 0 [pid 5029] umount2("./40/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./40/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./40/cgroup") = 0 [pid 5029] umount2("./40/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./40/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./40/cgroup.net") = 0 [pid 6079] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5029] getdents64(3, [pid 6079] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6079] <... futex resumed>) = 0 [pid 5029] close(3 [pid 6079] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5029] <... close resumed>) = 0 [pid 6079] <... mmap resumed>) = 0x7f4f6605e000 [pid 5029] rmdir("./40" [pid 6079] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE [pid 5029] <... rmdir resumed>) = 0 [pid 6079] <... mprotect resumed>) = 0 [pid 5029] mkdir("./41", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6079] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6081] <... openat resumed>) = -1 EIO (Input/output error) [pid 6079] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6081] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6079] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} [pid 5029] close(3./strace-static-x86_64: Process 6099 attached [pid 6081] <... futex resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 6099] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 6081] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6079] <... clone3 resumed> => {parent_tid=[124]}, 88) = 124 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6100 attached [pid 6099] <... rseq resumed>) = 0 [pid 6079] rt_sigprocmask(SIG_SETMASK, [], [pid 6100] set_robust_list(0x55555654e6a0, 24 [pid 6099] set_robust_list(0x7f4f6607e9a0, 24 [pid 6079] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 127 [pid 6100] <... set_robust_list resumed>) = 0 [pid 6099] <... set_robust_list resumed>) = 0 [pid 6079] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 6100] chdir("./41" [pid 6099] rt_sigprocmask(SIG_SETMASK, [], [pid 6079] <... futex resumed>) = 0 [pid 6100] <... chdir resumed>) = 0 [pid 6099] <... rt_sigprocmask resumed>NULL, 8) = 0 [ 307.005934][ T6086] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 6079] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6100] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6099] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6100] <... prctl resumed>) = 0 [pid 6099] <... openat resumed>) = -1 EIO (Input/output error) [pid 6100] setpgid(0, 0 [pid 6099] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 6100] <... setpgid resumed>) = 0 [pid 6099] <... futex resumed>) = 1 [pid 6079] <... futex resumed>) = 0 [pid 6100] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 6099] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6100] <... symlink resumed>) = 0 [pid 6100] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0 [pid 6100] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0 [pid 6100] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6100] write(3, "1000", 4) = 4 [pid 6100] close(3) = 0 [pid 6100] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6100] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6100] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 6100] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6100] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 307.079645][ T6086] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 6100] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6101 attached [pid 6085] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6101] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6100] <... clone3 resumed> => {parent_tid=[128]}, 88) = 128 [pid 6085] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6101] <... rseq resumed>) = 0 [pid 6100] rt_sigprocmask(SIG_SETMASK, [], [pid 6085] <... futex resumed>) = 0 [pid 6101] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6100] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6085] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6101] <... set_robust_list resumed>) = 0 [pid 6100] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6085] <... mmap resumed>) = 0x7f4f6607f000 [pid 6101] rt_sigprocmask(SIG_SETMASK, [], [pid 6100] <... futex resumed>) = 0 [pid 6085] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6101] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6100] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6085] <... mprotect resumed>) = 0 [pid 6101] memfd_create("syzkaller", 0 [pid 6087] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6085] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6101] <... memfd_create resumed>) = 3 [pid 6087] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6101] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6086] <... mount resumed>) = -1 EEXIST (File exists) [pid 6085] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6101] <... mmap resumed>) = 0x7f4f650a0000 [pid 6086] ioctl(4, LOOP_CLR_FD [pid 6085] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 6102 attached [pid 6102] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6085] <... clone3 resumed> => {parent_tid=[125]}, 88) = 125 [pid 6102] <... rseq resumed>) = 0 [pid 6087] <... futex resumed>) = 0 [pid 6085] rt_sigprocmask(SIG_SETMASK, [], [pid 6102] set_robust_list(0x7f4f6609f9a0, 24 [pid 6085] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6102] <... set_robust_list resumed>) = 0 [pid 6085] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6102] rt_sigprocmask(SIG_SETMASK, [], [pid 6085] <... futex resumed>) = 0 [pid 6102] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6085] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6102] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 6102] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6085] <... futex resumed>) = 0 [pid 6102] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6087] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6085] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6102] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6087] <... mmap resumed>) = 0x7f4f6607f000 [pid 6085] <... futex resumed>) = 0 [pid 6102] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6085] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6102] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6102] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6085] <... futex resumed>) = 0 [pid 6102] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6085] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6102] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6085] <... futex resumed>) = 0 [pid 6085] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6102] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH) = -1 ENOENT (No such file or directory) [pid 6102] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6088] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6085] <... futex resumed>) = 0 ./strace-static-x86_64: Process 6098 attached [pid 6102] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6088] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6098] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6088] <... futex resumed>) = 0 [pid 6098] <... rseq resumed>) = 0 [pid 6098] set_robust_list(0x7f4f6609f9a0, 24) = 0 [pid 6087] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6098] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6098] ioctl(0, VFAT_IOCTL_READDIR_SHORT, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 6098] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6098] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6079] close(3) = 0 [pid 6079] close(4) = -1 EBADF (Bad file descriptor) [pid 6087] <... mprotect resumed>) = 0 [pid 6079] close(5 [pid 6087] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6079] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6079] close(6) = -1 EBADF (Bad file descriptor) [pid 6079] close(7) = -1 EBADF (Bad file descriptor) [pid 6088] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6079] close(8 [pid 6087] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6079] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6088] <... mmap resumed>) = 0x7f4f6607f000 [pid 6079] close(9) = -1 EBADF (Bad file descriptor) [pid 6079] close(10 [pid 6088] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6079] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6088] <... mprotect resumed>) = 0 [pid 6079] close(11) = -1 EBADF (Bad file descriptor) [pid 6087] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6079] close(12) = -1 EBADF (Bad file descriptor) [pid 6079] close(13) = -1 EBADF (Bad file descriptor) [pid 6088] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6087] <... clone3 resumed> => {parent_tid=[118]}, 88) = 118 [pid 6079] close(14) = -1 EBADF (Bad file descriptor) [pid 6088] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6087] rt_sigprocmask(SIG_SETMASK, [], [pid 6079] close(15./strace-static-x86_64: Process 6103 attached [pid 6087] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6079] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6079] close(16) = -1 EBADF (Bad file descriptor) [pid 6079] close(17 [pid 6103] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6087] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6103] <... rseq resumed>) = 0 [pid 6087] <... futex resumed>) = 0 [pid 6079] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6088] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6079] close(18) = -1 EBADF (Bad file descriptor) [pid 6103] set_robust_list(0x7f4f6609f9a0, 24 [pid 6087] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6079] close(19 [pid 6103] <... set_robust_list resumed>) = 0 [pid 6079] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6088] <... clone3 resumed> => {parent_tid=[125]}, 88) = 125 [pid 6079] close(20 [pid 6103] rt_sigprocmask(SIG_SETMASK, [], [pid 6079] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6103] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6079] close(21 [pid 6088] rt_sigprocmask(SIG_SETMASK, [], [pid 6079] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6103] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6079] close(22./strace-static-x86_64: Process 6104 attached [pid 6103] <... openat resumed>) = 3 [pid 6088] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6079] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6104] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6088] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6079] close(23 [pid 6104] <... rseq resumed>) = 0 [pid 6088] <... futex resumed>) = 0 [pid 6079] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6088] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6079] close(24 [pid 6104] set_robust_list(0x7f4f6609f9a0, 24 [pid 6079] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6104] <... set_robust_list resumed>) = 0 [pid 6079] close(25 [pid 6104] rt_sigprocmask(SIG_SETMASK, [], [pid 6079] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6079] close(26 [pid 6104] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6079] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6079] close(27) = -1 EBADF (Bad file descriptor) [pid 6104] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6079] close(28 [pid 6104] <... openat resumed>) = 3 [pid 6079] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6104] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6103] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6079] close(29 [pid 6104] <... futex resumed>) = 1 [pid 6088] <... futex resumed>) = 0 [pid 6079] <... close resumed>) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6104] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6103] <... futex resumed>) = 1 [pid 6088] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6087] <... futex resumed>) = 0 [pid 6079] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6104] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6088] <... futex resumed>) = 0 [pid 6079] <... write resumed>) = 156 [pid 6104] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6103] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6088] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6087] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6079] exit_group(0 [pid 6104] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6099] <... futex resumed>) = ? [pid 6098] <... futex resumed>) = ? [pid 6081] <... futex resumed>) = ? [pid 6079] <... exit_group resumed>) = ? [pid 6104] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6103] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6099] +++ exited with 0 +++ [pid 6098] +++ exited with 0 +++ [pid 6088] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6087] <... futex resumed>) = 0 [pid 6081] +++ exited with 0 +++ [pid 6079] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=121, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=61 /* 0.61 s */} --- [pid 6103] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6087] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 6103] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6103] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] umount2("./40", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6103] <... futex resumed>) = 1 [pid 6087] <... futex resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6103] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6087] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] openat(AT_FDCWD, "./40", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6103] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6087] <... futex resumed>) = 0 [pid 5031] newfstatat(3, "", [pid 6103] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6103] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6087] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5031] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 6104] <... futex resumed>) = 0 [pid 6088] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] umount2("./40/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./40/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./40/cgroup.cpu") = 0 [pid 5031] umount2("./40/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6103] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6087] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6103] <... futex resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./40/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6103] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6089] <... ioctl resumed>) = 0 [pid 5031] unlink("./40/binderfs" [pid 6089] close(4 [pid 5031] <... unlink resumed>) = 0 [pid 5031] umount2("./40/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6082] <... ioctl resumed>) = 0 [pid 6082] close(4) = 0 [pid 6082] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6082] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6078] close(3) = 0 [pid 6104] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6089] <... close resumed>) = 0 [pid 6088] <... futex resumed>) = 0 [pid 6078] close(4 [pid 6104] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6090] <... ioctl resumed>) = 0 [pid 6089] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6088] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6078] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6078] close(5 [pid 6089] <... futex resumed>) = 0 [pid 6087] close(3 [pid 6078] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6089] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6087] <... close resumed>) = 0 [pid 6078] close(6 [pid 6087] close(4 [pid 6078] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6078] close(7 [pid 6087] close(5) = -1 EBADF (Bad file descriptor) [pid 6078] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] close(6 [pid 6078] close(8 [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6078] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] close(7 [pid 6078] close(9 [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6078] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] close(8 [pid 6078] close(10 [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6078] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] close(9 [pid 6078] close(11 [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6078] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] close(10 [pid 6078] close(12 [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6078] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] close(11 [pid 6078] close(13 [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6078] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] close(12 [pid 6078] close(14 [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6078] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] close(13) = -1 EBADF (Bad file descriptor) [pid 6078] close(15 [pid 6087] close(14 [pid 6078] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6078] close(16 [pid 6087] close(15 [pid 6078] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6078] close(17 [pid 6087] close(16 [pid 6078] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6078] close(18 [pid 6087] close(17) = -1 EBADF (Bad file descriptor) [pid 6078] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] close(18) = -1 EBADF (Bad file descriptor) [pid 6078] close(19 [pid 6087] close(19 [pid 6078] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6078] close(20 [pid 6087] close(20 [pid 6078] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6078] close(21 [pid 6104] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6087] close(21 [pid 6078] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6104] <... futex resumed>) = 0 [pid 6090] close(4 [pid 6088] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6078] close(22 [pid 5034] kill(-124, SIGKILL [pid 6104] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6097] <... futex resumed>) = ? [pid 6090] <... close resumed>) = 0 [pid 6087] close(22 [pid 6082] <... futex resumed>) = ? [pid 6078] <... close resumed>) = ? [pid 5034] <... kill resumed>) = 0 [pid 6097] +++ killed by SIGKILL +++ [pid 6090] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6082] +++ killed by SIGKILL +++ [pid 5034] kill(124, SIGKILL [pid 6090] <... futex resumed>) = 0 [pid 6087] close(23 [pid 6078] +++ killed by SIGKILL +++ [pid 5034] <... kill resumed>) = 0 [pid 6090] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6088] close(3 [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=124, si_uid=0, si_status=SIGKILL, si_utime=2 /* 0.02 s */, si_stime=83 /* 0.83 s */} --- [pid 6088] <... close resumed>) = 0 [pid 6087] close(24 [pid 6088] close(4 [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] close(25 [pid 6088] close(5 [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] umount2("./41", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] close(26 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6088] close(6 [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] openat(AT_FDCWD, "./41", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] close(27 [pid 5034] <... openat resumed>) = 3 [pid 6088] close(7 [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] newfstatat(3, "", [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] close(28 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6088] close(8 [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] getdents64(3, [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] close(29 [pid 5034] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6088] close(9 [pid 6087] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] umount2("./41/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6087] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6088] close(10 [pid 6087] <... write resumed>) = 156 [pid 5034] newfstatat(AT_FDCWD, "./41/cgroup.cpu", [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] exit_group(0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6103] <... futex resumed>) = ? [pid 6089] <... futex resumed>) = ? [pid 6088] close(11 [pid 6087] <... exit_group resumed>) = ? [pid 5034] unlink("./41/cgroup.cpu" [pid 6103] +++ exited with 0 +++ [pid 6089] +++ exited with 0 +++ [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6087] +++ exited with 0 +++ [pid 5034] <... unlink resumed>) = 0 [pid 6088] close(12 [pid 5034] umount2("./41/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=116, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=63 /* 0.63 s */} --- [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6088] close(13 [pid 5034] newfstatat(AT_FDCWD, "./41/binderfs", [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./40", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6088] close(14 [pid 5034] unlink("./41/binderfs" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... unlink resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./40", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6088] close(15 [pid 5034] umount2("./41/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... openat resumed>) = 3 [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(3, "", [pid 6088] close(16 [pid 5034] newfstatat(AT_FDCWD, "./41/file0", [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] getdents64(3, [pid 6088] close(17 [pid 5034] umount2("./41/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] umount2("./40/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6088] close(18 [pid 5034] openat(AT_FDCWD, "./41/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... openat resumed>) = 4 [pid 5030] newfstatat(AT_FDCWD, "./40/cgroup.cpu", [pid 6088] close(19 [pid 5034] newfstatat(4, "", [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] unlink("./40/cgroup.cpu" [pid 6088] close(20 [pid 5034] getdents64(4, [pid 5030] <... unlink resumed>) = 0 [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] umount2("./40/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6088] close(21 [pid 5034] getdents64(4, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] newfstatat(AT_FDCWD, "./40/binderfs", [pid 6088] close(22 [pid 5034] close(4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... close resumed>) = 0 [pid 5030] unlink("./40/binderfs" [pid 6088] close(23 [pid 5034] rmdir("./41/file0" [pid 5030] <... unlink resumed>) = 0 [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... rmdir resumed>) = 0 [pid 5030] umount2("./40/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6088] close(24 [pid 5034] umount2("./41/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./40/file0", [pid 6088] close(25 [pid 5034] newfstatat(AT_FDCWD, "./41/cgroup", [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./40/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6088] close(26 [pid 5034] unlink("./41/cgroup" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... unlink resumed>) = 0 [pid 5030] openat(AT_FDCWD, "./40/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6088] close(27 [pid 5034] umount2("./41/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... openat resumed>) = 4 [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(4, "", [pid 6088] close(28 [pid 5034] newfstatat(AT_FDCWD, "./41/cgroup.net", [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] getdents64(4, [pid 6088] close(29 [pid 5034] unlink("./41/cgroup.net" [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6088] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... unlink resumed>) = 0 [pid 5030] getdents64(4, write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6088] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5034] getdents64(3, [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6088] <... write resumed>) = 156 [pid 5034] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] close(4 [pid 6088] exit_group(0 [pid 5034] close(3 [pid 5030] <... close resumed>) = 0 [pid 6104] <... futex resumed>) = ? [pid 6090] <... futex resumed>) = ? [pid 6088] <... exit_group resumed>) = ? [pid 5034] <... close resumed>) = 0 [pid 5030] rmdir("./40/file0" [pid 6104] +++ exited with 0 +++ [pid 6090] +++ exited with 0 +++ [pid 6088] +++ exited with 0 +++ [pid 5034] rmdir("./41" [pid 5030] <... rmdir resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=123, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=73 /* 0.73 s */} --- [pid 5030] umount2("./40/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] mkdir("./42", 0777 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... mkdir resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./40/cgroup", [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] umount2("./41", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... openat resumed>) = 3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] unlink("./40/cgroup" [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5032] openat(AT_FDCWD, "./41", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... unlink resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... openat resumed>) = 3 [pid 5034] close(3 [pid 5032] newfstatat(3, "", [pid 5034] <... close resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5032] getdents64(3, ./strace-static-x86_64: Process 6105 attached 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5030] umount2("./40/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 127 [pid 5032] umount2("./41/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./40/cgroup.net", [pid 6105] set_robust_list(0x55555654e6a0, 24 [pid 5032] newfstatat(AT_FDCWD, "./41/cgroup.cpu", [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6105] <... set_robust_list resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./40/cgroup.net" [pid 5032] unlink("./41/cgroup.cpu" [pid 6105] chdir("./42" [pid 5032] <... unlink resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 5032] umount2("./41/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] getdents64(3, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6105] <... chdir resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./41/binderfs", [pid 5030] close(3 [pid 6105] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... close resumed>) = 0 [pid 6105] <... prctl resumed>) = 0 [pid 5032] unlink("./41/binderfs" [pid 5030] rmdir("./40" [pid 6105] setpgid(0, 0 [pid 5032] <... unlink resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6105] <... setpgid resumed>) = 0 [pid 5032] umount2("./41/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] mkdir("./41", 0777 [pid 6105] symlink("/syzcgroup/unified/syz5", "./cgroup" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... mkdir resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./41/file0", [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5032] umount2("./41/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] openat(AT_FDCWD, "./41/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] close(3 [pid 6105] <... symlink resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5030] <... close resumed>) = 0 [pid 5032] newfstatat(4, "", [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6106 attached [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(4, [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 119 [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6106] set_robust_list(0x55555654e6a0, 24 [pid 6105] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu" [pid 5032] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5032] close(4) = 0 [pid 5032] rmdir("./41/file0" [pid 6106] <... set_robust_list resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 6105] <... symlink resumed>) = 0 [pid 6106] chdir("./41" [pid 5032] umount2("./41/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6106] <... chdir resumed>) = 0 [pid 6105] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 5032] newfstatat(AT_FDCWD, "./41/cgroup", [pid 6106] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6105] <... symlink resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6106] <... prctl resumed>) = 0 [pid 6105] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] unlink("./41/cgroup" [pid 6106] setpgid(0, 0 [pid 6105] <... openat resumed>) = 3 [pid 5032] <... unlink resumed>) = 0 [pid 6106] <... setpgid resumed>) = 0 [pid 6105] write(3, "1000", 4 [pid 5032] umount2("./41/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./41/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./41/cgroup.net" [pid 6106] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 6105] <... write resumed>) = 4 [pid 5032] <... unlink resumed>) = 0 [pid 5032] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5032] close(3) = 0 [pid 6105] close(3 [pid 5032] rmdir("./41" [pid 6106] <... symlink resumed>) = 0 [pid 6105] <... close resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 6106] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu" [pid 6105] symlink("/dev/binderfs", "./binderfs" [pid 5032] mkdir("./42", 0777 [pid 6106] <... symlink resumed>) = 0 [pid 6105] <... symlink resumed>) = 0 [pid 6101] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5032] <... mkdir resumed>) = 0 [pid 6106] symlink("/syzcgroup/net/syz3", "./cgroup.net" [pid 6105] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5032] close(3 [pid 6106] <... symlink resumed>) = 0 [pid 6105] <... futex resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 6106] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6105] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6107 attached [pid 6106] <... openat resumed>) = 3 [pid 6105] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 126 [pid 6107] set_robust_list(0x55555654e6a0, 24 [pid 6106] write(3, "1000", 4 [pid 6105] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6107] <... set_robust_list resumed>) = 0 [pid 6105] <... mprotect resumed>) = 0 [pid 6106] <... write resumed>) = 4 [pid 6107] chdir("./42" [pid 6106] close(3 [pid 6107] <... chdir resumed>) = 0 [pid 6106] <... close resumed>) = 0 [pid 6107] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6106] symlink("/dev/binderfs", "./binderfs" [pid 6105] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6107] <... prctl resumed>) = 0 [pid 6106] <... symlink resumed>) = 0 [pid 6105] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6107] setpgid(0, 0 [pid 6106] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6105] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 6107] <... setpgid resumed>) = 0 [pid 6106] <... futex resumed>) = 0 ./strace-static-x86_64: Process 6108 attached [pid 6106] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6107] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 6108] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6107] <... symlink resumed>) = 0 [pid 6106] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6105] <... clone3 resumed> => {parent_tid=[128]}, 88) = 128 [pid 5033] kill(-123, SIGKILL [pid 6102] <... futex resumed>) = ? [pid 5033] <... kill resumed>) = 0 [pid 6102] +++ killed by SIGKILL +++ [pid 5033] kill(123, SIGKILL) = 0 [pid 6105] rt_sigprocmask(SIG_SETMASK, [], [pid 6108] <... rseq resumed>) = 0 [pid 6107] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 6106] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6105] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6108] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6106] <... mprotect resumed>) = 0 [pid 6108] <... set_robust_list resumed>) = 0 [pid 6107] <... symlink resumed>) = 0 [pid 6105] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6108] rt_sigprocmask(SIG_SETMASK, [], [pid 6107] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 6106] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6105] <... futex resumed>) = 0 [pid 6108] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6105] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6107] <... symlink resumed>) = 0 [pid 6106] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6108] memfd_create("syzkaller", 0 [pid 6107] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6106] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6109 attached [pid 6107] <... openat resumed>) = 3 [pid 6106] <... clone3 resumed> => {parent_tid=[120]}, 88) = 120 [pid 6109] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6108] <... memfd_create resumed>) = 3 [pid 6107] write(3, "1000", 4 [pid 6106] rt_sigprocmask(SIG_SETMASK, [], [pid 6109] <... rseq resumed>) = 0 [pid 6108] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6107] <... write resumed>) = 4 [pid 6106] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6109] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6108] <... mmap resumed>) = 0x7f4f650a0000 [pid 6107] close(3 [pid 6106] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6109] <... set_robust_list resumed>) = 0 [pid 6107] <... close resumed>) = 0 [pid 6106] <... futex resumed>) = 0 [pid 6109] rt_sigprocmask(SIG_SETMASK, [], [pid 6107] symlink("/dev/binderfs", "./binderfs" [pid 6106] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6109] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6107] <... symlink resumed>) = 0 [pid 6109] memfd_create("syzkaller", 0 [pid 6107] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6109] <... memfd_create resumed>) = 3 [pid 6107] <... futex resumed>) = 0 [pid 6109] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6107] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6109] <... mmap resumed>) = 0x7f4f650a0000 [pid 6107] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6107] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6107] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6107] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6110 attached [pid 6110] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6107] <... clone3 resumed> => {parent_tid=[127]}, 88) = 127 [pid 6110] <... rseq resumed>) = 0 [pid 6107] rt_sigprocmask(SIG_SETMASK, [], [pid 6110] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6107] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6110] <... set_robust_list resumed>) = 0 [pid 6107] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6110] rt_sigprocmask(SIG_SETMASK, [], [pid 6107] <... futex resumed>) = 0 [pid 6110] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6107] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6110] memfd_create("syzkaller", 0) = 3 [pid 6086] <... ioctl resumed>) = ? [pid 6110] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 6086] +++ killed by SIGKILL +++ [pid 6085] +++ killed by SIGKILL +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=123, si_uid=0, si_status=SIGKILL, si_utime=10 /* 0.10 s */, si_stime=64 /* 0.64 s */} --- [pid 5033] umount2("./42", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./42", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5033] umount2("./42/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./42/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./42/cgroup.cpu") = 0 [pid 5033] umount2("./42/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./42/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./42/binderfs") = 0 [pid 5033] umount2("./42/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./42/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./42/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./42/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./42/file0") = 0 [pid 5033] umount2("./42/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./42/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./42/cgroup") = 0 [pid 5033] umount2("./42/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./42/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./42/cgroup.net") = 0 [pid 5033] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./42") = 0 [pid 5033] mkdir("./43", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6111 attached [pid 6111] set_robust_list(0x55555654e6a0, 24 [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 126 [pid 6111] <... set_robust_list resumed>) = 0 [pid 6111] chdir("./43") = 0 [pid 6111] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6111] setpgid(0, 0) = 0 [pid 6111] symlink("/syzcgroup/unified/syz2", "./cgroup") = 0 [pid 6111] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu") = 0 [pid 6111] symlink("/syzcgroup/net/syz2", "./cgroup.net") = 0 [pid 6111] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6111] write(3, "1000", 4) = 4 [pid 6111] close(3) = 0 [pid 6111] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6111] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6111] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 6111] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6111] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6111] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6112 attached [pid 6112] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6111] <... clone3 resumed> => {parent_tid=[127]}, 88) = 127 [pid 6112] <... rseq resumed>) = 0 [pid 6111] rt_sigprocmask(SIG_SETMASK, [], [pid 6112] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6111] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6112] <... set_robust_list resumed>) = 0 [pid 6111] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6112] rt_sigprocmask(SIG_SETMASK, [], [pid 6111] <... futex resumed>) = 0 [pid 6112] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6111] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6112] memfd_create("syzkaller", 0) = 3 [pid 6112] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 5031] <... umount2 resumed>) = 0 [pid 5031] umount2("./40/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./40/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./40/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./40/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./40/file0") = 0 [pid 5031] umount2("./40/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./40/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./40/cgroup") = 0 [pid 5031] umount2("./40/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./40/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./40/cgroup.net") = 0 [pid 5031] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./40") = 0 [pid 5031] mkdir("./41", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6113 attached , child_tidptr=0x55555654e690) = 125 [pid 6113] set_robust_list(0x55555654e6a0, 24) = 0 [pid 6113] chdir("./41") = 0 [pid 6113] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6113] setpgid(0, 0) = 0 [pid 6113] symlink("/syzcgroup/unified/syz4", "./cgroup") = 0 [pid 6113] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu") = 0 [pid 6113] symlink("/syzcgroup/net/syz4", "./cgroup.net") = 0 [pid 6113] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6113] write(3, "1000", 4) = 4 [pid 6113] close(3) = 0 [pid 6113] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6113] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6113] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 6113] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6113] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6113] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6114 attached [pid 6114] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6113] <... clone3 resumed> => {parent_tid=[126]}, 88) = 126 [pid 6114] <... rseq resumed>) = 0 [pid 6113] rt_sigprocmask(SIG_SETMASK, [], [pid 6114] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6113] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6114] <... set_robust_list resumed>) = 0 [pid 6113] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6114] rt_sigprocmask(SIG_SETMASK, [], [pid 6113] <... futex resumed>) = 0 [pid 6114] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6113] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6114] memfd_create("syzkaller", 0) = 3 [pid 6114] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 6101] <... write resumed>) = 16777216 [pid 6101] munmap(0x7f4f650a0000, 16777216 [pid 6109] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6110] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6101] <... munmap resumed>) = 0 [pid 6101] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6101] ioctl(4, LOOP_SET_FD, 3 [pid 6108] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6101] <... ioctl resumed>) = 0 [pid 6101] close(3) = 0 [pid 6101] mkdir("./file0", 0777) = 0 [ 308.851385][ T6101] loop0: detected capacity change from 0 to 32768 [pid 6101] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [ 308.941409][ T6101] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 308.975994][ T6101] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 309.025934][ T6101] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 309.050625][ T1147] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 309.059516][ T1147] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [pid 6112] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6101] <... mount resumed>) = 0 [ 309.127665][ T1147] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 68ms [ 309.135349][ T1147] gfs2: fsid=syz:syz.0: jid=0: Done [ 309.154198][ T6101] gfs2: fsid=syz:syz.0: first mount done, others may mount [pid 6101] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6101] chdir("./file0") = 0 [pid 6101] ioctl(4, LOOP_CLR_FD) = 0 [pid 6101] close(4) = 0 [pid 6101] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6100] <... futex resumed>) = 0 [pid 6101] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6100] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6101] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6100] <... futex resumed>) = 0 [pid 6101] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6100] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6114] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6100] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6100] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6100] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 6100] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6100] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 309.241755][ T6101] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 309.265135][ T6101] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 309.265135][ T6101] inode = 12 2341 [ 309.265135][ T6101] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [pid 6100] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[129]}, 88) = 129 [pid 6100] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6100] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6100] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 6100] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6100] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6605e000 [pid 6100] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6100] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6100] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0}./strace-static-x86_64: Process 6117 attached [pid 6117] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 6100] <... clone3 resumed> => {parent_tid=[130]}, 88) = 130 [pid 6117] <... rseq resumed>) = 0 [pid 6100] rt_sigprocmask(SIG_SETMASK, [], [pid 6117] set_robust_list(0x7f4f6607e9a0, 24 [pid 6100] <... rt_sigprocmask resumed>NULL, 8) = 0 [ 309.355837][ T6101] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 309.364962][ T6101] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6101 [syz-executor676] __gfs2_lookup+0x83/0x280 [pid 6117] <... set_robust_list resumed>) = 0 [pid 6100] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 6117] rt_sigprocmask(SIG_SETMASK, [], [pid 6100] <... futex resumed>) = 0 [pid 6117] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6100] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6117] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH./strace-static-x86_64: Process 6116 attached [ 309.408542][ T6117] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 309.443501][ T6101] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6117 [syz-executor676] __gfs2_lookup+0x83/0x280 [pid 6100] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6116] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053) = 0 [pid 6116] set_robust_list(0x7f4f6609f9a0, 24) = 0 [pid 6116] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6116] ioctl(0, VFAT_IOCTL_READDIR_SHORT, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 6116] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 309.491319][ T6117] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 309.491319][ T6117] inode = 12 2341 [ 309.491319][ T6117] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 309.602988][ T6101] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [pid 6116] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6109] <... write resumed>) = 16777216 [ 309.646947][ T6101] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 309.681918][ T6117] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:4 m:20 p:1 [pid 6110] <... write resumed>) = 16777216 [pid 6110] munmap(0x7f4f650a0000, 16777216 [ 309.727497][ T6101] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 309.778185][ T6117] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6101 [syz-executor676] __gfs2_lookup+0x83/0x280 [pid 6109] munmap(0x7f4f650a0000, 16777216 [pid 6108] <... write resumed>) = 16777216 [ 309.824020][ T6101] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 309.856650][ T6117] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6117 [syz-executor676] __gfs2_lookup+0x83/0x280 [pid 6108] munmap(0x7f4f650a0000, 16777216 [pid 6112] <... write resumed>) = 16777216 [pid 6109] <... munmap resumed>) = 0 [pid 6110] <... munmap resumed>) = 0 [pid 6110] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6112] munmap(0x7f4f650a0000, 16777216 [pid 6110] <... openat resumed>) = 4 [pid 6110] ioctl(4, LOOP_SET_FD, 3 [pid 6109] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [ 309.925337][ T6101] gfs2: fsid=syz:syz.0: File system withdrawn [ 309.940824][ T6110] loop1: detected capacity change from 0 to 32768 [ 309.951606][ T6117] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [pid 6109] ioctl(4, LOOP_SET_FD, 3 [pid 6110] <... ioctl resumed>) = 0 [pid 6110] close(3) = 0 [pid 6110] mkdir("./file0", 0777) = 0 [pid 6110] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6109] <... ioctl resumed>) = 0 [pid 6109] close(3) = 0 [ 309.969612][ T6109] loop3: detected capacity change from 0 to 32768 [ 309.994704][ T6110] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 310.000222][ T6101] CPU: 0 PID: 6101 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 310.012579][ T6101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 310.022698][ T6101] Call Trace: [ 310.026003][ T6101] [ 310.028982][ T6101] dump_stack_lvl+0x136/0x150 [ 310.033710][ T6101] gfs2_withdraw+0xb33/0x1060 [ 310.038428][ T6101] ? gfs2_consist_inode_i+0x104/0x150 [ 310.043851][ T6101] gfs2_dirent_scan+0x32a/0x3d0 [ 310.048938][ T6101] ? gfs2_dirent_prev+0x210/0x210 [ 310.054039][ T6101] ? gfs2_dirent_prev+0x210/0x210 [ 310.059117][ T6101] gfs2_dirent_search+0x47d/0x580 [ 310.064184][ T6101] ? get_first_leaf+0x190/0x190 [ 310.069080][ T6101] ? gfs2_permission+0x256/0x3e0 [ 310.074084][ T6101] gfs2_dir_search+0x8d/0x2d0 [ 310.078827][ T6101] ? gfs2_dir_read+0x14e0/0x14e0 [ 310.083827][ T6101] gfs2_lookupi+0x481/0x640 [ 310.088392][ T6101] ? gfs2_lookup_by_inum+0x100/0x100 [ 310.093708][ T6101] ? __gfs2_lookup+0x83/0x280 [ 310.098423][ T6101] ? d_alloc_parallel+0x693/0x1530 [ 310.103580][ T6101] __gfs2_lookup+0x83/0x280 [ 310.108118][ T6101] ? gfs2_lookupi+0x640/0x640 [ 310.112840][ T6101] ? __d_lookup_rcu+0x4e0/0x4e0 [ 310.117723][ T6101] ? __d_lookup+0x289/0x4c0 [ 310.122260][ T6101] gfs2_atomic_open+0xde/0x250 [ 310.127052][ T6101] ? __gfs2_lookup+0x280/0x280 [ 310.131862][ T6101] lookup_open.isra.0+0xce2/0x1400 [ 310.137011][ T6101] ? link_path_walk.part.0+0xd60/0xd60 [ 310.142513][ T6101] ? lookup_fast+0x14e/0x520 [ 310.147142][ T6101] path_openat+0x969/0x2710 [ 310.151681][ T6101] ? path_lookupat+0x840/0x840 [ 310.156494][ T6101] do_filp_open+0x1ba/0x410 [ 310.161027][ T6101] ? may_open_dev+0xf0/0xf0 [ 310.165563][ T6101] ? find_held_lock+0x2d/0x110 [ 310.170357][ T6101] ? do_raw_spin_lock+0x124/0x2b0 [ 310.175420][ T6101] ? spin_bug+0x1c0/0x1c0 [ 310.179783][ T6101] ? _raw_spin_unlock+0x28/0x40 [ 310.184667][ T6101] ? alloc_fd+0x2e4/0x750 [ 310.189052][ T6101] do_sys_openat2+0x160/0x1c0 [ 310.193769][ T6101] ? build_open_flags+0x720/0x720 [ 310.198837][ T6101] ? ptrace_notify+0xfe/0x140 [ 310.203568][ T6101] ? lock_downgrade+0x690/0x690 [ 310.208459][ T6101] __x64_sys_openat+0x143/0x1f0 [ 310.213349][ T6101] ? __ia32_sys_open+0x1c0/0x1c0 [ 310.218334][ T6101] ? _raw_spin_unlock_irq+0x23/0x50 [ 310.223601][ T6101] ? lockdep_hardirqs_on+0x7d/0x100 [ 310.228845][ T6101] ? _raw_spin_unlock_irq+0x2e/0x50 [ 310.234085][ T6101] ? ptrace_notify+0xfe/0x140 [ 310.238802][ T6101] do_syscall_64+0x39/0xb0 [ 310.243242][ T6101] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 310.249192][ T6101] RIP: 0033:0x7f4f6dd107f9 [ 310.253650][ T6101] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 310.273384][ T6101] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 310.281883][ T6101] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 310.289951][ T6101] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [ 310.297988][ T6101] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 310.305989][ T6101] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 310.313983][ T6101] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 310.321982][ T6101] [pid 6114] <... write resumed>) = 16777216 [pid 6112] <... munmap resumed>) = 0 [pid 6109] mkdir("./file0", 0777 [pid 6108] <... munmap resumed>) = 0 [pid 6101] <... openat resumed>) = -1 EIO (Input/output error) [pid 6101] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 310.325023][ T6110] CPU: 1 PID: 6110 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 310.335500][ T6110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 310.345605][ T6110] Call Trace: [ 310.348919][ T6110] [ 310.351885][ T6110] dump_stack_lvl+0x136/0x150 [ 310.356622][ T6110] sysfs_warn_dup+0x80/0xa0 [ 310.361156][ T6110] sysfs_create_dir_ns+0x237/0x290 [ 310.366297][ T6110] ? sysfs_create_mount_point+0xb0/0xb0 [ 310.371873][ T6110] ? spin_bug+0x1c0/0x1c0 [ 310.376235][ T6110] ? do_raw_spin_unlock+0x175/0x230 [ 310.381469][ T6110] kobject_add_internal+0x2c9/0x9c0 [ 310.386713][ T6110] ? kfree+0x11/0x150 [ 310.390739][ T6110] kobject_init_and_add+0x101/0x170 [ 310.395964][ T6110] ? kobject_create_and_add+0xf0/0xf0 [ 310.401361][ T6110] ? lockdep_init_map_type+0x21e/0x810 [ 310.406850][ T6110] ? lockdep_hardirqs_on+0x7d/0x100 [ 310.412077][ T6110] ? lockdep_init_map_type+0x21e/0x810 [ 310.417568][ T6110] gfs2_sys_fs_add+0x1d5/0x450 [ 310.422358][ T6110] ? recover_store+0x170/0x170 [ 310.427151][ T6110] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 310.432917][ T6110] gfs2_fill_super+0x1312/0x2aa0 [ 310.437887][ T6110] ? gfs2_reconfigure+0xf90/0xf90 [ 310.442937][ T6110] ? snprintf+0xbf/0x100 [ 310.447205][ T6110] ? vsprintf+0x30/0x30 [ 310.451386][ T6110] ? wait_for_completion_io_timeout+0x20/0x20 [ 310.457488][ T6110] ? set_blocksize+0x2d8/0x370 [ 310.462291][ T6110] get_tree_bdev+0x43e/0x7d0 [ 310.466914][ T6110] ? gfs2_reconfigure+0xf90/0xf90 [ 310.471966][ T6110] gfs2_get_tree+0x4e/0x270 [ 310.476493][ T6110] vfs_get_tree+0x8d/0x350 [ 310.480941][ T6110] path_mount+0x136e/0x1e70 [ 310.485492][ T6110] ? putname+0x102/0x140 [ 310.489763][ T6110] ? lockdep_hardirqs_on+0x7d/0x100 [ 310.495001][ T6110] ? finish_automount+0xa30/0xa30 [ 310.500149][ T6110] ? putname+0x102/0x140 [ 310.504421][ T6110] __x64_sys_mount+0x283/0x300 [ 310.509226][ T6110] ? copy_mnt_ns+0xb30/0xb30 [ 310.513848][ T6110] ? lockdep_hardirqs_on+0x7d/0x100 [ 310.519073][ T6110] ? _raw_spin_unlock_irq+0x2e/0x50 [ 310.524308][ T6110] ? ptrace_notify+0xfe/0x140 [ 310.529025][ T6110] do_syscall_64+0x39/0xb0 [ 310.533464][ T6110] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 310.539420][ T6110] RIP: 0033:0x7f4f6dd11c5a [ 310.543859][ T6110] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 310.563491][ T6110] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [pid 6101] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6114] munmap(0x7f4f650a0000, 16777216 [pid 6112] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6109] <... mkdir resumed>) = 0 [pid 6117] <... openat resumed>) = -1 EIO (Input/output error) [pid 6108] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6117] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 6112] <... openat resumed>) = 4 [pid 6109] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6108] <... openat resumed>) = 4 [pid 6100] close(3 [pid 6117] <... futex resumed>) = 0 [pid 6112] ioctl(4, LOOP_SET_FD, 3 [pid 6100] <... close resumed>) = 0 [pid 6108] ioctl(4, LOOP_SET_FD, 3 [pid 6117] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [ 310.571930][ T6110] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 310.579928][ T6110] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 310.587921][ T6110] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 310.595931][ T6110] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 310.603932][ T6110] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 310.611935][ T6110] [pid 6100] close(4 [pid 6112] <... ioctl resumed>) = 0 [pid 6100] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6100] close(5) = -1 EBADF (Bad file descriptor) [pid 6100] close(6) = -1 EBADF (Bad file descriptor) [pid 6100] close(7) = -1 EBADF (Bad file descriptor) [pid 6100] close(8) = -1 EBADF (Bad file descriptor) [pid 6100] close(9) = -1 EBADF (Bad file descriptor) [pid 6100] close(10) = -1 EBADF (Bad file descriptor) [pid 6100] close(11) = -1 EBADF (Bad file descriptor) [pid 6100] close(12) = -1 EBADF (Bad file descriptor) [pid 6100] close(13) = -1 EBADF (Bad file descriptor) [pid 6100] close(14) = -1 EBADF (Bad file descriptor) [pid 6100] close(15) = -1 EBADF (Bad file descriptor) [pid 6100] close(16) = -1 EBADF (Bad file descriptor) [pid 6100] close(17) = -1 EBADF (Bad file descriptor) [pid 6100] close(18) = -1 EBADF (Bad file descriptor) [pid 6112] close(3 [pid 6108] <... ioctl resumed>) = 0 [pid 6100] close(19) = -1 EBADF (Bad file descriptor) [pid 6100] close(20) = -1 EBADF (Bad file descriptor) [pid 6100] close(21) = -1 EBADF (Bad file descriptor) [pid 6100] close(22) = -1 EBADF (Bad file descriptor) [pid 6100] close(23) = -1 EBADF (Bad file descriptor) [pid 6100] close(24) = -1 EBADF (Bad file descriptor) [pid 6100] close(25) = -1 EBADF (Bad file descriptor) [pid 6100] close(26) = -1 EBADF (Bad file descriptor) [pid 6100] close(27) = -1 EBADF (Bad file descriptor) [pid 6100] close(28) = -1 EBADF (Bad file descriptor) [pid 6100] close(29) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [ 310.638794][ T6112] loop2: detected capacity change from 0 to 32768 [ 310.645971][ T6108] loop5: detected capacity change from 0 to 32768 [ 310.653269][ T6109] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 310.666082][ T6109] CPU: 1 PID: 6109 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 310.676592][ T6109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [pid 6100] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 6100] exit_group(0 [pid 6101] <... futex resumed>) = ? [pid 6100] <... exit_group resumed>) = ? [pid 6101] +++ exited with 0 +++ [ 310.686697][ T6109] Call Trace: [ 310.690014][ T6109] [ 310.692986][ T6109] dump_stack_lvl+0x136/0x150 [ 310.697734][ T6109] sysfs_warn_dup+0x80/0xa0 [ 310.702290][ T6109] sysfs_create_dir_ns+0x237/0x290 [ 310.707453][ T6109] ? sysfs_create_mount_point+0xb0/0xb0 [ 310.713051][ T6109] ? spin_bug+0x1c0/0x1c0 [ 310.717442][ T6109] ? do_raw_spin_unlock+0x175/0x230 [ 310.722702][ T6109] kobject_add_internal+0x2c9/0x9c0 [ 310.726147][ T6110] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 310.727928][ T6109] ? kfree+0x11/0x150 [ 310.745852][ T6109] kobject_init_and_add+0x101/0x170 [ 310.751111][ T6109] ? kobject_create_and_add+0xf0/0xf0 [ 310.756543][ T6109] ? lockdep_init_map_type+0x21e/0x810 [ 310.759304][ T6110] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 310.762039][ T6109] ? lockdep_hardirqs_on+0x7d/0x100 [ 310.762085][ T6109] ? lockdep_init_map_type+0x21e/0x810 [ 310.779323][ T6109] gfs2_sys_fs_add+0x1d5/0x450 [ 310.784152][ T6109] ? recover_store+0x170/0x170 [ 310.788966][ T6109] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 310.794733][ T6109] gfs2_fill_super+0x1312/0x2aa0 [ 310.799706][ T6109] ? gfs2_reconfigure+0xf90/0xf90 [ 310.804776][ T6109] ? snprintf+0xbf/0x100 [ 310.809068][ T6109] ? vsprintf+0x30/0x30 [ 310.813289][ T6109] ? wait_for_completion_io_timeout+0x20/0x20 [ 310.819662][ T6109] ? set_blocksize+0x2d8/0x370 [ 310.824477][ T6109] get_tree_bdev+0x43e/0x7d0 [ 310.829147][ T6109] ? gfs2_reconfigure+0xf90/0xf90 [ 310.834237][ T6109] gfs2_get_tree+0x4e/0x270 [ 310.838895][ T6109] vfs_get_tree+0x8d/0x350 [ 310.843353][ T6109] path_mount+0x136e/0x1e70 [ 310.847896][ T6109] ? putname+0x102/0x140 [ 310.852168][ T6109] ? lockdep_hardirqs_on+0x7d/0x100 [ 310.857402][ T6109] ? finish_automount+0xa30/0xa30 [ 310.862460][ T6109] ? putname+0x102/0x140 [ 310.866741][ T6109] __x64_sys_mount+0x283/0x300 [ 310.871557][ T6109] ? copy_mnt_ns+0xb30/0xb30 [ 310.876186][ T6109] ? lockdep_hardirqs_on+0x7d/0x100 [ 310.881426][ T6109] ? _raw_spin_unlock_irq+0x2e/0x50 [ 310.886690][ T6109] ? ptrace_notify+0xfe/0x140 [ 310.891412][ T6109] do_syscall_64+0x39/0xb0 [ 310.895869][ T6109] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 310.901806][ T6109] RIP: 0033:0x7f4f6dd11c5a [ 310.906239][ T6109] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 310.925871][ T6109] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [pid 6117] <... futex resumed>) = ? [pid 6116] <... futex resumed>) = ? [ 310.934308][ T6109] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 310.942300][ T6109] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 310.950297][ T6109] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 310.958290][ T6109] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 310.966385][ T6109] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 310.974395][ T6109] [pid 6116] +++ exited with 0 +++ [pid 6112] <... close resumed>) = 0 [pid 6108] close(3 [pid 6112] mkdir("./file0", 0777 [pid 6108] <... close resumed>) = 0 [pid 6112] <... mkdir resumed>) = 0 [pid 6108] mkdir("./file0", 0777) = 0 [pid 6108] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6112] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6117] +++ exited with 0 +++ [pid 6100] +++ exited with 0 +++ [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=127, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=66 /* 0.66 s */} --- [pid 5029] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5029] umount2("./41", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./41", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5029] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5029] umount2("./41/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./41/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 310.996086][ T6109] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 311.026554][ T6108] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 311.026796][ T6109] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 311.034002][ T6108] CPU: 0 PID: 6108 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 311.050988][ T6108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 311.061092][ T6108] Call Trace: [ 311.063767][ T6112] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 311.064386][ T6108] [ 311.064399][ T6108] dump_stack_lvl+0x136/0x150 [ 311.079410][ T6108] sysfs_warn_dup+0x80/0xa0 [ 311.083959][ T6108] sysfs_create_dir_ns+0x237/0x290 [ 311.089205][ T6108] ? sysfs_create_mount_point+0xb0/0xb0 [ 311.094799][ T6108] ? spin_bug+0x1c0/0x1c0 [ 311.099167][ T6108] ? do_raw_spin_unlock+0x175/0x230 [ 311.104402][ T6108] kobject_add_internal+0x2c9/0x9c0 [ 311.109630][ T6108] ? kfree+0x11/0x150 [ 311.113645][ T6108] kobject_init_and_add+0x101/0x170 [ 311.118874][ T6108] ? kobject_create_and_add+0xf0/0xf0 [ 311.124270][ T6108] ? lockdep_init_map_type+0x21e/0x810 [ 311.129851][ T6108] ? lockdep_hardirqs_on+0x7d/0x100 [ 311.135105][ T6108] ? lockdep_init_map_type+0x21e/0x810 [ 311.140617][ T6108] gfs2_sys_fs_add+0x1d5/0x450 [ 311.145405][ T6108] ? recover_store+0x170/0x170 [ 311.150195][ T6108] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 311.155952][ T6108] gfs2_fill_super+0x1312/0x2aa0 [ 311.160929][ T6108] ? gfs2_reconfigure+0xf90/0xf90 [ 311.165980][ T6108] ? snprintf+0xbf/0x100 [ 311.170255][ T6108] ? vsprintf+0x30/0x30 [ 311.174449][ T6108] ? wait_for_completion_io_timeout+0x20/0x20 [ 311.180552][ T6108] ? set_blocksize+0x2d8/0x370 [ 311.185348][ T6108] get_tree_bdev+0x43e/0x7d0 [ 311.190054][ T6108] ? gfs2_reconfigure+0xf90/0xf90 [ 311.195106][ T6108] gfs2_get_tree+0x4e/0x270 [ 311.199652][ T6108] vfs_get_tree+0x8d/0x350 [ 311.204184][ T6108] path_mount+0x136e/0x1e70 [ 311.208717][ T6108] ? putname+0x102/0x140 [ 311.212989][ T6108] ? lockdep_hardirqs_on+0x7d/0x100 [ 311.218217][ T6108] ? finish_automount+0xa30/0xa30 [ 311.223282][ T6108] ? putname+0x102/0x140 [ 311.227554][ T6108] __x64_sys_mount+0x283/0x300 [ 311.232348][ T6108] ? copy_mnt_ns+0xb30/0xb30 [ 311.236967][ T6108] ? lockdep_hardirqs_on+0x7d/0x100 [ 311.242197][ T6108] ? _raw_spin_unlock_irq+0x2e/0x50 [ 311.247497][ T6108] ? ptrace_notify+0xfe/0x140 [ 311.252227][ T6108] do_syscall_64+0x39/0xb0 [ 311.256666][ T6108] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 311.263299][ T6108] RIP: 0033:0x7f4f6dd11c5a [ 311.267731][ T6108] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 311.287367][ T6108] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 311.295805][ T6108] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 311.303800][ T6108] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 311.311792][ T6108] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 311.319801][ T6108] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 311.327795][ T6108] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 311.335789][ T6108] [pid 6114] <... munmap resumed>) = 0 [pid 6110] <... mount resumed>) = -1 EEXIST (File exists) [pid 5029] unlink("./41/cgroup.cpu" [ 311.340630][ T6112] CPU: 0 PID: 6112 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 311.351105][ T6112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 311.358169][ T6108] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 311.361266][ T6112] Call Trace: [ 311.361278][ T6112] [ 311.375206][ T6108] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 311.378421][ T6112] dump_stack_lvl+0x136/0x150 [ 311.378480][ T6112] sysfs_warn_dup+0x80/0xa0 [pid 6114] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6110] ioctl(4, LOOP_CLR_FD [pid 5029] <... unlink resumed>) = 0 [pid 6114] <... openat resumed>) = 4 [pid 5029] umount2("./41/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6114] ioctl(4, LOOP_SET_FD, 3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./41/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./41/binderfs") = 0 [pid 5029] umount2("./41/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6114] <... ioctl resumed>) = 0 [pid 6114] close(3) = 0 [ 311.397180][ T6112] sysfs_create_dir_ns+0x237/0x290 [ 311.402361][ T6112] ? sysfs_create_mount_point+0xb0/0xb0 [ 311.407971][ T6112] ? spin_bug+0x1c0/0x1c0 [ 311.412367][ T6112] ? do_raw_spin_unlock+0x175/0x230 [ 311.417651][ T6112] kobject_add_internal+0x2c9/0x9c0 [ 311.418104][ T6114] loop4: detected capacity change from 0 to 32768 [ 311.422882][ T6112] ? kfree+0x11/0x150 [ 311.433447][ T6112] kobject_init_and_add+0x101/0x170 [ 311.438726][ T6112] ? kobject_create_and_add+0xf0/0xf0 [pid 6114] mkdir("./file0", 0777) = 0 [ 311.444162][ T6112] ? lockdep_init_map_type+0x21e/0x810 [ 311.449691][ T6112] ? lockdep_hardirqs_on+0x7d/0x100 [ 311.454956][ T6112] ? lockdep_init_map_type+0x21e/0x810 [ 311.460483][ T6112] gfs2_sys_fs_add+0x1d5/0x450 [ 311.463362][ T6114] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 311.465284][ T6112] ? recover_store+0x170/0x170 [ 311.465322][ T6112] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 311.465375][ T6112] gfs2_fill_super+0x1312/0x2aa0 [ 311.488221][ T6112] ? gfs2_reconfigure+0xf90/0xf90 [ 311.493314][ T6112] ? snprintf+0xbf/0x100 [ 311.497614][ T6112] ? vsprintf+0x30/0x30 [ 311.501821][ T6112] ? wait_for_completion_io_timeout+0x20/0x20 [ 311.507944][ T6112] ? set_blocksize+0x2d8/0x370 [ 311.512766][ T6112] get_tree_bdev+0x43e/0x7d0 [ 311.517414][ T6112] ? gfs2_reconfigure+0xf90/0xf90 [ 311.522496][ T6112] gfs2_get_tree+0x4e/0x270 [ 311.527059][ T6112] vfs_get_tree+0x8d/0x350 [ 311.531538][ T6112] path_mount+0x136e/0x1e70 [ 311.536099][ T6112] ? putname+0x102/0x140 [ 311.540385][ T6112] ? lockdep_hardirqs_on+0x7d/0x100 [ 311.545623][ T6112] ? finish_automount+0xa30/0xa30 [ 311.550779][ T6112] ? putname+0x102/0x140 [ 311.555065][ T6112] __x64_sys_mount+0x283/0x300 [ 311.559875][ T6112] ? copy_mnt_ns+0xb30/0xb30 [ 311.564535][ T6112] ? lockdep_hardirqs_on+0x7d/0x100 [ 311.569787][ T6112] ? _raw_spin_unlock_irq+0x2e/0x50 [ 311.575051][ T6112] ? ptrace_notify+0xfe/0x140 [ 311.579799][ T6112] do_syscall_64+0x39/0xb0 [ 311.584254][ T6112] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 311.590196][ T6112] RIP: 0033:0x7f4f6dd11c5a [ 311.594633][ T6112] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 311.614299][ T6112] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 311.622850][ T6112] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 311.630847][ T6112] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 311.638847][ T6112] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [pid 6114] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6109] <... mount resumed>) = -1 EEXIST (File exists) [ 311.646862][ T6112] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 311.654872][ T6112] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 311.662899][ T6112] [ 311.667755][ T6114] CPU: 0 PID: 6114 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 311.678234][ T6114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 311.688338][ T6114] Call Trace: [ 311.691658][ T6114] [ 311.694627][ T6114] dump_stack_lvl+0x136/0x150 [ 311.699370][ T6114] sysfs_warn_dup+0x80/0xa0 [ 311.703927][ T6114] sysfs_create_dir_ns+0x237/0x290 [ 311.709082][ T6114] ? sysfs_create_mount_point+0xb0/0xb0 [ 311.714757][ T6114] ? spin_bug+0x1c0/0x1c0 [ 311.719122][ T6114] ? do_raw_spin_unlock+0x175/0x230 [ 311.724361][ T6114] kobject_add_internal+0x2c9/0x9c0 [ 311.729598][ T6114] ? kfree+0x11/0x150 [ 311.733610][ T6114] kobject_init_and_add+0x101/0x170 [ 311.738844][ T6114] ? kobject_create_and_add+0xf0/0xf0 [ 311.744243][ T6114] ? lockdep_init_map_type+0x21e/0x810 [ 311.749732][ T6114] ? lockdep_hardirqs_on+0x7d/0x100 [ 311.754986][ T6114] ? lockdep_init_map_type+0x21e/0x810 [ 311.760493][ T6114] gfs2_sys_fs_add+0x1d5/0x450 [ 311.765306][ T6114] ? recover_store+0x170/0x170 [ 311.770117][ T6114] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 311.775885][ T6114] gfs2_fill_super+0x1312/0x2aa0 [ 311.780862][ T6114] ? gfs2_reconfigure+0xf90/0xf90 [ 311.785920][ T6114] ? snprintf+0xbf/0x100 [ 311.790188][ T6114] ? vsprintf+0x30/0x30 [ 311.794370][ T6114] ? wait_for_completion_io_timeout+0x20/0x20 [ 311.800467][ T6114] ? set_blocksize+0x2d8/0x370 [ 311.805258][ T6114] get_tree_bdev+0x43e/0x7d0 [ 311.809884][ T6114] ? gfs2_reconfigure+0xf90/0xf90 [ 311.814945][ T6114] gfs2_get_tree+0x4e/0x270 [ 311.819585][ T6114] vfs_get_tree+0x8d/0x350 [ 311.824049][ T6114] path_mount+0x136e/0x1e70 [ 311.828593][ T6114] ? putname+0x102/0x140 [ 311.832877][ T6114] ? lockdep_hardirqs_on+0x7d/0x100 [ 311.838138][ T6114] ? finish_automount+0xa30/0xa30 [ 311.843230][ T6114] ? putname+0x102/0x140 [ 311.847509][ T6114] __x64_sys_mount+0x283/0x300 [ 311.852313][ T6114] ? copy_mnt_ns+0xb30/0xb30 [ 311.856940][ T6114] ? lockdep_hardirqs_on+0x7d/0x100 [ 311.862197][ T6114] ? _raw_spin_unlock_irq+0x2e/0x50 [ 311.867450][ T6114] ? ptrace_notify+0xfe/0x140 [ 311.872183][ T6114] do_syscall_64+0x39/0xb0 [ 311.876632][ T6114] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 311.882588][ T6114] RIP: 0033:0x7f4f6dd11c5a [ 311.887039][ T6114] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 311.906694][ T6114] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 311.915142][ T6114] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 311.923167][ T6114] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 311.931166][ T6114] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 311.939161][ T6114] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [pid 6109] ioctl(4, LOOP_CLR_FD [pid 6106] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6106] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6105] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6108] <... mount resumed>) = -1 EEXIST (File exists) [pid 6105] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6108] ioctl(4, LOOP_CLR_FD [pid 6105] <... futex resumed>) = 0 [pid 6105] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 6105] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6105] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6107] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6105] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6105] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6107] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 311.947157][ T6114] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 311.955159][ T6114] [ 311.962194][ T6112] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 311.981809][ T6114] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 6107] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0./strace-static-x86_64: Process 6123 attached [pid 6123] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6107] <... mmap resumed>) = 0x7f4f6607f000 [pid 6123] <... rseq resumed>) = 0 [pid 6107] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6123] set_robust_list(0x7f4f6609f9a0, 24 [pid 6107] <... mprotect resumed>) = 0 [pid 6105] <... clone3 resumed> => {parent_tid=[129]}, 88) = 129 [pid 6123] <... set_robust_list resumed>) = 0 [pid 6123] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6123] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6105] rt_sigprocmask(SIG_SETMASK, [], [pid 6107] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6105] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6107] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6105] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6123] <... futex resumed>) = 0 [pid 6105] <... futex resumed>) = 1 [pid 6123] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 6123] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6123] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6105] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 6124 attached [pid 6107] <... clone3 resumed> => {parent_tid=[128]}, 88) = 128 [pid 6106] <... futex resumed>) = 0 [pid 6105] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6105] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6123] <... futex resumed>) = 0 [pid 6105] <... futex resumed>) = 1 [pid 6123] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [ 312.056240][ T6114] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 6105] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6124] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6123] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6107] rt_sigprocmask(SIG_SETMASK, [], [pid 6124] <... rseq resumed>) = 0 [pid 6107] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6124] set_robust_list(0x7f4f6609f9a0, 24 [pid 6107] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6106] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 6106] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6106] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6106] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6124] <... set_robust_list resumed>) = 0 [pid 6107] <... futex resumed>) = 0 [pid 6106] <... clone3 resumed> => {parent_tid=[121]}, 88) = 121 ./strace-static-x86_64: Process 6125 attached [pid 6125] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053) = 0 [pid 6125] set_robust_list(0x7f4f6609f9a0, 24) = 0 [pid 6125] rt_sigprocmask(SIG_SETMASK, [], [pid 6106] rt_sigprocmask(SIG_SETMASK, [], [pid 6125] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6123] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6105] <... futex resumed>) = 0 [pid 6123] <... futex resumed>) = 1 [pid 6105] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6123] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6105] <... futex resumed>) = 0 [pid 6123] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6114] <... mount resumed>) = -1 EEXIST (File exists) [pid 6106] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6105] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6123] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6114] ioctl(4, LOOP_CLR_FD [pid 6106] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6105] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6124] rt_sigprocmask(SIG_SETMASK, [], [pid 6123] <... futex resumed>) = 0 [pid 6106] <... futex resumed>) = 0 [pid 6124] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6123] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6106] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6124] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6107] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6124] <... openat resumed>) = 3 [pid 6125] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6124] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6125] <... openat resumed>) = 3 [pid 6124] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6107] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6125] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6107] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6106] <... futex resumed>) = 0 [pid 6125] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6106] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6106] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6124] <... futex resumed>) = 0 [pid 6107] <... futex resumed>) = 1 [pid 6125] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6125] ioctl(-1, VFAT_IOCTL_READDIR_SHORT, 0) = -1 EBADF (Bad file descriptor) [pid 6124] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6107] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6125] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6124] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6106] <... futex resumed>) = 0 [pid 6106] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6125] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6106] <... futex resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 6106] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [ 312.237240][ T6112] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 5029] umount2("./41/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6125] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6124] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./41/file0", [pid 6125] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6125] <... futex resumed>) = 1 [pid 5029] umount2("./41/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6106] <... futex resumed>) = 0 [pid 6125] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./41/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 6124] <... futex resumed>) = 1 [pid 6124] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5029] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5029] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5029] close(4 [pid 6107] <... futex resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 6107] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6107] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5029] rmdir("./41/file0") = 0 [pid 5029] umount2("./41/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./41/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./41/cgroup") = 0 [pid 5029] umount2("./41/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./41/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./41/cgroup.net") = 0 [pid 5029] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./41") = 0 [pid 5029] mkdir("./42", 0777) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3 [pid 6124] <... futex resumed>) = 0 [pid 6111] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5029] <... close resumed>) = 0 [pid 6111] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6124] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6111] <... futex resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6124] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6111] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6109] <... ioctl resumed>) = 0 [pid 6111] <... mmap resumed>) = 0x7f4f6607f000 [pid 6111] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6111] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6111] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 6127 attached [pid 6124] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6109] close(4 [pid 6111] <... clone3 resumed> => {parent_tid=[128]}, 88) = 128 [pid 6111] rt_sigprocmask(SIG_SETMASK, [], ./strace-static-x86_64: Process 6126 attached [pid 6127] set_robust_list(0x55555654e6a0, 24 [pid 6124] <... futex resumed>) = 1 [pid 6111] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6109] <... close resumed>) = 0 [pid 6108] <... ioctl resumed>) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 131 [pid 6127] <... set_robust_list resumed>) = 0 [pid 6126] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6124] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6111] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6109] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6108] close(4 [pid 6127] chdir("./42" [pid 6126] <... rseq resumed>) = 0 [pid 6111] <... futex resumed>) = 0 [pid 6109] <... futex resumed>) = 0 [pid 6127] <... chdir resumed>) = 0 [pid 6126] set_robust_list(0x7f4f6609f9a0, 24 [pid 6111] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6108] <... close resumed>) = 0 [pid 6126] <... set_robust_list resumed>) = 0 [pid 6109] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6108] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6127] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6126] rt_sigprocmask(SIG_SETMASK, [], [pid 6106] close(3 [pid 6105] close(3 [pid 6108] <... futex resumed>) = 0 [pid 6127] <... prctl resumed>) = 0 [pid 6126] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6112] <... mount resumed>) = -1 EEXIST (File exists) [pid 6108] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6106] <... close resumed>) = 0 [pid 6105] <... close resumed>) = 0 [pid 6127] setpgid(0, 0 [pid 6112] ioctl(4, LOOP_CLR_FD [pid 6126] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6106] close(4 [pid 6105] close(4 [pid 6126] <... openat resumed>) = 3 [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6127] <... setpgid resumed>) = 0 [pid 6127] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 6126] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6106] close(5 [pid 6105] close(5 [pid 6127] <... symlink resumed>) = 0 [pid 6126] <... futex resumed>) = 1 [pid 6111] <... futex resumed>) = 0 [pid 6107] <... futex resumed>) = 0 [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6127] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu" [pid 6126] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6111] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6106] close(6 [pid 6105] close(6 [pid 6127] <... symlink resumed>) = 0 [pid 6126] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6111] <... futex resumed>) = 0 [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6127] symlink("/syzcgroup/net/syz0", "./cgroup.net" [pid 6126] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6111] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6106] close(7 [pid 6105] close(7 [pid 6127] <... symlink resumed>) = 0 [pid 6126] <... futex resumed>) = 0 [pid 6111] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6127] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6126] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6111] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6106] close(8 [pid 6105] close(8 [pid 6127] <... openat resumed>) = 3 [pid 6111] <... futex resumed>) = 0 [pid 6111] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6126] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6127] write(3, "1000", 4) = 4 [pid 6126] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6106] close(9 [pid 6105] close(9 [pid 6127] close(3 [pid 6126] <... futex resumed>) = 1 [pid 6111] <... futex resumed>) = 0 [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6127] <... close resumed>) = 0 [pid 6127] symlink("/dev/binderfs", "./binderfs" [pid 6126] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6106] close(10 [pid 6105] close(10 [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6127] <... symlink resumed>) = 0 [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6106] close(11 [pid 6127] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] close(11 [pid 6127] <... futex resumed>) = 0 [pid 6106] close(12 [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6127] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] close(12 [pid 6127] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6106] close(13 [pid 6127] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] close(13 [pid 6127] <... mprotect resumed>) = 0 [pid 6106] close(14 [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6106] close(15 [pid 6105] close(14 [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6127] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6106] close(16 [pid 6105] close(15 [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6127] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6106] close(17 [pid 6127] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] close(16 [pid 6106] close(18 [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] close(17 [pid 6106] close(19 [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6127] <... clone3 resumed> => {parent_tid=[132]}, 88) = 132 [pid 6106] close(20 [pid 6105] close(18 [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6106] close(21 [pid 6127] rt_sigprocmask(SIG_SETMASK, [], ./strace-static-x86_64: Process 6128 attached NULL, 8) = 0 [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] close(19 [pid 6128] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6127] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6106] close(22 [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6128] <... rseq resumed>) = 0 [pid 6127] <... futex resumed>) = 0 [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] close(20 [pid 6128] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6127] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6106] close(23 [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6128] <... set_robust_list resumed>) = 0 [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] close(21 [pid 6128] rt_sigprocmask(SIG_SETMASK, [], [pid 6106] close(24 [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6128] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] close(22 [pid 6128] memfd_create("syzkaller", 0 [pid 6106] close(25 [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6128] <... memfd_create resumed>) = 3 [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] close(23 [pid 6128] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6106] close(26 [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6128] <... mmap resumed>) = 0x7f4f650a0000 [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] close(24 [pid 6106] close(27 [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] close(25 [pid 6106] close(28 [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6106] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6105] close(26 [pid 6106] close(29) = -1 EBADF (Bad file descriptor) [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6106] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6105] close(27write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6106] <... write resumed>) = 156 [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6106] exit_group(0 [pid 6105] close(28 [pid 6125] <... futex resumed>) = ? [pid 6109] <... futex resumed>) = ? [pid 6106] <... exit_group resumed>) = ? [pid 6105] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6125] +++ exited with 0 +++ [pid 6109] +++ exited with 0 +++ [pid 6106] +++ exited with 0 +++ [pid 6105] close(29) = -1 EBADF (Bad file descriptor) [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=119, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=59 /* 0.59 s */} --- [pid 6105] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory ) = 156 [pid 6114] <... ioctl resumed>) = 0 [pid 6105] exit_group(0 [pid 6123] <... futex resumed>) = ? [pid 6105] <... exit_group resumed>) = ? [pid 6108] <... futex resumed>) = ? [pid 6123] +++ exited with 0 +++ [pid 6108] +++ exited with 0 +++ [pid 6105] +++ exited with 0 +++ [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=127, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=65 /* 0.65 s */} --- [pid 6114] close(4) = 0 [pid 6114] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5030] umount2("./41", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6114] <... futex resumed>) = 1 [pid 6113] <... futex resumed>) = 0 [pid 5034] umount2("./42", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6114] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6113] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6110] <... ioctl resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6114] <... openat resumed>) = 3 [pid 6113] <... futex resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./42", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "./41", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5034] <... openat resumed>) = 3 [pid 6113] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6114] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] newfstatat(3, "", [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5030] umount2("./41/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./41/cgroup.cpu", [pid 6114] <... futex resumed>) = 0 [pid 6113] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6114] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6113] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] getdents64(3, [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6114] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6113] <... futex resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6114] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6113] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5034] umount2("./42/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] unlink("./41/cgroup.cpu" [pid 6114] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6114] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] newfstatat(AT_FDCWD, "./42/cgroup.cpu", [pid 5030] <... unlink resumed>) = 0 [pid 6114] <... futex resumed>) = 1 [pid 6113] <... futex resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6114] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6113] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] unlink("./42/cgroup.cpu" [pid 5030] umount2("./41/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6114] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6113] <... futex resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6114] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6113] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6110] close(4 [pid 5034] umount2("./42/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(AT_FDCWD, "./41/binderfs", [pid 6114] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6114] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6113] <... futex resumed>) = 0 [pid 6114] <... futex resumed>) = 1 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6114] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6113] close(3 [pid 6110] <... close resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./42/binderfs", [pid 5030] unlink("./41/binderfs" [pid 6113] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6113] close(4) = -1 EBADF (Bad file descriptor) [pid 6110] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] unlink("./42/binderfs" [pid 5030] <... unlink resumed>) = 0 [pid 6107] close(3 [pid 6113] close(5 [pid 6110] <... futex resumed>) = 0 [pid 6107] <... close resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] close(4 [pid 5030] umount2("./41/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6113] close(6 [pid 6110] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] umount2("./42/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] close(5 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./41/file0", [pid 6113] close(7 [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] newfstatat(AT_FDCWD, "./42/file0", [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] close(6 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6113] close(8 [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] umount2("./42/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./41/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] close(7 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6113] close(9 [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] openat(AT_FDCWD, "./42/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "./41/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] close(8 [pid 5034] <... openat resumed>) = 4 [pid 6113] close(10 [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] newfstatat(4, "", [pid 5030] <... openat resumed>) = 4 [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] close(9 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] newfstatat(4, "", [pid 6113] close(11 [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] getdents64(4, [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] close(10 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6113] close(12 [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] getdents64(4, [pid 5030] getdents64(4, [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] close(11 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6113] close(13 [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] close(4 [pid 5030] getdents64(4, [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] close(12 [pid 5034] <... close resumed>) = 0 [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6113] close(14 [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] rmdir("./42/file0" [pid 5030] close(4 [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] close(13) = -1 EBADF (Bad file descriptor) [pid 6107] close(14 [pid 5034] <... rmdir resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 6113] close(15) = -1 EBADF (Bad file descriptor) [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] umount2("./42/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] rmdir("./41/file0" [pid 6113] close(16 [pid 6107] close(15 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] newfstatat(AT_FDCWD, "./42/cgroup", [pid 5030] <... rmdir resumed>) = 0 [pid 6113] close(17 [pid 6107] close(16 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./41/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] unlink("./42/cgroup" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6113] close(18 [pid 6107] close(17 [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... unlink resumed>) = 0 [pid 5030] newfstatat(AT_FDCWD, "./41/cgroup", [pid 6113] close(19 [pid 6107] close(18 [pid 5034] umount2("./42/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] unlink("./41/cgroup" [pid 6113] close(20 [pid 6107] close(19 [pid 5034] newfstatat(AT_FDCWD, "./42/cgroup.net", [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 6113] close(21 [pid 6107] close(20 [pid 5034] unlink("./42/cgroup.net" [pid 5030] umount2("./41/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6113] close(22 [pid 6107] close(21 [pid 5034] <... unlink resumed>) = 0 [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] getdents64(3, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6113] close(23 [pid 6107] close(22 [pid 5034] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] newfstatat(AT_FDCWD, "./41/cgroup.net", [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] close(3 [pid 6113] close(24 [pid 6107] close(23 [pid 5034] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] rmdir("./42" [pid 5030] unlink("./41/cgroup.net" [pid 6113] close(25 [pid 6107] close(24 [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... rmdir resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 6113] close(26 [pid 6107] close(25 [pid 5034] mkdir("./43", 0777 [pid 5030] getdents64(3, [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] close(26) = -1 EBADF (Bad file descriptor) [pid 6107] close(27) = -1 EBADF (Bad file descriptor) [pid 6107] close(28 [pid 5034] <... mkdir resumed>) = 0 [pid 6113] close(27 [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] close(29 [pid 5034] <... openat resumed>) = 3 [pid 5030] close(3 [pid 6113] close(28 [pid 6107] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] ioctl(3, LOOP_CLR_FDwrite to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... close resumed>) = 0 [pid 6113] close(29 [pid 6107] <... write resumed>) = 156 [pid 5034] close(3 [pid 5030] rmdir("./41" [pid 6113] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6107] exit_group(0 [pid 5034] <... close resumed>) = 0 [pid 6107] <... exit_group resumed>) = ? [pid 5030] <... rmdir resumed>) = 0 [pid 6113] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6124] <... futex resumed>) = ? [pid 6110] <... futex resumed>) = ? [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDwrite to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory ./strace-static-x86_64: Process 6129 attached [pid 6124] +++ exited with 0 +++ [pid 6129] set_robust_list(0x55555654e6a0, 24) = 0 [pid 6129] chdir("./43") = 0 [pid 6129] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6129] setpgid(0, 0) = 0 [pid 6129] symlink("/syzcgroup/unified/syz5", "./cgroup" [pid 6110] +++ exited with 0 +++ [pid 6107] +++ exited with 0 +++ [pid 6129] <... symlink resumed>) = 0 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=126, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=85 /* 0.85 s */} --- [pid 6129] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu" [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 6129] <... symlink resumed>) = 0 [pid 6113] <... write resumed>) = 156 [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 130 [pid 5032] <... restart_syscall resumed>) = 0 [pid 5030] mkdir("./42", 0777 [pid 6129] symlink("/syzcgroup/net/syz5", "./cgroup.net") = 0 [pid 6129] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] umount2("./42", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6129] <... openat resumed>) = 3 [pid 6113] exit_group(0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... mkdir resumed>) = 0 [pid 6129] write(3, "1000", 4 [pid 5032] openat(AT_FDCWD, "./42", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6129] <... write resumed>) = 4 [pid 5032] <... openat resumed>) = 3 [pid 6129] close(3 [pid 5032] newfstatat(3, "", [pid 6129] <... close resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6129] symlink("/dev/binderfs", "./binderfs" [pid 5032] getdents64(3, [pid 6129] <... symlink resumed>) = 0 [pid 6114] <... futex resumed>) = ? [pid 6113] <... exit_group resumed>) = ? [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6129] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] umount2("./42/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6129] <... futex resumed>) = 0 [pid 6114] +++ exited with 0 +++ [pid 6113] +++ exited with 0 +++ [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... openat resumed>) = 3 [pid 6129] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5032] newfstatat(AT_FDCWD, "./42/cgroup.cpu", [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6129] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=125, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=56 /* 0.56 s */} --- [pid 6129] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5032] unlink("./42/cgroup.cpu" [pid 5031] restart_syscall(<... resuming interrupted clone ...> [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6129] <... mprotect resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5031] <... restart_syscall resumed>) = 0 [pid 5030] close(3 [pid 6129] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5032] umount2("./42/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6129] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... close resumed>) = 0 [pid 6129] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5032] newfstatat(AT_FDCWD, "./42/binderfs", [pid 5031] umount2("./41", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6130 attached [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6129] <... clone3 resumed> => {parent_tid=[131]}, 88) = 131 [pid 5032] unlink("./42/binderfs" [pid 5031] openat(AT_FDCWD, "./41", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6129] rt_sigprocmask(SIG_SETMASK, [], [pid 5032] <... unlink resumed>) = 0 [pid 5031] <... openat resumed>) = 3 ./strace-static-x86_64: Process 6131 attached [pid 6129] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6130] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5032] umount2("./42/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(3, "", [pid 6131] set_robust_list(0x55555654e6a0, 24 [pid 6130] <... rseq resumed>) = 0 [pid 6129] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 122 [pid 6131] <... set_robust_list resumed>) = 0 [pid 6130] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6129] <... futex resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./42/file0", [pid 5031] getdents64(3, [pid 6131] chdir("./42" [pid 6130] <... set_robust_list resumed>) = 0 [pid 6129] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6131] <... chdir resumed>) = 0 [pid 6130] rt_sigprocmask(SIG_SETMASK, [], [pid 5032] umount2("./42/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] umount2("./41/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6131] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6130] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6131] <... prctl resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./42/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] newfstatat(AT_FDCWD, "./41/cgroup.cpu", [pid 6131] setpgid(0, 0 [pid 6130] memfd_create("syzkaller", 0 [pid 5032] <... openat resumed>) = 4 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6131] <... setpgid resumed>) = 0 [pid 6130] <... memfd_create resumed>) = 3 [pid 5032] newfstatat(4, "", [pid 5031] unlink("./41/cgroup.cpu" [pid 6131] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 6130] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 6131] <... symlink resumed>) = 0 [pid 5032] getdents64(4, [pid 6130] <... mmap resumed>) = 0x7f4f650a0000 [pid 5031] umount2("./41/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6131] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu" [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6131] <... symlink resumed>) = 0 [pid 5032] getdents64(4, [pid 5031] newfstatat(AT_FDCWD, "./41/binderfs", [pid 6131] symlink("/syzcgroup/net/syz3", "./cgroup.net" [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6131] <... symlink resumed>) = 0 [pid 5032] close(4 [pid 5031] unlink("./41/binderfs" [pid 6131] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... close resumed>) = 0 [pid 5031] <... unlink resumed>) = 0 [pid 6131] <... openat resumed>) = 3 [pid 5032] rmdir("./42/file0" [pid 5031] umount2("./41/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6131] write(3, "1000", 4 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6131] <... write resumed>) = 4 [pid 5032] umount2("./42/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(AT_FDCWD, "./41/file0", [pid 6131] close(3 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6131] <... close resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./42/cgroup", [pid 5031] umount2("./41/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6131] symlink("/dev/binderfs", "./binderfs" [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6131] <... symlink resumed>) = 0 [pid 5032] unlink("./42/cgroup" [pid 5031] openat(AT_FDCWD, "./41/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6131] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] <... unlink resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 6131] <... futex resumed>) = 0 [pid 5032] umount2("./42/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] newfstatat(4, "", [pid 6131] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6131] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5032] newfstatat(AT_FDCWD, "./42/cgroup.net", [pid 5031] getdents64(4, [pid 6131] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6131] <... mprotect resumed>) = 0 [pid 5032] unlink("./42/cgroup.net" [pid 5031] getdents64(4, [pid 6131] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5032] <... unlink resumed>) = 0 [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6131] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5032] getdents64(3, [pid 5031] close(4 [pid 6131] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5032] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5031] <... close resumed>) = 0 ./strace-static-x86_64: Process 6132 attached [pid 5032] close(3 [pid 5031] rmdir("./41/file0" [pid 6132] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6131] <... clone3 resumed> => {parent_tid=[123]}, 88) = 123 [pid 5032] <... close resumed>) = 0 [pid 5031] <... rmdir resumed>) = 0 [pid 6132] <... rseq resumed>) = 0 [pid 6131] rt_sigprocmask(SIG_SETMASK, [], [pid 5032] rmdir("./42" [pid 5031] umount2("./41/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6132] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6131] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6132] <... set_robust_list resumed>) = 0 [pid 6131] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] mkdir("./43", 0777 [pid 5031] newfstatat(AT_FDCWD, "./41/cgroup", [pid 6132] rt_sigprocmask(SIG_SETMASK, [], [pid 6131] <... futex resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6132] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6131] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] unlink("./41/cgroup" [pid 6132] memfd_create("syzkaller", 0 [pid 5032] <... openat resumed>) = 3 [pid 5031] <... unlink resumed>) = 0 [pid 6132] <... memfd_create resumed>) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] umount2("./41/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6132] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6132] <... mmap resumed>) = 0x7f4f650a0000 [pid 5032] close(3 [pid 5031] newfstatat(AT_FDCWD, "./41/cgroup.net", [pid 6112] <... ioctl resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5031] unlink("./41/cgroup.net" [pid 6112] close(4./strace-static-x86_64: Process 6133 attached [pid 5031] <... unlink resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 129 [pid 5031] getdents64(3, [pid 6133] set_robust_list(0x55555654e6a0, 24 [pid 6112] <... close resumed>) = 0 [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6133] <... set_robust_list resumed>) = 0 [pid 6112] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] close(3) = 0 [pid 5031] rmdir("./41" [pid 6133] chdir("./43" [pid 6112] <... futex resumed>) = 0 [pid 6111] close(3 [pid 5031] <... rmdir resumed>) = 0 [pid 5031] mkdir("./42", 0777 [pid 6133] <... chdir resumed>) = 0 [pid 6112] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6111] <... close resumed>) = 0 [pid 5031] <... mkdir resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6133] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6111] close(4 [pid 5031] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6133] <... prctl resumed>) = 0 [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] close(3) = 0 [pid 6133] setpgid(0, 0 [pid 6111] close(5 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6134 attached [pid 6133] <... setpgid resumed>) = 0 [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6134] set_robust_list(0x55555654e6a0, 24 [pid 6133] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 6111] close(6 [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 127 [pid 6134] <... set_robust_list resumed>) = 0 [pid 6133] <... symlink resumed>) = 0 [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6134] chdir("./42" [pid 6133] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 6111] close(7 [pid 6134] <... chdir resumed>) = 0 [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6134] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6133] <... symlink resumed>) = 0 [pid 6111] close(8 [pid 6134] <... prctl resumed>) = 0 [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 6134] setpgid(0, 0 [pid 6111] close(9 [pid 6134] <... setpgid resumed>) = 0 [pid 6133] <... symlink resumed>) = 0 [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6134] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 6133] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6111] close(10 [pid 6133] <... openat resumed>) = 3 [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6134] <... symlink resumed>) = 0 [pid 6111] close(11 [pid 6133] write(3, "1000", 4 [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6134] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 6133] <... write resumed>) = 4 [pid 6111] close(12 [pid 6134] <... symlink resumed>) = 0 [pid 6133] close(3 [pid 6134] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = 0 [pid 6134] <... symlink resumed>) = 0 [pid 6111] close(13 [pid 6133] symlink("/dev/binderfs", "./binderfs" [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6134] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6133] <... symlink resumed>) = 0 [pid 6111] close(14 [pid 6133] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6134] <... openat resumed>) = 3 [pid 6133] <... futex resumed>) = 0 [pid 6111] close(15 [pid 6134] write(3, "1000", 4) = 4 [pid 6133] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6134] close(3) = 0 [pid 6133] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6111] close(16) = -1 EBADF (Bad file descriptor) [pid 6134] symlink("/dev/binderfs", "./binderfs" [pid 6133] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6111] close(17) = -1 EBADF (Bad file descriptor) [pid 6133] <... mprotect resumed>) = 0 [pid 6111] close(18 [pid 6134] <... symlink resumed>) = 0 [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6111] close(19 [pid 6134] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6133] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6134] <... futex resumed>) = 0 [pid 6133] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 6111] close(20./strace-static-x86_64: Process 6135 attached [pid 6134] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6135] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6133] <... clone3 resumed> => {parent_tid=[130]}, 88) = 130 [pid 6135] <... rseq resumed>) = 0 [pid 6134] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6133] rt_sigprocmask(SIG_SETMASK, [], [pid 6111] close(21 [pid 6135] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6134] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6133] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6135] <... set_robust_list resumed>) = 0 [pid 6134] <... mprotect resumed>) = 0 [pid 6133] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6111] close(22 [pid 6135] rt_sigprocmask(SIG_SETMASK, [], [pid 6134] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6133] <... futex resumed>) = 0 [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6135] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6134] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6111] close(23 [pid 6135] memfd_create("syzkaller", 0 [pid 6134] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) ./strace-static-x86_64: Process 6136 attached [pid 6135] <... memfd_create resumed>) = 3 [pid 6111] close(24 [pid 6136] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6136] <... rseq resumed>) = 0 [pid 6135] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6134] <... clone3 resumed> => {parent_tid=[128]}, 88) = 128 [pid 6111] close(25 [pid 6136] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6135] <... mmap resumed>) = 0x7f4f650a0000 [pid 6134] rt_sigprocmask(SIG_SETMASK, [], [pid 6111] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6136] <... set_robust_list resumed>) = 0 [pid 6134] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6136] rt_sigprocmask(SIG_SETMASK, [], [pid 6134] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6111] close(26 [pid 5033] kill(-126, SIGKILL [pid 6136] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6134] <... futex resumed>) = 0 [pid 6126] <... futex resumed>) = ? [pid 6112] <... futex resumed>) = ? [pid 6111] <... close resumed>) = ? [pid 5033] <... kill resumed>) = 0 [pid 6134] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6136] memfd_create("syzkaller", 0 [pid 6126] +++ killed by SIGKILL +++ [pid 5033] kill(126, SIGKILL [pid 6136] <... memfd_create resumed>) = 3 [pid 6112] +++ killed by SIGKILL +++ [pid 6111] +++ killed by SIGKILL +++ [pid 5033] <... kill resumed>) = 0 [pid 6136] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=126, si_uid=0, si_status=SIGKILL, si_utime=7 /* 0.07 s */, si_stime=62 /* 0.62 s */} --- [pid 6136] <... mmap resumed>) = 0x7f4f650a0000 [pid 5033] umount2("./43", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./43", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5033] umount2("./43/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./43/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./43/cgroup.cpu") = 0 [pid 5033] umount2("./43/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./43/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./43/binderfs") = 0 [pid 5033] umount2("./43/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./43/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./43/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./43/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./43/file0") = 0 [pid 5033] umount2("./43/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./43/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./43/cgroup") = 0 [pid 5033] umount2("./43/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./43/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./43/cgroup.net") = 0 [pid 5033] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./43") = 0 [pid 5033] mkdir("./44", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6137 attached , child_tidptr=0x55555654e690) = 129 [pid 6137] set_robust_list(0x55555654e6a0, 24) = 0 [pid 6137] chdir("./44") = 0 [pid 6137] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6137] setpgid(0, 0) = 0 [pid 6137] symlink("/syzcgroup/unified/syz2", "./cgroup") = 0 [pid 6137] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu") = 0 [pid 6137] symlink("/syzcgroup/net/syz2", "./cgroup.net") = 0 [pid 6137] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6137] write(3, "1000", 4) = 4 [pid 6137] close(3) = 0 [pid 6137] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6137] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6137] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 6137] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6137] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6137] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6138 attached [pid 6138] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6137] <... clone3 resumed> => {parent_tid=[130]}, 88) = 130 [pid 6138] <... rseq resumed>) = 0 [pid 6137] rt_sigprocmask(SIG_SETMASK, [], [pid 6138] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6137] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6138] <... set_robust_list resumed>) = 0 [pid 6138] rt_sigprocmask(SIG_SETMASK, [], [pid 6137] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6138] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6137] <... futex resumed>) = 0 [pid 6137] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6138] memfd_create("syzkaller", 0) = 3 [pid 6138] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 6128] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6130] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6132] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6135] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6136] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6138] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6128] <... write resumed>) = 16777216 [pid 6128] munmap(0x7f4f650a0000, 16777216 [pid 6130] <... write resumed>) = 16777216 [pid 6130] munmap(0x7f4f650a0000, 16777216 [pid 6128] <... munmap resumed>) = 0 [pid 6128] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6128] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6128] close(3) = 0 [pid 6128] mkdir("./file0", 0777) = 0 [ 314.633905][ T6128] loop0: detected capacity change from 0 to 32768 [ 314.710269][ T6128] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 314.727373][ T6128] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [pid 6128] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6132] <... write resumed>) = 16777216 [pid 6132] munmap(0x7f4f650a0000, 16777216 [pid 6130] <... munmap resumed>) = 0 [pid 6130] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6130] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6130] close(3) = 0 [pid 6130] mkdir("./file0", 0777) = 0 [ 314.789239][ T6128] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 314.800559][ T6130] loop5: detected capacity change from 0 to 32768 [pid 6130] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6135] <... write resumed>) = 16777216 [ 314.839430][ T3750] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 314.853819][ T3750] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 314.871310][ T6130] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 314.930736][ T6130] CPU: 0 PID: 6130 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 314.941246][ T6130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 314.951350][ T6130] Call Trace: [ 314.954662][ T6130] [ 314.957629][ T6130] dump_stack_lvl+0x136/0x150 [ 314.962378][ T6130] sysfs_warn_dup+0x80/0xa0 [ 314.967033][ T6130] sysfs_create_dir_ns+0x237/0x290 [ 314.972204][ T6130] ? sysfs_create_mount_point+0xb0/0xb0 [ 314.977407][ T3750] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 123ms [ 314.977793][ T6130] ? spin_bug+0x1c0/0x1c0 [ 314.989636][ T6130] ? do_raw_spin_unlock+0x175/0x230 [ 314.993061][ T3750] gfs2: fsid=syz:syz.0: jid=0: Done [ 314.994877][ T6130] kobject_add_internal+0x2c9/0x9c0 [ 315.000168][ T6128] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 315.005278][ T6130] ? kfree+0x11/0x150 [ 315.016529][ T6130] kobject_init_and_add+0x101/0x170 [ 315.021793][ T6130] ? kobject_create_and_add+0xf0/0xf0 [ 315.027234][ T6130] ? lockdep_init_map_type+0x21e/0x810 [ 315.032755][ T6130] ? lockdep_hardirqs_on+0x7d/0x100 [ 315.038012][ T6130] ? lockdep_init_map_type+0x21e/0x810 [ 315.043529][ T6130] gfs2_sys_fs_add+0x1d5/0x450 [ 315.048428][ T6130] ? recover_store+0x170/0x170 [ 315.053329][ T6130] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 315.059113][ T6130] gfs2_fill_super+0x1312/0x2aa0 [ 315.064104][ T6130] ? gfs2_reconfigure+0xf90/0xf90 [ 315.069182][ T6130] ? snprintf+0xbf/0x100 [ 315.073487][ T6130] ? vsprintf+0x30/0x30 [ 315.077793][ T6130] ? wait_for_completion_io_timeout+0x20/0x20 [ 315.083930][ T6130] ? set_blocksize+0x2d8/0x370 [ 315.088754][ T6130] get_tree_bdev+0x43e/0x7d0 [ 315.093409][ T6130] ? gfs2_reconfigure+0xf90/0xf90 [ 315.096797][ T6135] loop1: detected capacity change from 0 to 32768 [ 315.098469][ T6130] gfs2_get_tree+0x4e/0x270 [ 315.105272][ T6132] loop3: detected capacity change from 0 to 32768 [ 315.109472][ T6130] vfs_get_tree+0x8d/0x350 [ 315.109515][ T6130] path_mount+0x136e/0x1e70 [ 315.109554][ T6130] ? putname+0x102/0x140 [ 315.129332][ T6130] ? lockdep_hardirqs_on+0x7d/0x100 [ 315.134707][ T6130] ? finish_automount+0xa30/0xa30 [ 315.139828][ T6130] ? putname+0x102/0x140 [ 315.144132][ T6130] __x64_sys_mount+0x283/0x300 [ 315.148960][ T6130] ? copy_mnt_ns+0xb30/0xb30 [ 315.153623][ T6130] ? lockdep_hardirqs_on+0x7d/0x100 [ 315.158883][ T6130] ? _raw_spin_unlock_irq+0x2e/0x50 [ 315.164177][ T6130] ? ptrace_notify+0xfe/0x140 [ 315.168938][ T6130] do_syscall_64+0x39/0xb0 [ 315.173419][ T6130] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 315.179392][ T6130] RIP: 0033:0x7f4f6dd11c5a [ 315.183852][ T6130] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 315.188323][ T6132] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 315.203489][ T6130] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 315.203526][ T6130] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [pid 6135] munmap(0x7f4f650a0000, 16777216 [pid 6138] <... write resumed>) = 16777216 [pid 6136] <... write resumed>) = 16777216 [pid 6135] <... munmap resumed>) = 0 [pid 6132] <... munmap resumed>) = 0 [pid 6128] <... mount resumed>) = 0 [pid 6136] munmap(0x7f4f650a0000, 16777216 [pid 6135] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6132] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6128] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6138] munmap(0x7f4f650a0000, 16777216 [pid 6135] <... openat resumed>) = 4 [pid 6132] <... openat resumed>) = 4 [pid 6128] <... openat resumed>) = 3 [pid 6135] ioctl(4, LOOP_SET_FD, 3 [pid 6132] ioctl(4, LOOP_SET_FD, 3 [pid 6128] chdir("./file0" [pid 6135] <... ioctl resumed>) = 0 [pid 6128] <... chdir resumed>) = 0 [pid 6128] ioctl(4, LOOP_CLR_FD) = 0 [pid 6128] close(4) = 0 [pid 6128] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6128] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6135] close(3) = 0 [pid 6135] mkdir("./file0", 0777) = 0 [pid 6135] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6132] <... ioctl resumed>) = 0 [pid 6132] close(3) = 0 [pid 6132] mkdir("./file0", 0777) = 0 [ 315.203549][ T6130] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 315.203572][ T6130] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 315.244009][ T6130] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 315.252026][ T6130] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 315.260053][ T6130] [pid 6132] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6127] <... futex resumed>) = 0 [pid 6127] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6128] <... futex resumed>) = 0 [pid 6127] <... futex resumed>) = 1 [pid 6128] openat(AT_FDCWD, "./file0", O_RDONLY [ 315.271510][ T6130] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 315.284393][ T6132] CPU: 0 PID: 6132 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 315.289793][ T6135] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 315.295853][ T6132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 315.295875][ T6132] Call Trace: [ 315.295884][ T6132] [ 315.295896][ T6132] dump_stack_lvl+0x136/0x150 [ 315.306518][ T6128] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 315.313324][ T6132] sysfs_warn_dup+0x80/0xa0 [ 315.336128][ T6128] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 315.336128][ T6128] inode = 12 2341 [ 315.336128][ T6128] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 315.337074][ T6132] sysfs_create_dir_ns+0x237/0x290 [ 315.357788][ T6130] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 315.360846][ T6132] ? sysfs_create_mount_point+0xb0/0xb0 [ 315.373077][ T6132] ? spin_bug+0x1c0/0x1c0 [ 315.377470][ T6132] ? do_raw_spin_unlock+0x175/0x230 [pid 6127] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6136] <... munmap resumed>) = 0 [pid 6136] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 6136] ioctl(4, LOOP_SET_FD, 3 [pid 6138] <... munmap resumed>) = 0 [ 315.382728][ T6132] kobject_add_internal+0x2c9/0x9c0 [ 315.387987][ T6132] ? kfree+0x11/0x150 [ 315.392023][ T6132] kobject_init_and_add+0x101/0x170 [ 315.397283][ T6132] ? kobject_create_and_add+0xf0/0xf0 [ 315.402732][ T6132] ? lockdep_init_map_type+0x21e/0x810 [ 315.408264][ T6132] ? lockdep_hardirqs_on+0x7d/0x100 [ 315.413530][ T6132] ? lockdep_init_map_type+0x21e/0x810 [ 315.416962][ T6136] loop4: detected capacity change from 0 to 32768 [ 315.419030][ T6132] gfs2_sys_fs_add+0x1d5/0x450 [pid 6136] <... ioctl resumed>) = 0 [pid 6136] close(3) = 0 [pid 6136] mkdir("./file0", 0777) = 0 [pid 6136] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6138] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 6138] ioctl(4, LOOP_SET_FD, 3 [pid 6127] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 315.419068][ T6132] ? recover_store+0x170/0x170 [ 315.435063][ T6132] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 315.440849][ T6132] gfs2_fill_super+0x1312/0x2aa0 [ 315.445857][ T6132] ? gfs2_reconfigure+0xf90/0xf90 [ 315.450937][ T6132] ? snprintf+0xbf/0x100 [ 315.454444][ T6138] loop2: detected capacity change from 0 to 32768 [ 315.455215][ T6132] ? vsprintf+0x30/0x30 [ 315.455254][ T6132] ? wait_for_completion_io_timeout+0x20/0x20 [ 315.466037][ T6128] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [pid 6138] <... ioctl resumed>) = 0 [pid 6138] close(3) = 0 [pid 6138] mkdir("./file0", 0777) = 0 [ 315.471895][ T6132] ? set_blocksize+0x2d8/0x370 [ 315.471940][ T6132] get_tree_bdev+0x43e/0x7d0 [ 315.490392][ T6132] ? gfs2_reconfigure+0xf90/0xf90 [ 315.495469][ T6132] gfs2_get_tree+0x4e/0x270 [ 315.500013][ T6132] vfs_get_tree+0x8d/0x350 [ 315.504513][ T6132] path_mount+0x136e/0x1e70 [ 315.509161][ T6132] ? putname+0x102/0x140 [ 315.513460][ T6132] ? lockdep_hardirqs_on+0x7d/0x100 [ 315.518713][ T6132] ? finish_automount+0xa30/0xa30 [ 315.523900][ T6132] ? putname+0x102/0x140 [ 315.528612][ T6132] __x64_sys_mount+0x283/0x300 [pid 6138] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6127] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 315.533418][ T6132] ? copy_mnt_ns+0xb30/0xb30 [ 315.538056][ T6132] ? lockdep_hardirqs_on+0x7d/0x100 [ 315.543328][ T6132] ? _raw_spin_unlock_irq+0x2e/0x50 [ 315.547940][ T6128] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6128 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 315.548605][ T6132] ? ptrace_notify+0xfe/0x140 [ 315.548663][ T6132] do_syscall_64+0x39/0xb0 [ 315.567820][ T6132] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 315.573798][ T6132] RIP: 0033:0x7f4f6dd11c5a [ 315.578256][ T6132] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 315.585355][ T6128] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 315.597889][ T6132] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 315.597922][ T6132] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 315.597942][ T6132] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [pid 6130] <... mount resumed>) = -1 EEXIST (File exists) [pid 6127] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [ 315.597963][ T6132] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 315.597982][ T6132] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 315.598001][ T6132] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 315.598025][ T6132] [ 315.625932][ T6135] CPU: 0 PID: 6135 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 315.632253][ T6138] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 315.639529][ T6135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 315.639551][ T6135] Call Trace: [ 315.639562][ T6135] [ 315.639579][ T6135] dump_stack_lvl+0x136/0x150 [ 315.647960][ T6136] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 315.655509][ T6135] sysfs_warn_dup+0x80/0xa0 [ 315.709424][ T6135] sysfs_create_dir_ns+0x237/0x290 [ 315.714601][ T6135] ? sysfs_create_mount_point+0xb0/0xb0 [ 315.720204][ T6135] ? spin_bug+0x1c0/0x1c0 [ 315.724591][ T6135] ? do_raw_spin_unlock+0x175/0x230 [ 315.729865][ T6135] kobject_add_internal+0x2c9/0x9c0 [ 315.735136][ T6135] ? kfree+0x11/0x150 [ 315.739169][ T6135] kobject_init_and_add+0x101/0x170 [ 315.744415][ T6135] ? kobject_create_and_add+0xf0/0xf0 [ 315.749838][ T6135] ? lockdep_init_map_type+0x21e/0x810 [ 315.755355][ T6135] ? lockdep_hardirqs_on+0x7d/0x100 [ 315.760607][ T6135] ? lockdep_init_map_type+0x21e/0x810 [ 315.766135][ T6135] gfs2_sys_fs_add+0x1d5/0x450 [ 315.770946][ T6135] ? recover_store+0x170/0x170 [ 315.775837][ T6135] ? workqueue_sysfs_register+0x3f0/0x3f0 [pid 6130] ioctl(4, LOOP_CLR_FD [pid 6127] <... mmap resumed>) = 0x7f4f6607f000 [ 315.781618][ T6135] gfs2_fill_super+0x1312/0x2aa0 [ 315.786612][ T6135] ? gfs2_reconfigure+0xf90/0xf90 [ 315.791720][ T6135] ? snprintf+0xbf/0x100 [ 315.796041][ T6135] ? vsprintf+0x30/0x30 [ 315.800272][ T6135] ? wait_for_completion_io_timeout+0x20/0x20 [ 315.806401][ T6135] ? set_blocksize+0x2d8/0x370 [ 315.811223][ T6135] get_tree_bdev+0x43e/0x7d0 [ 315.815874][ T6135] ? gfs2_reconfigure+0xf90/0xf90 [ 315.820953][ T6135] gfs2_get_tree+0x4e/0x270 [ 315.825504][ T6135] vfs_get_tree+0x8d/0x350 [ 315.830244][ T6135] path_mount+0x136e/0x1e70 [ 315.834810][ T6135] ? putname+0x102/0x140 [ 315.839115][ T6135] ? lockdep_hardirqs_on+0x7d/0x100 [ 315.844351][ T6135] ? finish_automount+0xa30/0xa30 [ 315.846143][ T6128] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 315.849398][ T6135] ? putname+0x102/0x140 [ 315.849436][ T6135] __x64_sys_mount+0x283/0x300 [ 315.865838][ T6135] ? copy_mnt_ns+0xb30/0xb30 [ 315.870501][ T6135] ? lockdep_hardirqs_on+0x7d/0x100 [ 315.875766][ T6135] ? _raw_spin_unlock_irq+0x2e/0x50 [pid 6127] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [ 315.881031][ T6135] ? ptrace_notify+0xfe/0x140 [ 315.885774][ T6135] do_syscall_64+0x39/0xb0 [ 315.890244][ T6135] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 315.892695][ T6128] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 315.896278][ T6135] RIP: 0033:0x7f4f6dd11c5a [ 315.896305][ T6135] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [pid 6127] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 315.896337][ T6135] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 315.896369][ T6135] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 315.896391][ T6135] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 315.921113][ T6128] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 315.929166][ T6135] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 315.929191][ T6135] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 315.929212][ T6135] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 315.929238][ T6135] [ 315.931882][ T6132] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 315.952014][ T6138] CPU: 1 PID: 6138 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 315.967580][ T6132] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 315.968367][ T6138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 316.028554][ T6138] Call Trace: [ 316.031854][ T6138] [ 316.034802][ T6138] dump_stack_lvl+0x136/0x150 [ 316.039535][ T6138] sysfs_warn_dup+0x80/0xa0 [ 316.044085][ T6138] sysfs_create_dir_ns+0x237/0x290 [ 316.049245][ T6138] ? sysfs_create_mount_point+0xb0/0xb0 [ 316.054825][ T6138] ? spin_bug+0x1c0/0x1c0 [ 316.059195][ T6138] ? do_raw_spin_unlock+0x175/0x230 [ 316.064467][ T6138] kobject_add_internal+0x2c9/0x9c0 [ 316.069695][ T6138] ? kfree+0x11/0x150 [ 316.073705][ T6138] kobject_init_and_add+0x101/0x170 [ 316.078965][ T6138] ? kobject_create_and_add+0xf0/0xf0 [ 316.084378][ T6138] ? lockdep_init_map_type+0x21e/0x810 [ 316.089873][ T6138] ? lockdep_hardirqs_on+0x7d/0x100 [ 316.095104][ T6138] ? lockdep_init_map_type+0x21e/0x810 [ 316.100604][ T6138] gfs2_sys_fs_add+0x1d5/0x450 [ 316.105407][ T6138] ? recover_store+0x170/0x170 [ 316.107237][ T6128] gfs2: fsid=syz:syz.0: File system withdrawn [ 316.110182][ T6138] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 316.116506][ T6135] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 316.121967][ T6138] gfs2_fill_super+0x1312/0x2aa0 [ 316.140947][ T6138] ? gfs2_reconfigure+0xf90/0xf90 [ 316.146035][ T6138] ? snprintf+0xbf/0x100 [ 316.150336][ T6138] ? vsprintf+0x30/0x30 [ 316.154540][ T6138] ? wait_for_completion_io_timeout+0x20/0x20 [ 316.160653][ T6138] ? set_blocksize+0x2d8/0x370 [ 316.165454][ T6138] get_tree_bdev+0x43e/0x7d0 [ 316.170081][ T6138] ? gfs2_reconfigure+0xf90/0xf90 [ 316.175139][ T6138] gfs2_get_tree+0x4e/0x270 [ 316.179688][ T6138] vfs_get_tree+0x8d/0x350 [ 316.184133][ T6138] path_mount+0x136e/0x1e70 [ 316.188669][ T6138] ? putname+0x102/0x140 [ 316.192938][ T6138] ? lockdep_hardirqs_on+0x7d/0x100 [ 316.198181][ T6138] ? finish_automount+0xa30/0xa30 [ 316.203239][ T6138] ? putname+0x102/0x140 [ 316.207511][ T6138] __x64_sys_mount+0x283/0x300 [ 316.212315][ T6138] ? copy_mnt_ns+0xb30/0xb30 [ 316.216938][ T6138] ? lockdep_hardirqs_on+0x7d/0x100 [ 316.222184][ T6138] ? _raw_spin_unlock_irq+0x2e/0x50 [ 316.227422][ T6138] ? ptrace_notify+0xfe/0x140 [ 316.232668][ T6138] do_syscall_64+0x39/0xb0 [ 316.237102][ T6138] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 316.243041][ T6138] RIP: 0033:0x7f4f6dd11c5a [ 316.247480][ T6138] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 316.267114][ T6138] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 316.275553][ T6138] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 316.283551][ T6138] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 316.291549][ T6138] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 316.299546][ T6138] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 316.307566][ T6138] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 316.315652][ T6138] [ 316.323434][ T6136] CPU: 0 PID: 6136 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [pid 6127] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6132] <... mount resumed>) = -1 EEXIST (File exists) [ 316.333920][ T6136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 316.338254][ T6135] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 316.343986][ T6136] Call Trace: [ 316.343997][ T6136] [ 316.356801][ T6136] dump_stack_lvl+0x136/0x150 [ 316.361643][ T6136] sysfs_warn_dup+0x80/0xa0 [ 316.366320][ T6136] sysfs_create_dir_ns+0x237/0x290 [ 316.371529][ T6136] ? sysfs_create_mount_point+0xb0/0xb0 [ 316.377131][ T6136] ? spin_bug+0x1c0/0x1c0 [ 316.381531][ T6136] ? do_raw_spin_unlock+0x175/0x230 [pid 6127] <... clone3 resumed> => {parent_tid=[133]}, 88) = 133 [pid 6127] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6127] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 316.386796][ T6136] kobject_add_internal+0x2c9/0x9c0 [ 316.392054][ T6136] ? kfree+0x11/0x150 [ 316.396088][ T6136] kobject_init_and_add+0x101/0x170 [ 316.401336][ T6136] ? kobject_create_and_add+0xf0/0xf0 [ 316.406767][ T6136] ? lockdep_init_map_type+0x21e/0x810 [ 316.412298][ T6136] ? lockdep_hardirqs_on+0x7d/0x100 [ 316.417562][ T6136] ? lockdep_init_map_type+0x21e/0x810 [ 316.423088][ T6136] gfs2_sys_fs_add+0x1d5/0x450 [ 316.427912][ T6136] ? recover_store+0x170/0x170 [pid 6127] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 6127] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6127] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6605e000 [pid 6127] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE) = 0 [ 316.432734][ T6136] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 316.438525][ T6136] gfs2_fill_super+0x1312/0x2aa0 [ 316.443539][ T6136] ? gfs2_reconfigure+0xf90/0xf90 [ 316.448626][ T6136] ? snprintf+0xbf/0x100 [ 316.452919][ T6136] ? vsprintf+0x30/0x30 [ 316.457162][ T6136] ? wait_for_completion_io_timeout+0x20/0x20 [ 316.463291][ T6136] ? set_blocksize+0x2d8/0x370 [ 316.468119][ T6136] get_tree_bdev+0x43e/0x7d0 [ 316.472772][ T6136] ? gfs2_reconfigure+0xf90/0xf90 [ 316.477935][ T6136] gfs2_get_tree+0x4e/0x270 [ 316.482505][ T6136] vfs_get_tree+0x8d/0x350 [pid 6127] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6127] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} => {parent_tid=[134]}, 88) = 134 [pid 6127] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 ./strace-static-x86_64: Process 6146 attached [pid 6127] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6127] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6146] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053) = 0 [pid 6146] set_robust_list(0x7f4f6607e9a0, 24) = 0 [pid 6146] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [ 316.486993][ T6136] path_mount+0x136e/0x1e70 [ 316.491572][ T6136] ? putname+0x102/0x140 [ 316.495863][ T6136] ? lockdep_hardirqs_on+0x7d/0x100 [ 316.501126][ T6136] ? finish_automount+0xa30/0xa30 [ 316.506230][ T6136] ? putname+0x102/0x140 [ 316.510527][ T6136] __x64_sys_mount+0x283/0x300 [ 316.515347][ T6136] ? copy_mnt_ns+0xb30/0xb30 [ 316.520089][ T6136] ? lockdep_hardirqs_on+0x7d/0x100 [ 316.525340][ T6136] ? _raw_spin_unlock_irq+0x2e/0x50 [ 316.530604][ T6136] ? ptrace_notify+0xfe/0x140 [pid 6146] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH) = -1 EIO (Input/output error) [pid 6146] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6127] <... futex resumed>) = 0 [pid 6146] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6132] ioctl(4, LOOP_CLR_FD./strace-static-x86_64: Process 6145 attached [ 316.535349][ T6136] do_syscall_64+0x39/0xb0 [ 316.539823][ T6136] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 316.545791][ T6136] RIP: 0033:0x7f4f6dd11c5a [ 316.550240][ T6136] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 316.569904][ T6136] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 316.578461][ T6136] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [pid 6145] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053) = 0 [pid 6145] set_robust_list(0x7f4f6609f9a0, 24) = 0 [pid 6145] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6145] ioctl(0, VFAT_IOCTL_READDIR_SHORT, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 6135] <... mount resumed>) = -1 EEXIST (File exists) [ 316.586481][ T6136] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 316.594519][ T6136] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 316.602559][ T6136] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 316.610582][ T6136] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 316.618605][ T6136] [ 316.622963][ T6138] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 316.627599][ T6128] CPU: 1 PID: 6128 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 316.646097][ T6138] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 316.647413][ T6128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 316.664041][ T6128] Call Trace: [ 316.667364][ T6128] [ 316.670326][ T6128] dump_stack_lvl+0x136/0x150 [ 316.675071][ T6128] gfs2_withdraw+0xb33/0x1060 [ 316.679801][ T6128] ? gfs2_consist_inode_i+0x104/0x150 [ 316.685222][ T6128] gfs2_dirent_scan+0x32a/0x3d0 [ 316.690115][ T6128] ? gfs2_dirent_prev+0x210/0x210 [ 316.695178][ T6128] ? gfs2_dirent_prev+0x210/0x210 [ 316.700239][ T6128] gfs2_dirent_search+0x47d/0x580 [ 316.705301][ T6128] ? get_first_leaf+0x190/0x190 [ 316.710195][ T6128] ? gfs2_permission+0x256/0x3e0 [ 316.715162][ T6128] gfs2_dir_search+0x8d/0x2d0 [ 316.719875][ T6128] ? gfs2_dir_read+0x14e0/0x14e0 [ 316.724844][ T6128] gfs2_lookupi+0x481/0x640 [ 316.729377][ T6128] ? gfs2_lookup_by_inum+0x100/0x100 [ 316.734701][ T6128] ? __gfs2_lookup+0x83/0x280 [ 316.739405][ T6128] ? d_alloc_parallel+0x693/0x1530 [ 316.744548][ T6128] __gfs2_lookup+0x83/0x280 [ 316.749082][ T6128] ? gfs2_lookupi+0x640/0x640 [ 316.753794][ T6128] ? __d_lookup_rcu+0x4e0/0x4e0 [ 316.758681][ T6128] ? __d_lookup+0x289/0x4c0 [ 316.763234][ T6128] gfs2_atomic_open+0xde/0x250 [ 316.768042][ T6128] ? __gfs2_lookup+0x280/0x280 [ 316.772850][ T6128] lookup_open.isra.0+0xce2/0x1400 [ 316.778003][ T6128] ? link_path_walk.part.0+0xd60/0xd60 [ 316.783506][ T6128] ? lookup_fast+0x14e/0x520 [ 316.788137][ T6128] path_openat+0x969/0x2710 [ 316.792687][ T6128] ? path_lookupat+0x840/0x840 [ 316.797486][ T6128] do_filp_open+0x1ba/0x410 [ 316.802027][ T6128] ? may_open_dev+0xf0/0xf0 [ 316.806569][ T6128] ? find_held_lock+0x2d/0x110 [ 316.811368][ T6128] ? do_raw_spin_lock+0x124/0x2b0 [ 316.816442][ T6128] ? spin_bug+0x1c0/0x1c0 [ 316.820808][ T6128] ? _raw_spin_unlock+0x28/0x40 [ 316.825702][ T6128] ? alloc_fd+0x2e4/0x750 [ 316.830078][ T6128] do_sys_openat2+0x160/0x1c0 [ 316.834795][ T6128] ? build_open_flags+0x720/0x720 [ 316.839857][ T6128] ? ptrace_notify+0xfe/0x140 [ 316.844570][ T6128] ? lock_downgrade+0x690/0x690 [ 316.849448][ T6128] __x64_sys_openat+0x143/0x1f0 [ 316.854332][ T6128] ? __ia32_sys_open+0x1c0/0x1c0 [ 316.859304][ T6128] ? _raw_spin_unlock_irq+0x23/0x50 [ 316.864537][ T6128] ? lockdep_hardirqs_on+0x7d/0x100 [ 316.869771][ T6128] ? _raw_spin_unlock_irq+0x2e/0x50 [ 316.875089][ T6128] ? ptrace_notify+0xfe/0x140 [ 316.879908][ T6128] do_syscall_64+0x39/0xb0 [ 316.884373][ T6128] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 316.890322][ T6128] RIP: 0033:0x7f4f6dd107f9 [ 316.894781][ T6128] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 316.914510][ T6128] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 316.922954][ T6128] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 316.930951][ T6128] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [pid 6135] ioctl(4, LOOP_CLR_FD [pid 6145] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6138] <... mount resumed>) = -1 EEXIST (File exists) [ 316.938952][ T6128] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 316.946959][ T6128] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 316.954989][ T6128] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 316.962989][ T6128] [pid 6138] ioctl(4, LOOP_CLR_FD [pid 6129] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6131] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6131] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6145] <... futex resumed>) = 0 [pid 6131] <... futex resumed>) = 0 [pid 6129] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6145] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [ 316.979325][ T6136] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 6131] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6129] <... futex resumed>) = 0 [pid 6131] <... mmap resumed>) = 0x7f4f6607f000 [pid 6131] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6131] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6131] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 6147 attached [pid 6129] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6147] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6131] <... clone3 resumed> => {parent_tid=[124]}, 88) = 124 [pid 6129] <... mmap resumed>) = 0x7f4f6607f000 [pid 6147] <... rseq resumed>) = 0 [pid 6131] rt_sigprocmask(SIG_SETMASK, [], [pid 6129] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6147] set_robust_list(0x7f4f6609f9a0, 24 [pid 6131] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6129] <... mprotect resumed>) = 0 [pid 6147] <... set_robust_list resumed>) = 0 [pid 6131] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6147] rt_sigprocmask(SIG_SETMASK, [], [pid 6131] <... futex resumed>) = 0 [pid 6147] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6131] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6147] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 6129] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6128] <... openat resumed>) = -1 EIO (Input/output error) [pid 6147] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6129] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6147] <... futex resumed>) = 1 [pid 6136] <... mount resumed>) = -1 EEXIST (File exists) [pid 6131] <... futex resumed>) = 0 [pid 6129] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6128] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6147] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6136] ioctl(4, LOOP_CLR_FD [pid 6131] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6128] <... futex resumed>) = 0 [pid 6127] close(3./strace-static-x86_64: Process 6148 attached [pid 6147] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6131] <... futex resumed>) = 0 [pid 6129] <... clone3 resumed> => {parent_tid=[132]}, 88) = 132 [pid 6128] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6127] <... close resumed>) = 0 [pid 6148] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6147] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6131] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6129] rt_sigprocmask(SIG_SETMASK, [], [ 317.012096][ T6136] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 6127] close(4 [pid 6148] <... rseq resumed>) = 0 [pid 6147] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6129] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6127] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6127] close(5 [pid 6148] set_robust_list(0x7f4f6609f9a0, 24) = 0 [pid 6148] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6148] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6127] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6127] close(6) = -1 EBADF (Bad file descriptor) [pid 6127] close(7) = -1 EBADF (Bad file descriptor) [pid 6127] close(8) = -1 EBADF (Bad file descriptor) [pid 6127] close(9) = -1 EBADF (Bad file descriptor) [pid 6127] close(10 [pid 6147] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6131] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6129] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6127] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6127] close(11) = -1 EBADF (Bad file descriptor) [pid 6127] close(12) = -1 EBADF (Bad file descriptor) [pid 6148] <... futex resumed>) = 0 [pid 6129] <... futex resumed>) = 1 [pid 6127] close(13 [pid 6148] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6127] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6148] <... openat resumed>) = 3 [pid 6129] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6127] close(14 [pid 6148] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6127] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6148] <... futex resumed>) = 0 [pid 6129] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6127] close(15 [pid 6148] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6147] <... futex resumed>) = 0 [pid 6131] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6147] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6131] <... futex resumed>) = 0 [pid 6147] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6131] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6147] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6131] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6147] <... futex resumed>) = 0 [pid 6147] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6127] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6127] close(16) = -1 EBADF (Bad file descriptor) [pid 6127] close(17) = -1 EBADF (Bad file descriptor) [pid 6127] close(18) = -1 EBADF (Bad file descriptor) [pid 6127] close(19) = -1 EBADF (Bad file descriptor) [pid 6127] close(20) = -1 EBADF (Bad file descriptor) [pid 6127] close(21) = -1 EBADF (Bad file descriptor) [pid 6127] close(22) = -1 EBADF (Bad file descriptor) [pid 6127] close(23) = -1 EBADF (Bad file descriptor) [pid 6133] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6127] close(24 [pid 6133] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6127] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... futex resumed>) = 0 [pid 6127] close(25 [pid 6133] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6129] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6148] <... futex resumed>) = 0 [pid 6129] <... futex resumed>) = 1 [pid 6148] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6129] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6148] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6148] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6129] <... futex resumed>) = 0 [pid 6148] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6129] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6148] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6129] <... futex resumed>) = 0 [pid 6148] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6129] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6148] <... futex resumed>) = 0 [pid 6129] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6148] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6133] <... mmap resumed>) = 0x7f4f6607f000 [pid 6133] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6127] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... mprotect resumed>) = 0 [pid 6127] close(26 [pid 6133] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6127] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6127] close(27 [pid 6133] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6127] <... close resumed>) = -1 EBADF (Bad file descriptor) ./strace-static-x86_64: Process 6149 attached [pid 6127] close(28 [pid 6149] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6134] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6133] <... clone3 resumed> => {parent_tid=[131]}, 88) = 131 [pid 6127] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6149] <... rseq resumed>) = 0 [pid 6134] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6133] rt_sigprocmask(SIG_SETMASK, [], [pid 6127] close(29 [pid 6149] set_robust_list(0x7f4f6609f9a0, 24 [pid 6134] <... futex resumed>) = 0 [pid 6133] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6127] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6149] <... set_robust_list resumed>) = 0 [pid 6134] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6133] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6127] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6149] rt_sigprocmask(SIG_SETMASK, [], [pid 6134] <... mmap resumed>) = 0x7f4f6607f000 [pid 6133] <... futex resumed>) = 0 [pid 6127] <... write resumed>) = 156 [pid 6149] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6134] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6133] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6127] exit_group(0 [pid 6149] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6145] <... futex resumed>) = ? [pid 6134] <... mprotect resumed>) = 0 [pid 6128] <... futex resumed>) = ? [pid 6127] <... exit_group resumed>) = ? [pid 6149] <... openat resumed>) = 3 [pid 6145] +++ exited with 0 +++ [pid 6134] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6128] +++ exited with 0 +++ [pid 6149] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6134] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6149] <... futex resumed>) = 1 [pid 6134] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6133] <... futex resumed>) = 0 ./strace-static-x86_64: Process 6150 attached [pid 6149] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6133] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6150] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6149] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6134] <... clone3 resumed> => {parent_tid=[129]}, 88) = 129 [pid 6133] <... futex resumed>) = 0 [pid 6150] <... rseq resumed>) = 0 [pid 6149] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6134] rt_sigprocmask(SIG_SETMASK, [], [pid 6133] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6150] set_robust_list(0x7f4f6609f9a0, 24 [pid 6149] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6134] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6150] <... set_robust_list resumed>) = 0 [pid 6149] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6134] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6150] rt_sigprocmask(SIG_SETMASK, [], [pid 6149] <... futex resumed>) = 1 [pid 6134] <... futex resumed>) = 0 [pid 6133] <... futex resumed>) = 0 [pid 6150] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6149] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6134] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6133] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6150] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6149] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6133] <... futex resumed>) = 0 [pid 6150] <... openat resumed>) = 3 [pid 6149] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6133] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6150] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6149] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6150] <... futex resumed>) = 1 [pid 6149] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6134] <... futex resumed>) = 0 [pid 6150] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6149] <... futex resumed>) = 1 [pid 6134] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6133] <... futex resumed>) = 0 [pid 6150] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6149] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6134] <... futex resumed>) = 0 [pid 6150] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6134] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6150] <... futex resumed>) = 0 [pid 6134] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6150] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6134] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6150] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6134] <... futex resumed>) = 0 [pid 6150] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6134] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6150] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6150] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6134] <... futex resumed>) = 0 [pid 6150] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6130] <... ioctl resumed>) = 0 [pid 6146] <... futex resumed>) = ? [pid 6130] close(4 [pid 6146] +++ exited with 0 +++ [pid 6127] +++ exited with 0 +++ [pid 6130] <... close resumed>) = 0 [pid 6130] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=131, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=68 /* 0.68 s */} --- [pid 6130] <... futex resumed>) = 0 [pid 5029] umount2("./42", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6130] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6129] close(3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6129] <... close resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./42", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6129] close(4) = -1 EBADF (Bad file descriptor) [pid 5029] <... openat resumed>) = 3 [pid 6129] close(5 [pid 5029] newfstatat(3, "", [pid 6129] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6129] close(6) = -1 EBADF (Bad file descriptor) [pid 6129] close(7) = -1 EBADF (Bad file descriptor) [pid 6129] close(8 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6129] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6129] close(9) = -1 EBADF (Bad file descriptor) [pid 6129] close(10) = -1 EBADF (Bad file descriptor) [pid 6129] close(11) = -1 EBADF (Bad file descriptor) [pid 5029] getdents64(3, [pid 6129] close(12) = -1 EBADF (Bad file descriptor) [pid 6129] close(13 [pid 5029] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6129] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./42/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6129] close(14 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6129] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] newfstatat(AT_FDCWD, "./42/cgroup.cpu", [pid 6129] close(15) = -1 EBADF (Bad file descriptor) [pid 6129] close(16) = -1 EBADF (Bad file descriptor) [pid 6129] close(17) = -1 EBADF (Bad file descriptor) [pid 6129] close(18) = -1 EBADF (Bad file descriptor) [pid 6129] close(19) = -1 EBADF (Bad file descriptor) [pid 6129] close(20) = -1 EBADF (Bad file descriptor) [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6129] close(21 [pid 5029] unlink("./42/cgroup.cpu" [pid 6129] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6129] close(22 [pid 5029] <... unlink resumed>) = 0 [pid 6129] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6129] close(23 [pid 5029] umount2("./42/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6129] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6129] close(24 [pid 5029] newfstatat(AT_FDCWD, "./42/binderfs", [pid 6129] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6129] close(25) = -1 EBADF (Bad file descriptor) [pid 6129] close(26) = -1 EBADF (Bad file descriptor) [pid 6129] close(27) = -1 EBADF (Bad file descriptor) [pid 6129] close(28) = -1 EBADF (Bad file descriptor) [pid 6137] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6129] close(29 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6137] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6129] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] unlink("./42/binderfs" [pid 6137] <... futex resumed>) = 0 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6129] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 5029] <... unlink resumed>) = 0 [pid 6129] exit_group(0 [pid 5029] umount2("./42/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6148] <... futex resumed>) = ? [pid 6130] <... futex resumed>) = ? [pid 6129] <... exit_group resumed>) = ? [pid 6148] +++ exited with 0 +++ [pid 6137] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6130] +++ exited with 0 +++ [pid 6129] +++ exited with 0 +++ [pid 6137] <... mmap resumed>) = 0x7f4f6607f000 [pid 6137] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=130, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=68 /* 0.68 s */} --- [pid 5034] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 6137] <... mprotect resumed>) = 0 [pid 6137] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5034] umount2("./43", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6137] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5034] openat(AT_FDCWD, "./43", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6137] <... clone3 resumed> => {parent_tid=[131]}, 88) = 131 [pid 5034] newfstatat(3, "", [pid 6137] rt_sigprocmask(SIG_SETMASK, [], [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6137] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5034] getdents64(3, ./strace-static-x86_64: Process 6151 attached [pid 6137] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5034] umount2("./43/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6151] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6137] <... futex resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6151] <... rseq resumed>) = 0 [pid 6137] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5034] newfstatat(AT_FDCWD, "./43/cgroup.cpu", [pid 6151] set_robust_list(0x7f4f6609f9a0, 24 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6151] <... set_robust_list resumed>) = 0 [pid 5034] unlink("./43/cgroup.cpu" [pid 6151] rt_sigprocmask(SIG_SETMASK, [], [pid 5034] <... unlink resumed>) = 0 [pid 5034] umount2("./43/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./43/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./43/binderfs") = 0 [pid 5034] umount2("./43/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./43/file0", [pid 6151] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] umount2("./43/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] openat(AT_FDCWD, "./43/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5034] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5034] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5034] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5034] close(4) = 0 [pid 5034] rmdir("./43/file0") = 0 [pid 5034] umount2("./43/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./43/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./43/cgroup") = 0 [pid 5034] umount2("./43/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./43/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] unlink("./43/cgroup.net") = 0 [pid 5034] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5034] close(3) = 0 [pid 5034] rmdir("./43" [pid 6132] <... ioctl resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 6132] close(4 [pid 5034] mkdir("./44", 0777 [pid 6132] <... close resumed>) = 0 [pid 5034] <... mkdir resumed>) = 0 [pid 6132] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6131] close(3 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6132] <... futex resumed>) = 0 [pid 6131] <... close resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 6132] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6131] close(4 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6131] close(5 [pid 5034] close(3 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... close resumed>) = 0 [pid 6131] close(6 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6152 attached [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] set_robust_list(0x55555654e6a0, 24 [pid 6135] <... ioctl resumed>) = 0 [pid 6131] close(7 [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 133 [pid 6152] <... set_robust_list resumed>) = 0 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] chdir("./44" [pid 6137] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6136] <... ioctl resumed>) = 0 [pid 6135] close(4 [pid 6131] close(8 [pid 6152] <... chdir resumed>) = 0 [pid 6137] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 6135] <... close resumed>) = 0 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6137] <... futex resumed>) = 0 [pid 6136] close(4 [pid 6135] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6131] close(9 [pid 6152] <... prctl resumed>) = 0 [pid 6137] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6136] <... close resumed>) = 0 [pid 6135] <... futex resumed>) = 0 [pid 6133] close(3 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] setpgid(0, 0 [pid 6137] <... mmap resumed>) = 0x7f4f6605e000 [pid 6136] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6135] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6133] <... close resumed>) = 0 [pid 6131] close(10 [pid 6152] <... setpgid resumed>) = 0 [pid 6137] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE [pid 6136] <... futex resumed>) = 0 [pid 6134] close(3 [pid 6133] close(4 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] symlink("/syzcgroup/unified/syz5", "./cgroup" [pid 6137] <... mprotect resumed>) = 0 [pid 6136] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6134] <... close resumed>) = 0 [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(11 [pid 6152] <... symlink resumed>) = 0 [pid 6137] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6134] close(4 [pid 6133] close(5 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu" [pid 6137] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(12 [pid 6152] <... symlink resumed>) = 0 [pid 6137] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} [pid 6134] close(5 [pid 6133] close(6 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(13 [pid 6152] <... symlink resumed>) = 0 [pid 6137] <... clone3 resumed> => {parent_tid=[132]}, 88) = 132 [pid 6134] close(6 [pid 6133] close(7 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6137] rt_sigprocmask(SIG_SETMASK, [], [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(14 [pid 6152] <... openat resumed>) = 3 [pid 6137] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6134] close(7 [pid 6133] close(8 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] write(3, "1000", 4 [pid 6137] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(15 [pid 6152] <... write resumed>) = 4 [pid 6137] <... futex resumed>) = 0 [pid 6134] close(8 [pid 6133] close(9 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] close(3 [pid 6137] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(16 [pid 6152] <... close resumed>) = 0 [pid 6134] close(9 [pid 6133] close(10 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] symlink("/dev/binderfs", "./binderfs" [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(17 [pid 6152] <... symlink resumed>) = 0 [pid 6134] close(10 [pid 6133] close(11 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(18 [pid 6152] <... futex resumed>) = 0 [pid 6134] close(11 [pid 6133] close(12 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(19 [pid 6152] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6134] close(12 [pid 6133] close(13 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(20 [pid 6152] <... mprotect resumed>) = 0 [pid 6134] close(13 [pid 6133] close(14 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(21 [pid 6152] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6134] close(14 [pid 6133] close(15 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(22./strace-static-x86_64: Process 6154 attached [pid 6134] close(15 [pid 6133] close(16 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6154] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6152] <... clone3 resumed> => {parent_tid=[134]}, 88) = 134 [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(23 [pid 6154] <... rseq resumed>) = 0 [pid 6152] rt_sigprocmask(SIG_SETMASK, [], [pid 6134] close(16 [pid 6133] close(17 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6154] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6152] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(24 [pid 6154] <... set_robust_list resumed>) = 0 [pid 6152] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6134] close(17 [pid 6133] close(18 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6154] rt_sigprocmask(SIG_SETMASK, [], [pid 6152] <... futex resumed>) = 0 [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(25 [pid 6154] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6152] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6134] close(18 [pid 6133] close(19 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6154] memfd_create("syzkaller", 0 [pid 6137] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(26 [pid 6154] <... memfd_create resumed>) = 3 [pid 6137] futex(0x7f4f6dda471c, FUTEX_WAKE_PRIVATE, 1000000 [pid 6134] close(19 [pid 6133] close(20 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6154] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6137] <... futex resumed>) = 0 [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(27 [pid 6154] <... mmap resumed>) = 0x7f4f650a0000 [pid 6137] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6134] close(20 [pid 6133] close(21 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6151] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6138] <... ioctl resumed>) = 0 [pid 6137] <... mmap resumed>) = 0x7f4f6603d000 [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(28 [pid 6137] mprotect(0x7f4f6603e000, 131072, PROT_READ|PROT_WRITE [pid 6134] close(21 [pid 6133] close(22 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6137] <... mprotect resumed>) = 0 [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] close(29 [pid 6137] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6134] close(22 [pid 6133] close(23 [pid 6131] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6137] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6131] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6137] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6605d990, parent_tid=0x7f4f6605d990, exit_signal=0, stack=0x7f4f6603d000, stack_size=0x20300, tls=0x7f4f6605d6c0} [pid 6134] close(23 [pid 6133] close(24 [pid 6131] <... write resumed>) = 156 ./strace-static-x86_64: Process 6155 attached [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6131] exit_group(0./strace-static-x86_64: Process 6153 attached [pid 6155] rseq(0x7f4f6605dfe0, 0x20, 0, 0x53053053 [pid 6151] <... openat resumed>) = 3 [pid 6147] <... futex resumed>) = ? [pid 6138] close(4 [pid 6137] <... clone3 resumed> => {parent_tid=[133]}, 88) = 133 [pid 6134] close(24 [pid 6133] close(25 [pid 6132] <... futex resumed>) = ? [pid 6131] <... exit_group resumed>) = ? [pid 6155] <... rseq resumed>) = 0 [pid 6153] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 6151] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6147] +++ exited with 0 +++ [pid 6138] <... close resumed>) = 0 [pid 6137] rt_sigprocmask(SIG_SETMASK, [], [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6132] +++ exited with 0 +++ [pid 6131] +++ exited with 0 +++ [pid 6155] set_robust_list(0x7f4f6605d9a0, 24 [pid 6153] <... rseq resumed>) = 0 [pid 6151] <... futex resumed>) = 0 [pid 6138] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6137] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6134] close(25 [pid 6133] close(26 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=122, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=69 /* 0.69 s */} --- [pid 6155] <... set_robust_list resumed>) = 0 [pid 6153] set_robust_list(0x7f4f6607e9a0, 24 [pid 6151] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6138] <... futex resumed>) = 0 [pid 6137] futex(0x7f4f6dda4718, FUTEX_WAKE_PRIVATE, 1000000 [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6155] rt_sigprocmask(SIG_SETMASK, [], [pid 6153] <... set_robust_list resumed>) = 0 [pid 6138] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6137] <... futex resumed>) = 0 [pid 6134] close(26 [pid 6133] close(27 [pid 6155] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6153] rt_sigprocmask(SIG_SETMASK, [], [pid 6137] futex(0x7f4f6dda471c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] umount2("./42", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6155] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6153] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6134] close(27 [pid 6133] close(28 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6155] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6153] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] openat(AT_FDCWD, "./42", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6155] futex(0x7f4f6dda471c, FUTEX_WAKE_PRIVATE, 1000000 [pid 6153] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6134] close(28 [pid 6133] close(29 [pid 5030] <... openat resumed>) = 3 [pid 6155] <... futex resumed>) = 1 [pid 6153] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 6137] <... futex resumed>) = 0 [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] newfstatat(3, "", [pid 6155] futex(0x7f4f6dda4718, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6153] <... futex resumed>) = 0 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6137] close(3 [pid 6134] close(29 [pid 6133] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6153] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6137] <... close resumed>) = 0 [pid 6134] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6133] <... write resumed>) = 156 [pid 5030] getdents64(3, [pid 6137] close(4 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6134] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6133] exit_group(0 [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6149] <... futex resumed>) = ? [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6135] <... futex resumed>) = ? [pid 6134] <... write resumed>) = 156 [pid 6133] <... exit_group resumed>) = ? [pid 5030] umount2("./42/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6149] +++ exited with 0 +++ [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./42/cgroup.cpu", [pid 6137] close(5 [pid 6135] +++ exited with 0 +++ [pid 6134] exit_group(0 [pid 6133] +++ exited with 0 +++ [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6150] <... futex resumed>) = ? [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6136] <... futex resumed>) = ? [pid 6134] <... exit_group resumed>) = ? [pid 5030] unlink("./42/cgroup.cpu" [pid 5029] <... umount2 resumed>) = 0 [pid 6150] +++ exited with 0 +++ [pid 6137] close(6 [pid 6136] +++ exited with 0 +++ [pid 6134] +++ exited with 0 +++ [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=129, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=67 /* 0.67 s */} --- [pid 5030] <... unlink resumed>) = 0 [pid 5029] umount2("./42/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=127, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=85 /* 0.85 s */} --- [pid 5030] umount2("./42/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6137] close(7 [pid 5032] <... restart_syscall resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./42/file0", [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] newfstatat(AT_FDCWD, "./42/binderfs", [pid 6137] close(8 [pid 5031] umount2("./42", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./43", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] unlink("./42/binderfs" [pid 5029] umount2("./42/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6137] close(9 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./42", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... unlink resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./43", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... openat resumed>) = 3 [pid 5030] umount2("./42/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... openat resumed>) = 3 [pid 5031] newfstatat(3, "", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(3, "", [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] newfstatat(AT_FDCWD, "./42/file0", [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6137] close(10 [pid 5032] getdents64(3, [pid 5031] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5030] umount2("./42/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] openat(AT_FDCWD, "./42/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5031] umount2("./42/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6137] close(11 [pid 5032] umount2("./43/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./42/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] <... openat resumed>) = 4 [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./42/cgroup.cpu", [pid 5030] <... openat resumed>) = 4 [pid 5029] newfstatat(4, "", [pid 6137] close(12 [pid 5032] newfstatat(AT_FDCWD, "./43/cgroup.cpu", [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] newfstatat(4, "", [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./42/cgroup.cpu" [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6137] close(13 [pid 5032] unlink("./43/cgroup.cpu" [pid 5031] <... unlink resumed>) = 0 [pid 5030] getdents64(4, [pid 5029] getdents64(4, [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... unlink resumed>) = 0 [pid 5031] umount2("./42/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6137] close(14 [pid 5032] umount2("./43/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] getdents64(4, [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./42/binderfs", [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5029] getdents64(4, [pid 6137] close(15 [pid 5032] newfstatat(AT_FDCWD, "./43/binderfs", [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] close(4 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./42/binderfs" [pid 5030] <... close resumed>) = 0 [pid 5029] close(4 [pid 6137] close(16 [pid 5032] unlink("./43/binderfs" [pid 5031] <... unlink resumed>) = 0 [pid 5030] rmdir("./42/file0" [pid 5029] <... close resumed>) = 0 [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... unlink resumed>) = 0 [pid 5031] umount2("./42/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... rmdir resumed>) = 0 [pid 5032] umount2("./43/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] umount2("./42/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6137] close(17 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./42/file0", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] rmdir("./42/file0" [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] newfstatat(AT_FDCWD, "./43/file0", [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] newfstatat(AT_FDCWD, "./42/cgroup", [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./42/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./43/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] unlink("./42/cgroup" [pid 6137] close(18 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./42/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] <... unlink resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] openat(AT_FDCWD, "./43/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... openat resumed>) = 4 [pid 5030] umount2("./42/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] umount2("./42/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6137] close(19 [pid 5032] <... openat resumed>) = 4 [pid 5031] newfstatat(4, "", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(4, "", [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] newfstatat(AT_FDCWD, "./42/cgroup.net", [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] getdents64(4, [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] unlink("./42/cgroup.net" [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6137] close(20 [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, [pid 5030] <... unlink resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./42/cgroup", [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] getdents64(4, [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] getdents64(3, [pid 6137] close(21 [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] close(4 [pid 5031] <... close resumed>) = 0 [pid 5030] close(3 [pid 5029] unlink("./42/cgroup" [pid 6137] close(22 [pid 5032] <... close resumed>) = 0 [pid 5031] rmdir("./42/file0" [pid 5030] <... close resumed>) = 0 [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] rmdir("./43/file0" [pid 5031] <... rmdir resumed>) = 0 [pid 5030] rmdir("./42" [pid 5029] <... unlink resumed>) = 0 [pid 6137] close(23 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] umount2("./42/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... rmdir resumed>) = 0 [pid 5029] umount2("./42/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./43/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] mkdir("./43", 0777 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6137] close(24 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./42/cgroup", [pid 5030] <... mkdir resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./42/cgroup.net", [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] newfstatat(AT_FDCWD, "./43/cgroup", [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6137] close(25 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./42/cgroup" [pid 5030] <... openat resumed>) = 3 [pid 5029] unlink("./42/cgroup.net" [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] unlink("./43/cgroup" [pid 5031] <... unlink resumed>) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6137] close(26 [pid 5032] <... unlink resumed>) = 0 [pid 5031] umount2("./42/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... unlink resumed>) = 0 [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./43/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] close(3 [pid 5029] getdents64(3, [pid 6137] close(27 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./42/cgroup.net", [pid 5030] <... close resumed>) = 0 [pid 5029] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] newfstatat(AT_FDCWD, "./43/cgroup.net", [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5029] close(3./strace-static-x86_64: Process 6156 attached [pid 6137] close(28 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./42/cgroup.net" [pid 5029] <... close resumed>) = 0 [pid 6156] set_robust_list(0x55555654e6a0, 24 [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] unlink("./43/cgroup.net" [pid 5031] <... unlink resumed>) = 0 [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 125 [pid 5029] rmdir("./42" [pid 6156] <... set_robust_list resumed>) = 0 [pid 6137] close(29 [pid 5032] <... unlink resumed>) = 0 [pid 5031] getdents64(3, [pid 6156] chdir("./43" [pid 6137] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] getdents64(3, [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6156] <... chdir resumed>) = 0 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6137] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5032] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5031] close(3 [pid 5029] mkdir("./43", 0777 [pid 6156] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6137] <... write resumed>) = 156 [pid 5032] close(3 [pid 5031] <... close resumed>) = 0 [pid 6156] <... prctl resumed>) = 0 [pid 6137] exit_group(0 [pid 5032] <... close resumed>) = 0 [pid 5031] rmdir("./42" [pid 5029] <... mkdir resumed>) = 0 [pid 6156] setpgid(0, 0 [pid 6155] <... futex resumed>) = ? [pid 6153] <... futex resumed>) = ? [pid 6151] <... futex resumed>) = ? [pid 6138] <... futex resumed>) = ? [pid 6137] <... exit_group resumed>) = ? [pid 5032] rmdir("./43" [pid 5031] <... rmdir resumed>) = 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6156] <... setpgid resumed>) = 0 [pid 6153] +++ exited with 0 +++ [pid 6151] +++ exited with 0 +++ [pid 6138] +++ exited with 0 +++ [pid 5032] <... rmdir resumed>) = 0 [pid 5031] mkdir("./43", 0777 [pid 5029] <... openat resumed>) = 3 [pid 6156] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 6155] +++ exited with 0 +++ [pid 6137] +++ exited with 0 +++ [pid 5032] mkdir("./44", 0777 [pid 5031] <... mkdir resumed>) = 0 [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6156] <... symlink resumed>) = 0 [pid 5032] <... mkdir resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6156] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu" [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=129, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=74 /* 0.74 s */} --- [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5031] <... openat resumed>) = 3 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6156] <... symlink resumed>) = 0 [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5032] <... openat resumed>) = 3 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5029] close(3 [pid 6156] symlink("/syzcgroup/net/syz3", "./cgroup.net" [pid 5033] <... restart_syscall resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5029] <... close resumed>) = 0 [pid 6156] <... symlink resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5031] close(3 [pid 6156] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] close(3 [pid 5031] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6156] <... openat resumed>) = 3 [pid 5032] <... close resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6158 attached ./strace-static-x86_64: Process 6157 attached [pid 6156] write(3, "1000", 4 [pid 5033] umount2("./44", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6159 attached [pid 6158] set_robust_list(0x55555654e6a0, 24 [pid 6157] set_robust_list(0x55555654e6a0, 24 [pid 6156] <... write resumed>) = 4 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 130 [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 135 [pid 6159] set_robust_list(0x55555654e6a0, 24 [pid 6158] <... set_robust_list resumed>) = 0 [pid 6157] <... set_robust_list resumed>) = 0 [pid 6156] close(3 [pid 5033] openat(AT_FDCWD, "./44", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 132 [pid 6159] <... set_robust_list resumed>) = 0 [pid 6157] chdir("./43" [pid 6156] <... close resumed>) = 0 [pid 6159] chdir("./44" [pid 6158] chdir("./43" [pid 6157] <... chdir resumed>) = 0 [pid 6156] symlink("/dev/binderfs", "./binderfs" [pid 5033] <... openat resumed>) = 3 [pid 6159] <... chdir resumed>) = 0 [pid 6158] <... chdir resumed>) = 0 [pid 6157] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6156] <... symlink resumed>) = 0 [pid 5033] newfstatat(3, "", [pid 6159] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6158] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6157] <... prctl resumed>) = 0 [pid 6156] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6159] <... prctl resumed>) = 0 [pid 6158] <... prctl resumed>) = 0 [pid 6157] setpgid(0, 0 [pid 6156] <... futex resumed>) = 0 [pid 5033] getdents64(3, [pid 6159] setpgid(0, 0 [pid 6158] setpgid(0, 0 [pid 6157] <... setpgid resumed>) = 0 [pid 6156] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5033] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6159] <... setpgid resumed>) = 0 [pid 6158] <... setpgid resumed>) = 0 [pid 6157] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 6156] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5033] umount2("./44/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6159] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 6156] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6158] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 6159] <... symlink resumed>) = 0 [pid 6157] <... symlink resumed>) = 0 [pid 6156] <... mprotect resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6159] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 6158] <... symlink resumed>) = 0 [pid 6157] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu" [pid 6156] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5033] newfstatat(AT_FDCWD, "./44/cgroup.cpu", [pid 6159] <... symlink resumed>) = 0 [pid 6158] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 6157] <... symlink resumed>) = 0 [pid 6156] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6159] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 6158] <... symlink resumed>) = 0 [pid 6157] symlink("/syzcgroup/net/syz0", "./cgroup.net" [pid 6156] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5033] unlink("./44/cgroup.cpu"./strace-static-x86_64: Process 6160 attached [pid 6159] <... symlink resumed>) = 0 [pid 6158] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 6157] <... symlink resumed>) = 0 [pid 6160] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6159] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6156] <... clone3 resumed> => {parent_tid=[126]}, 88) = 126 [pid 6158] <... symlink resumed>) = 0 [pid 6157] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5033] <... unlink resumed>) = 0 [pid 6160] <... rseq resumed>) = 0 [pid 6159] <... openat resumed>) = 3 [pid 6158] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6156] rt_sigprocmask(SIG_SETMASK, [], [pid 6160] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6159] write(3, "1000", 4 [pid 6158] <... openat resumed>) = 3 [pid 6157] <... openat resumed>) = 3 [pid 6156] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5033] umount2("./44/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6160] <... set_robust_list resumed>) = 0 [pid 6159] <... write resumed>) = 4 [pid 6158] write(3, "1000", 4 [pid 6157] write(3, "1000", 4 [pid 6156] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6160] rt_sigprocmask(SIG_SETMASK, [], [pid 6159] close(3 [pid 6158] <... write resumed>) = 4 [pid 6157] <... write resumed>) = 4 [pid 5033] newfstatat(AT_FDCWD, "./44/binderfs", [pid 6160] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6159] <... close resumed>) = 0 [pid 6158] close(3 [pid 6157] close(3 [pid 6156] <... futex resumed>) = 0 [pid 6160] memfd_create("syzkaller", 0 [pid 6159] symlink("/dev/binderfs", "./binderfs" [pid 6158] <... close resumed>) = 0 [pid 6157] <... close resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6160] <... memfd_create resumed>) = 3 [pid 6159] <... symlink resumed>) = 0 [pid 6158] symlink("/dev/binderfs", "./binderfs" [pid 6157] symlink("/dev/binderfs", "./binderfs" [pid 6156] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5033] unlink("./44/binderfs" [pid 6160] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6159] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6158] <... symlink resumed>) = 0 [pid 6160] <... mmap resumed>) = 0x7f4f650a0000 [pid 6159] <... futex resumed>) = 0 [pid 6157] <... symlink resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 6159] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6158] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6159] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6159] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6159] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6158] <... futex resumed>) = 0 [pid 6157] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] umount2("./44/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6159] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6159] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} => {parent_tid=[133]}, 88) = 133 [pid 6159] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6159] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6159] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 6161 attached [pid 6158] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6157] <... futex resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6161] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6158] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6157] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5033] newfstatat(AT_FDCWD, "./44/file0", [pid 6161] <... rseq resumed>) = 0 [pid 6157] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6161] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6158] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6157] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6161] <... set_robust_list resumed>) = 0 [pid 5033] umount2("./44/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6161] rt_sigprocmask(SIG_SETMASK, [], [pid 6158] <... mprotect resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6157] <... mprotect resumed>) = 0 [pid 6161] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5033] openat(AT_FDCWD, "./44/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6158] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6157] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6161] memfd_create("syzkaller", 0 [pid 5033] <... openat resumed>) = 4 [pid 6158] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6161] <... memfd_create resumed>) = 3 [pid 6157] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5033] newfstatat(4, "", [pid 6158] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 ./strace-static-x86_64: Process 6162 attached [pid 6161] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6157] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5033] getdents64(4, [pid 6162] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6161] <... mmap resumed>) = 0x7f4f650a0000 ./strace-static-x86_64: Process 6163 attached [pid 6162] <... rseq resumed>) = 0 [pid 6158] <... clone3 resumed> => {parent_tid=[131]}, 88) = 131 [pid 5033] getdents64(4, [pid 6162] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6162] <... set_robust_list resumed>) = 0 [pid 5033] close(4 [pid 6162] rt_sigprocmask(SIG_SETMASK, [], [pid 5033] <... close resumed>) = 0 [pid 6162] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5033] rmdir("./44/file0" [pid 6163] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6162] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6158] rt_sigprocmask(SIG_SETMASK, [], [pid 6157] <... clone3 resumed> => {parent_tid=[136]}, 88) = 136 [pid 5033] <... rmdir resumed>) = 0 [pid 6163] <... rseq resumed>) = 0 [pid 5033] umount2("./44/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6158] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6157] rt_sigprocmask(SIG_SETMASK, [], [pid 6163] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6158] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6157] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6163] <... set_robust_list resumed>) = 0 [pid 6162] <... futex resumed>) = 0 [pid 6158] <... futex resumed>) = 1 [pid 6157] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] newfstatat(AT_FDCWD, "./44/cgroup", [pid 6163] rt_sigprocmask(SIG_SETMASK, [], [pid 6162] memfd_create("syzkaller", 0 [pid 6158] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6157] <... futex resumed>) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6163] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6162] <... memfd_create resumed>) = 3 [pid 6157] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5033] unlink("./44/cgroup" [pid 6162] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] <... unlink resumed>) = 0 [pid 6163] memfd_create("syzkaller", 0 [pid 6162] <... mmap resumed>) = 0x7f4f650a0000 [pid 5033] umount2("./44/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6163] <... memfd_create resumed>) = 3 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6163] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5033] newfstatat(AT_FDCWD, "./44/cgroup.net", [pid 6163] <... mmap resumed>) = 0x7f4f650a0000 [pid 6154] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./44/cgroup.net") = 0 [pid 5033] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./44") = 0 [pid 5033] mkdir("./45", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6164 attached [pid 6164] set_robust_list(0x55555654e6a0, 24 [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 134 [pid 6164] <... set_robust_list resumed>) = 0 [pid 6164] chdir("./45") = 0 [pid 6164] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6164] setpgid(0, 0) = 0 [pid 6164] symlink("/syzcgroup/unified/syz2", "./cgroup") = 0 [pid 6164] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu") = 0 [pid 6164] symlink("/syzcgroup/net/syz2", "./cgroup.net") = 0 [pid 6164] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6164] write(3, "1000", 4) = 4 [pid 6164] close(3) = 0 [pid 6164] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6164] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6164] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 6164] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6164] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6164] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6165 attached [pid 6165] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6164] <... clone3 resumed> => {parent_tid=[135]}, 88) = 135 [pid 6165] <... rseq resumed>) = 0 [pid 6164] rt_sigprocmask(SIG_SETMASK, [], [pid 6165] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6164] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6165] <... set_robust_list resumed>) = 0 [pid 6164] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6165] rt_sigprocmask(SIG_SETMASK, [], [pid 6164] <... futex resumed>) = 0 [pid 6165] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6164] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6165] memfd_create("syzkaller", 0) = 3 [pid 6165] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 6161] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6163] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6160] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6162] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6154] <... write resumed>) = 16777216 [pid 6154] munmap(0x7f4f650a0000, 16777216 [pid 6165] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6154] <... munmap resumed>) = 0 [pid 6154] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6154] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6154] close(3) = 0 [pid 6154] mkdir("./file0", 0777) = 0 [ 319.330746][ T6154] loop5: detected capacity change from 0 to 32768 [ 319.389254][ T6154] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 319.417164][ T6154] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 319.463539][ T6154] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 319.504818][ T917] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 319.513358][ T917] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 319.721033][ T917] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 207ms [ 319.764838][ T917] gfs2: fsid=syz:syz.0: jid=0: Done [pid 6154] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "") = 0 [pid 6154] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6154] chdir("./file0") = 0 [pid 6154] ioctl(4, LOOP_CLR_FD) = 0 [pid 6154] close(4) = 0 [ 319.785448][ T6154] gfs2: fsid=syz:syz.0: first mount done, others may mount [pid 6154] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6152] <... futex resumed>) = 0 [pid 6152] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6152] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [ 319.849737][ T6154] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 319.883961][ T6154] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 319.883961][ T6154] inode = 12 2341 [pid 6154] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6161] <... write resumed>) = 16777216 [pid 6152] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6152] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6152] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 6152] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6152] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6152] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 6167 attached [pid 6161] munmap(0x7f4f650a0000, 16777216 [pid 6167] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6152] <... clone3 resumed> => {parent_tid=[135]}, 88) = 135 [pid 6167] <... rseq resumed>) = 0 [pid 6152] rt_sigprocmask(SIG_SETMASK, [], [pid 6167] set_robust_list(0x7f4f6609f9a0, 24 [pid 6152] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6167] <... set_robust_list resumed>) = 0 [pid 6152] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6167] rt_sigprocmask(SIG_SETMASK, [], [pid 6152] <... futex resumed>) = 0 [pid 6167] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6152] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6167] ioctl(0, VFAT_IOCTL_READDIR_SHORT, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 6167] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6152] <... futex resumed>) = 0 [pid 6167] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6152] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6167] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6152] <... futex resumed>) = 0 [ 319.883961][ T6154] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [pid 6167] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6152] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6163] <... write resumed>) = 16777216 [ 319.924050][ T6167] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [pid 6163] munmap(0x7f4f650a0000, 16777216 [pid 6162] <... write resumed>) = 16777216 [ 319.974520][ T6167] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 319.974520][ T6167] inode = 12 2341 [ 319.974520][ T6167] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 319.994562][ T6154] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:4 m:20 p:1 [pid 6162] munmap(0x7f4f650a0000, 16777216 [pid 6161] <... munmap resumed>) = 0 [pid 6161] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [ 320.033383][ T6154] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6154 [syz-executor676] __gfs2_lookup+0x83/0x280 [pid 6161] ioctl(4, LOOP_SET_FD, 3 [pid 6152] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 320.093319][ T6161] loop1: detected capacity change from 0 to 32768 [ 320.100273][ T6154] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6167 [syz-executor676] __gfs2_lookup+0x83/0x280 [pid 6163] <... munmap resumed>) = 0 [pid 6161] <... ioctl resumed>) = 0 [pid 6163] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6161] close(3) = 0 [pid 6163] <... openat resumed>) = 4 [pid 6161] mkdir("./file0", 0777) = 0 [pid 6163] ioctl(4, LOOP_SET_FD, 3 [pid 6161] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6160] <... write resumed>) = 16777216 [ 320.140494][ T6154] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 320.156938][ T6163] loop0: detected capacity change from 0 to 32768 [ 320.161091][ T6167] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:4 m:20 p:1 [ 320.170393][ T6161] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [pid 6163] <... ioctl resumed>) = 0 [pid 6160] munmap(0x7f4f650a0000, 16777216 [pid 6165] <... write resumed>) = 16777216 [pid 6165] munmap(0x7f4f650a0000, 16777216 [pid 6163] close(3) = 0 [pid 6163] mkdir("./file0", 0777) = 0 [ 320.182875][ T6161] CPU: 0 PID: 6161 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 320.193392][ T6161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 320.203498][ T6161] Call Trace: [ 320.206812][ T6161] [ 320.209780][ T6161] dump_stack_lvl+0x136/0x150 [ 320.214651][ T6161] sysfs_warn_dup+0x80/0xa0 [ 320.219217][ T6161] sysfs_create_dir_ns+0x237/0x290 [ 320.224394][ T6161] ? sysfs_create_mount_point+0xb0/0xb0 [ 320.230102][ T6161] ? spin_bug+0x1c0/0x1c0 [ 320.234640][ T6161] ? do_raw_spin_unlock+0x175/0x230 [pid 6163] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6162] <... munmap resumed>) = 0 [pid 6162] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [ 320.239991][ T6161] kobject_add_internal+0x2c9/0x9c0 [ 320.245251][ T6161] ? kfree+0x11/0x150 [ 320.249290][ T6161] kobject_init_and_add+0x101/0x170 [ 320.254546][ T6161] ? kobject_create_and_add+0xf0/0xf0 [ 320.259977][ T6161] ? lockdep_init_map_type+0x21e/0x810 [ 320.265494][ T6161] ? lockdep_hardirqs_on+0x7d/0x100 [ 320.270754][ T6161] ? lockdep_init_map_type+0x21e/0x810 [ 320.276277][ T6161] gfs2_sys_fs_add+0x1d5/0x450 [ 320.278521][ T6162] loop4: detected capacity change from 0 to 32768 [ 320.281075][ T6161] ? recover_store+0x170/0x170 [ 320.281114][ T6161] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 320.297306][ T6163] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 320.298034][ T6161] gfs2_fill_super+0x1312/0x2aa0 [ 320.310418][ T6161] ? gfs2_reconfigure+0xf90/0xf90 [ 320.315510][ T6161] ? snprintf+0xbf/0x100 [ 320.319815][ T6161] ? vsprintf+0x30/0x30 [ 320.324042][ T6161] ? wait_for_completion_io_timeout+0x20/0x20 [ 320.330186][ T6161] ? set_blocksize+0x2d8/0x370 [ 320.335024][ T6161] get_tree_bdev+0x43e/0x7d0 [pid 6162] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6162] close(3) = 0 [pid 6162] mkdir("./file0", 0777) = 0 [ 320.339678][ T6161] ? gfs2_reconfigure+0xf90/0xf90 [ 320.344862][ T6161] gfs2_get_tree+0x4e/0x270 [ 320.349435][ T6161] vfs_get_tree+0x8d/0x350 [ 320.353920][ T6161] path_mount+0x136e/0x1e70 [ 320.358486][ T6161] ? putname+0x102/0x140 [ 320.362785][ T6161] ? lockdep_hardirqs_on+0x7d/0x100 [ 320.368050][ T6161] ? finish_automount+0xa30/0xa30 [ 320.373154][ T6161] ? putname+0x102/0x140 [ 320.377453][ T6161] __x64_sys_mount+0x283/0x300 [ 320.382287][ T6161] ? copy_mnt_ns+0xb30/0xb30 [ 320.386941][ T6161] ? lockdep_hardirqs_on+0x7d/0x100 [ 320.392213][ T6161] ? _raw_spin_unlock_irq+0x2e/0x50 [ 320.397483][ T6161] ? ptrace_notify+0xfe/0x140 [ 320.398510][ T6167] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6154 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 320.402207][ T6161] do_syscall_64+0x39/0xb0 [ 320.402242][ T6161] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 320.422622][ T6161] RIP: 0033:0x7f4f6dd11c5a [pid 6162] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6165] <... munmap resumed>) = 0 [pid 6160] <... munmap resumed>) = 0 [pid 6160] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6165] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6160] <... openat resumed>) = 4 [pid 6165] <... openat resumed>) = 4 [pid 6165] ioctl(4, LOOP_SET_FD, 3 [ 320.427071][ T6161] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 320.446733][ T6161] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 320.455219][ T6161] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 320.463248][ T6161] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 320.471303][ T6161] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 320.478192][ T6160] loop3: detected capacity change from 0 to 32768 [ 320.479392][ T6161] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 320.479417][ T6161] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 320.489029][ T6165] loop2: detected capacity change from 0 to 32768 [ 320.493825][ T6161] [ 320.506884][ T6154] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 320.510770][ T6167] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6167 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 320.530054][ T6167] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [pid 6160] ioctl(4, LOOP_SET_FD, 3 [pid 6165] <... ioctl resumed>) = 0 [pid 6160] <... ioctl resumed>) = 0 [pid 6165] close(3 [pid 6160] close(3 [pid 6165] <... close resumed>) = 0 [ 320.530181][ T6162] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 320.539220][ T6161] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 320.561007][ T6161] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 320.561612][ T6163] CPU: 1 PID: 6163 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 320.574052][ T6154] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 320.578033][ T6163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 320.578055][ T6163] Call Trace: [ 320.578066][ T6163] [ 320.578078][ T6163] dump_stack_lvl+0x136/0x150 [ 320.587664][ T6154] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 320.596933][ T6163] sysfs_warn_dup+0x80/0xa0 [ 320.596974][ T6163] sysfs_create_dir_ns+0x237/0x290 [ 320.597012][ T6163] ? sysfs_create_mount_point+0xb0/0xb0 [ 320.601163][ T6154] gfs2: fsid=syz:syz.0: File system withdrawn [ 320.603232][ T6163] ? spin_bug+0x1c0/0x1c0 [ 320.640002][ T6163] ? do_raw_spin_unlock+0x175/0x230 [ 320.645251][ T6163] kobject_add_internal+0x2c9/0x9c0 [ 320.650497][ T6163] ? kfree+0x11/0x150 [ 320.654515][ T6163] kobject_init_and_add+0x101/0x170 [ 320.659753][ T6163] ? kobject_create_and_add+0xf0/0xf0 [ 320.665165][ T6163] ? lockdep_init_map_type+0x21e/0x810 [ 320.670674][ T6163] ? lockdep_hardirqs_on+0x7d/0x100 [ 320.676016][ T6163] ? lockdep_init_map_type+0x21e/0x810 [ 320.681609][ T6163] gfs2_sys_fs_add+0x1d5/0x450 [ 320.686411][ T6163] ? recover_store+0x170/0x170 [ 320.691217][ T6163] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 320.697012][ T6163] gfs2_fill_super+0x1312/0x2aa0 [ 320.702000][ T6163] ? gfs2_reconfigure+0xf90/0xf90 [ 320.707071][ T6163] ? snprintf+0xbf/0x100 [ 320.711361][ T6163] ? vsprintf+0x30/0x30 [ 320.715569][ T6163] ? wait_for_completion_io_timeout+0x20/0x20 [ 320.721699][ T6163] ? set_blocksize+0x2d8/0x370 [ 320.726515][ T6163] get_tree_bdev+0x43e/0x7d0 [ 320.731173][ T6163] ? gfs2_reconfigure+0xf90/0xf90 [ 320.736256][ T6163] gfs2_get_tree+0x4e/0x270 [ 320.740802][ T6163] vfs_get_tree+0x8d/0x350 [ 320.745260][ T6163] path_mount+0x136e/0x1e70 [ 320.749808][ T6163] ? putname+0x102/0x140 [ 320.754091][ T6163] ? lockdep_hardirqs_on+0x7d/0x100 [ 320.759326][ T6163] ? finish_automount+0xa30/0xa30 [ 320.764389][ T6163] ? putname+0x102/0x140 [ 320.768682][ T6163] __x64_sys_mount+0x283/0x300 [ 320.773598][ T6163] ? copy_mnt_ns+0xb30/0xb30 [ 320.778243][ T6163] ? lockdep_hardirqs_on+0x7d/0x100 [ 320.783508][ T6163] ? _raw_spin_unlock_irq+0x2e/0x50 [ 320.788774][ T6163] ? ptrace_notify+0xfe/0x140 [ 320.793521][ T6163] do_syscall_64+0x39/0xb0 [ 320.798000][ T6163] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 320.803964][ T6163] RIP: 0033:0x7f4f6dd11c5a [ 320.808420][ T6163] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 320.828086][ T6163] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [pid 6165] mkdir("./file0", 0777 [pid 6160] <... close resumed>) = 0 [ 320.836554][ T6163] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 320.844689][ T6163] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 320.852812][ T6163] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 320.860824][ T6163] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 320.868842][ T6163] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 320.876863][ T6163] [ 320.879924][ T6154] CPU: 0 PID: 6154 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [pid 6165] <... mkdir resumed>) = 0 [pid 6160] mkdir("./file0", 0777) = 0 [pid 6160] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [ 320.890494][ T6154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 320.893965][ T6163] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 320.900661][ T6154] Call Trace: [ 320.900674][ T6154] [ 320.900686][ T6154] dump_stack_lvl+0x136/0x150 [ 320.900740][ T6154] gfs2_withdraw+0xb33/0x1060 [ 320.915686][ T6163] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 320.917909][ T6154] ? gfs2_consist_inode_i+0x104/0x150 [ 320.917950][ T6154] gfs2_dirent_scan+0x32a/0x3d0 [ 320.947143][ T6154] ? gfs2_dirent_prev+0x210/0x210 [ 320.952243][ T6154] ? gfs2_dirent_prev+0x210/0x210 [ 320.957335][ T6154] gfs2_dirent_search+0x47d/0x580 [ 320.962414][ T6154] ? get_first_leaf+0x190/0x190 [ 320.967317][ T6154] ? gfs2_permission+0x256/0x3e0 [ 320.972319][ T6154] gfs2_dir_search+0x8d/0x2d0 [ 320.977134][ T6154] ? gfs2_dir_read+0x14e0/0x14e0 [ 320.982159][ T6154] gfs2_lookupi+0x481/0x640 [ 320.986812][ T6154] ? gfs2_lookup_by_inum+0x100/0x100 [ 320.992161][ T6154] ? __gfs2_lookup+0x83/0x280 [ 320.996889][ T6154] ? d_alloc_parallel+0x693/0x1530 [ 321.002054][ T6154] __gfs2_lookup+0x83/0x280 [ 321.006615][ T6154] ? gfs2_lookupi+0x640/0x640 [ 321.011346][ T6154] ? __d_lookup_rcu+0x4e0/0x4e0 [ 321.016249][ T6154] ? __d_lookup+0x289/0x4c0 [ 321.020809][ T6154] gfs2_atomic_open+0xde/0x250 [ 321.025617][ T6154] ? __gfs2_lookup+0x280/0x280 [ 321.030427][ T6154] lookup_open.isra.0+0xce2/0x1400 [ 321.035627][ T6154] ? link_path_walk.part.0+0xd60/0xd60 [ 321.041162][ T6154] ? lookup_fast+0x14e/0x520 [ 321.045832][ T6154] path_openat+0x969/0x2710 [ 321.050419][ T6154] ? path_lookupat+0x840/0x840 [ 321.055228][ T6154] do_filp_open+0x1ba/0x410 [ 321.059785][ T6154] ? may_open_dev+0xf0/0xf0 [ 321.064352][ T6154] ? find_held_lock+0x2d/0x110 [ 321.069258][ T6154] ? do_raw_spin_lock+0x124/0x2b0 [ 321.074345][ T6154] ? spin_bug+0x1c0/0x1c0 [ 321.078726][ T6154] ? _raw_spin_unlock+0x28/0x40 [ 321.083639][ T6154] ? alloc_fd+0x2e4/0x750 [ 321.088116][ T6154] do_sys_openat2+0x160/0x1c0 [ 321.092871][ T6154] ? build_open_flags+0x720/0x720 [ 321.097973][ T6154] ? ptrace_notify+0xfe/0x140 [ 321.102720][ T6154] ? lock_downgrade+0x690/0x690 [ 321.107631][ T6154] __x64_sys_openat+0x143/0x1f0 [ 321.112542][ T6154] ? __ia32_sys_open+0x1c0/0x1c0 [ 321.117535][ T6154] ? _raw_spin_unlock_irq+0x23/0x50 [ 321.122780][ T6154] ? lockdep_hardirqs_on+0x7d/0x100 [ 321.128025][ T6154] ? _raw_spin_unlock_irq+0x2e/0x50 [ 321.133295][ T6154] ? ptrace_notify+0xfe/0x140 [ 321.138040][ T6154] do_syscall_64+0x39/0xb0 [ 321.142505][ T6154] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 321.148481][ T6154] RIP: 0033:0x7f4f6dd107f9 [ 321.152941][ T6154] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 321.172602][ T6154] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 321.181083][ T6154] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 321.189105][ T6154] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [ 321.197121][ T6154] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 321.205143][ T6154] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 321.213161][ T6154] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 321.221274][ T6154] [ 321.224328][ T6162] CPU: 1 PID: 6162 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 321.234813][ T6162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 321.244939][ T6162] Call Trace: [ 321.248243][ T6162] [ 321.251202][ T6162] dump_stack_lvl+0x136/0x150 [ 321.255932][ T6162] sysfs_warn_dup+0x80/0xa0 [ 321.260471][ T6162] sysfs_create_dir_ns+0x237/0x290 [ 321.265616][ T6162] ? sysfs_create_mount_point+0xb0/0xb0 [ 321.271201][ T6162] ? spin_bug+0x1c0/0x1c0 [ 321.275569][ T6162] ? do_raw_spin_unlock+0x175/0x230 [ 321.280825][ T6162] kobject_add_internal+0x2c9/0x9c0 [ 321.286070][ T6162] ? kfree+0x11/0x150 [ 321.290105][ T6162] kobject_init_and_add+0x101/0x170 [ 321.295338][ T6162] ? kobject_create_and_add+0xf0/0xf0 [ 321.300750][ T6162] ? lockdep_init_map_type+0x21e/0x810 [ 321.306248][ T6162] ? lockdep_hardirqs_on+0x7d/0x100 [ 321.311541][ T6162] ? lockdep_init_map_type+0x21e/0x810 [ 321.317046][ T6162] gfs2_sys_fs_add+0x1d5/0x450 [ 321.321841][ T6162] ? recover_store+0x170/0x170 [ 321.326640][ T6162] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 321.332510][ T6162] gfs2_fill_super+0x1312/0x2aa0 [ 321.337490][ T6162] ? gfs2_reconfigure+0xf90/0xf90 [ 321.342550][ T6162] ? snprintf+0xbf/0x100 [ 321.346844][ T6162] ? vsprintf+0x30/0x30 [ 321.351041][ T6162] ? wait_for_completion_io_timeout+0x20/0x20 [ 321.357151][ T6162] ? set_blocksize+0x2d8/0x370 [ 321.361957][ T6162] get_tree_bdev+0x43e/0x7d0 [ 321.366675][ T6162] ? gfs2_reconfigure+0xf90/0xf90 [ 321.371763][ T6162] gfs2_get_tree+0x4e/0x270 [ 321.376335][ T6162] vfs_get_tree+0x8d/0x350 [ 321.380795][ T6162] path_mount+0x136e/0x1e70 [ 321.385342][ T6162] ? putname+0x102/0x140 [ 321.389615][ T6162] ? lockdep_hardirqs_on+0x7d/0x100 [ 321.394856][ T6162] ? finish_automount+0xa30/0xa30 [ 321.399933][ T6162] ? putname+0x102/0x140 [ 321.404260][ T6162] __x64_sys_mount+0x283/0x300 [ 321.409072][ T6162] ? copy_mnt_ns+0xb30/0xb30 [ 321.413700][ T6162] ? lockdep_hardirqs_on+0x7d/0x100 [ 321.418932][ T6162] ? _raw_spin_unlock_irq+0x2e/0x50 [ 321.424177][ T6162] ? ptrace_notify+0xfe/0x140 [ 321.428907][ T6162] do_syscall_64+0x39/0xb0 [ 321.433356][ T6162] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 321.439388][ T6162] RIP: 0033:0x7f4f6dd11c5a [ 321.443827][ T6162] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 321.463467][ T6162] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 321.471949][ T6162] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 321.479955][ T6162] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 321.488012][ T6162] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [pid 6165] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6163] <... mount resumed>) = -1 EEXIST (File exists) [pid 6161] <... mount resumed>) = -1 EEXIST (File exists) [pid 6163] ioctl(4, LOOP_CLR_FD [pid 6161] ioctl(4, LOOP_CLR_FD [pid 6152] close(3) = 0 [pid 6152] close(4) = -1 EBADF (Bad file descriptor) [pid 6152] close(5) = -1 EBADF (Bad file descriptor) [pid 6152] close(6) = -1 EBADF (Bad file descriptor) [pid 6152] close(7) = -1 EBADF (Bad file descriptor) [pid 6152] close(8) = -1 EBADF (Bad file descriptor) [pid 6152] close(9) = -1 EBADF (Bad file descriptor) [pid 6152] close(10) = -1 EBADF (Bad file descriptor) [pid 6152] close(11) = -1 EBADF (Bad file descriptor) [pid 6152] close(12) = -1 EBADF (Bad file descriptor) [pid 6152] close(13) = -1 EBADF (Bad file descriptor) [ 321.496029][ T6162] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 321.504034][ T6162] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 321.512141][ T6162] [pid 6152] close(14) = -1 EBADF (Bad file descriptor) [ 321.555383][ T6160] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 321.556711][ T6162] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 321.563134][ T6165] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 321.585075][ T6160] CPU: 1 PID: 6160 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 321.595556][ T6160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 321.605751][ T6160] Call Trace: [ 321.608301][ T6162] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 321.609041][ T6160] [ 321.618602][ T6160] dump_stack_lvl+0x136/0x150 [ 321.623358][ T6160] sysfs_warn_dup+0x80/0xa0 [ 321.627922][ T6160] sysfs_create_dir_ns+0x237/0x290 [ 321.633101][ T6160] ? sysfs_create_mount_point+0xb0/0xb0 [ 321.638715][ T6160] ? spin_bug+0x1c0/0x1c0 [ 321.643106][ T6160] ? do_raw_spin_unlock+0x175/0x230 [ 321.648383][ T6160] kobject_add_internal+0x2c9/0x9c0 [ 321.653647][ T6160] ? kfree+0x11/0x150 [ 321.657726][ T6160] kobject_init_and_add+0x101/0x170 [ 321.662978][ T6160] ? kobject_create_and_add+0xf0/0xf0 [ 321.668411][ T6160] ? lockdep_init_map_type+0x21e/0x810 [ 321.673956][ T6160] ? lockdep_hardirqs_on+0x7d/0x100 [ 321.679219][ T6160] ? lockdep_init_map_type+0x21e/0x810 [ 321.684739][ T6160] gfs2_sys_fs_add+0x1d5/0x450 [ 321.689564][ T6160] ? recover_store+0x170/0x170 [ 321.694397][ T6160] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 321.700190][ T6160] gfs2_fill_super+0x1312/0x2aa0 [ 321.705190][ T6160] ? gfs2_reconfigure+0xf90/0xf90 [ 321.710272][ T6160] ? snprintf+0xbf/0x100 [ 321.714582][ T6160] ? vsprintf+0x30/0x30 [ 321.718794][ T6160] ? wait_for_completion_io_timeout+0x20/0x20 [ 321.724932][ T6160] ? set_blocksize+0x2d8/0x370 [ 321.729849][ T6160] get_tree_bdev+0x43e/0x7d0 [ 321.734938][ T6160] ? gfs2_reconfigure+0xf90/0xf90 [ 321.740027][ T6160] gfs2_get_tree+0x4e/0x270 [ 321.744595][ T6160] vfs_get_tree+0x8d/0x350 [ 321.749118][ T6160] path_mount+0x136e/0x1e70 [ 321.753699][ T6160] ? putname+0x102/0x140 [ 321.758001][ T6160] ? lockdep_hardirqs_on+0x7d/0x100 [ 321.763273][ T6160] ? finish_automount+0xa30/0xa30 [ 321.768370][ T6160] ? putname+0x102/0x140 [ 321.772817][ T6160] __x64_sys_mount+0x283/0x300 [ 321.777649][ T6160] ? copy_mnt_ns+0xb30/0xb30 [ 321.782306][ T6160] ? lockdep_hardirqs_on+0x7d/0x100 [ 321.787566][ T6160] ? _raw_spin_unlock_irq+0x2e/0x50 [ 321.793014][ T6160] ? ptrace_notify+0xfe/0x140 [ 321.797765][ T6160] do_syscall_64+0x39/0xb0 [ 321.802241][ T6160] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 321.808220][ T6160] RIP: 0033:0x7f4f6dd11c5a [ 321.812773][ T6160] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 321.832434][ T6160] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 321.840910][ T6160] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 321.848935][ T6160] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [pid 6162] <... mount resumed>) = -1 EEXIST (File exists) [pid 6162] ioctl(4, LOOP_CLR_FD [ 321.856947][ T6160] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 321.864966][ T6160] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 321.872990][ T6160] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 321.881019][ T6160] [ 321.896132][ T6165] CPU: 0 PID: 6165 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 321.906644][ T6165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 321.916753][ T6165] Call Trace: [ 321.920073][ T6165] [ 321.923040][ T6165] dump_stack_lvl+0x136/0x150 [ 321.927789][ T6165] sysfs_warn_dup+0x80/0xa0 [ 321.932349][ T6165] sysfs_create_dir_ns+0x237/0x290 [ 321.937514][ T6165] ? sysfs_create_mount_point+0xb0/0xb0 [ 321.943171][ T6165] ? spin_bug+0x1c0/0x1c0 [ 321.947565][ T6165] ? do_raw_spin_unlock+0x175/0x230 [ 321.952833][ T6165] kobject_add_internal+0x2c9/0x9c0 [ 321.958157][ T6165] ? kfree+0x11/0x150 [ 321.962175][ T6165] kobject_init_and_add+0x101/0x170 [ 321.967414][ T6165] ? kobject_create_and_add+0xf0/0xf0 [ 321.972818][ T6165] ? lockdep_init_map_type+0x21e/0x810 [ 321.978402][ T6165] ? lockdep_hardirqs_on+0x7d/0x100 [ 321.983643][ T6165] ? lockdep_init_map_type+0x21e/0x810 [ 321.989159][ T6165] gfs2_sys_fs_add+0x1d5/0x450 [ 321.993960][ T6165] ? recover_store+0x170/0x170 [ 321.998760][ T6165] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 322.004523][ T6165] gfs2_fill_super+0x1312/0x2aa0 [ 322.009502][ T6165] ? gfs2_reconfigure+0xf90/0xf90 [ 322.014560][ T6165] ? snprintf+0xbf/0x100 [ 322.018838][ T6165] ? vsprintf+0x30/0x30 [ 322.023036][ T6165] ? wait_for_completion_io_timeout+0x20/0x20 [ 322.029145][ T6165] ? set_blocksize+0x2d8/0x370 [ 322.033947][ T6165] get_tree_bdev+0x43e/0x7d0 [ 322.038573][ T6165] ? gfs2_reconfigure+0xf90/0xf90 [ 322.043641][ T6165] gfs2_get_tree+0x4e/0x270 [ 322.048182][ T6165] vfs_get_tree+0x8d/0x350 [ 322.052643][ T6165] path_mount+0x136e/0x1e70 [ 322.057185][ T6165] ? putname+0x102/0x140 [ 322.061460][ T6165] ? lockdep_hardirqs_on+0x7d/0x100 [ 322.066697][ T6165] ? finish_automount+0xa30/0xa30 [ 322.071761][ T6165] ? putname+0x102/0x140 [ 322.076052][ T6165] __x64_sys_mount+0x283/0x300 [ 322.080960][ T6165] ? copy_mnt_ns+0xb30/0xb30 [ 322.085590][ T6165] ? lockdep_hardirqs_on+0x7d/0x100 [ 322.090827][ T6165] ? _raw_spin_unlock_irq+0x2e/0x50 [ 322.096070][ T6165] ? ptrace_notify+0xfe/0x140 [ 322.100799][ T6165] do_syscall_64+0x39/0xb0 [ 322.105240][ T6165] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 322.111186][ T6165] RIP: 0033:0x7f4f6dd11c5a [ 322.115633][ T6165] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 322.135277][ T6165] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 322.143724][ T6165] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [pid 6152] close(15 [pid 6167] <... openat resumed>) = -1 EIO (Input/output error) [pid 6163] <... ioctl resumed>) = 0 [pid 6154] <... openat resumed>) = -1 EIO (Input/output error) [pid 6152] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6167] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6163] close(4 [pid 6154] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6152] close(16 [pid 6167] <... futex resumed>) = 0 [pid 6163] <... close resumed>) = 0 [pid 6154] <... futex resumed>) = 0 [pid 6152] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6167] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6152] close(17 [pid 6163] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6154] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6157] <... futex resumed>) = 0 [pid 6163] <... futex resumed>) = 1 [pid 6152] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6157] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6163] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6157] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6152] close(18) = -1 EBADF (Bad file descriptor) [pid 6163] <... openat resumed>) = 3 [pid 6152] close(19) = -1 EBADF (Bad file descriptor) [pid 6163] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6152] close(20 [pid 6163] <... futex resumed>) = 1 [pid 6157] <... futex resumed>) = 0 [pid 6152] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6163] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6157] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6152] close(21 [pid 6163] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6157] <... futex resumed>) = 0 [pid 6152] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6163] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6157] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6152] close(22 [pid 6163] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6152] <... close resumed>) = -1 EBADF (Bad file descriptor) [ 322.151724][ T6165] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 322.159724][ T6165] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 322.167896][ T6165] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 322.175899][ T6165] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 322.183986][ T6165] [ 322.188564][ T6160] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 6163] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6152] close(23 [pid 6163] <... futex resumed>) = 1 [pid 6157] <... futex resumed>) = 0 [pid 6152] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6163] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6157] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6152] close(24 [pid 6163] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6157] <... futex resumed>) = 0 [pid 6152] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6163] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6157] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6152] close(25 [pid 6163] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6152] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6163] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6152] close(26 [pid 6163] <... futex resumed>) = 1 [pid 6157] <... futex resumed>) = 0 [pid 6152] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6163] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6157] close(3 [pid 6152] close(27 [pid 6157] <... close resumed>) = 0 [pid 6157] close(4 [pid 6152] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] close(28 [pid 6157] close(5 [pid 6152] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] close(29) = -1 EBADF (Bad file descriptor) [pid 6157] close(6 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6152] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6152] <... write resumed>) = 156 [pid 6157] close(7 [pid 6152] exit_group(0 [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6167] <... futex resumed>) = ? [pid 6154] <... futex resumed>) = ? [pid 6152] <... exit_group resumed>) = ? [pid 6157] close(8 [pid 6167] +++ exited with 0 +++ [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6154] +++ exited with 0 +++ [pid 6152] +++ exited with 0 +++ [pid 6157] close(9 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=133, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=75 /* 0.75 s */} --- [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6157] close(10) = -1 EBADF (Bad file descriptor) [pid 6157] close(11) = -1 EBADF (Bad file descriptor) [pid 6157] close(12 [pid 5034] umount2("./44", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6157] close(13 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6159] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6158] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6158] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6158] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 6158] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6158] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6158] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[132]}, 88) = 132 [pid 6158] rt_sigprocmask(SIG_SETMASK, [], ./strace-static-x86_64: Process 6173 attached [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] openat(AT_FDCWD, "./44", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6173] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6157] close(14 [pid 5034] <... openat resumed>) = 3 [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6173] <... rseq resumed>) = 0 [pid 6157] close(15 [pid 5034] newfstatat(3, "", [pid 6158] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6158] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6173] set_robust_list(0x7f4f6609f9a0, 24 [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6157] close(16 [pid 6173] <... set_robust_list resumed>) = 0 [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6173] rt_sigprocmask(SIG_SETMASK, [], [pid 5034] getdents64(3, [pid 6158] <... futex resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6158] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5034] umount2("./44/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6157] close(17 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 322.239805][ T6160] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 322.277311][ T1232] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.283687][ T1232] ieee802154 phy1 wpan1: encryption failed: -22 [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] newfstatat(AT_FDCWD, "./44/cgroup.cpu", [pid 6157] close(18 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] unlink("./44/cgroup.cpu" [pid 6157] close(19 [pid 5034] <... unlink resumed>) = 0 [pid 6173] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6173] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6157] close(20 [pid 5034] umount2("./44/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] newfstatat(AT_FDCWD, "./44/binderfs", [pid 6173] <... openat resumed>) = 3 [pid 6157] close(21 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] unlink("./44/binderfs" [pid 6157] close(22) = -1 EBADF (Bad file descriptor) [pid 5034] <... unlink resumed>) = 0 [pid 6157] close(23 [pid 5034] umount2("./44/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6157] close(24) = -1 EBADF (Bad file descriptor) [pid 6157] close(25) = -1 EBADF (Bad file descriptor) [pid 6157] close(26 [pid 6156] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6156] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6160] <... mount resumed>) = -1 EEXIST (File exists) [pid 6159] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6157] close(27 [pid 6156] <... futex resumed>) = 0 [pid 6160] ioctl(4, LOOP_CLR_FD [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6156] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6159] <... futex resumed>) = 0 [pid 6157] close(28 [pid 6156] <... mmap resumed>) = 0x7f4f6607f000 [pid 6159] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6156] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6159] <... mmap resumed>) = 0x7f4f6607f000 [pid 6157] close(29 [pid 6156] <... mprotect resumed>) = 0 [pid 6157] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6156] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6156] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 6174 attached [pid 6174] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6156] <... clone3 resumed> => {parent_tid=[127]}, 88) = 127 [pid 6174] <... rseq resumed>) = 0 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6157] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6156] rt_sigprocmask(SIG_SETMASK, [], [pid 6174] set_robust_list(0x7f4f6609f9a0, 24 [pid 6157] <... write resumed>) = 156 [pid 6156] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6174] <... set_robust_list resumed>) = 0 [pid 6157] exit_group(0 [pid 6156] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6174] rt_sigprocmask(SIG_SETMASK, [], [pid 6163] <... futex resumed>) = ? [pid 6159] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6157] <... exit_group resumed>) = ? [pid 6156] <... futex resumed>) = 0 [pid 6174] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6163] +++ exited with 0 +++ [pid 6156] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6174] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 6174] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6158] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6157] +++ exited with 0 +++ [pid 6174] <... futex resumed>) = 1 [pid 6158] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 6156] <... futex resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=135, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=60 /* 0.60 s */} --- [pid 6174] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6158] <... futex resumed>) = 0 [pid 6156] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6174] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6158] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6156] <... futex resumed>) = 0 [pid 6174] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6158] <... mmap resumed>) = 0x7f4f6605e000 [pid 6156] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6174] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6158] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE [pid 6174] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6158] <... mprotect resumed>) = 0 [pid 6174] <... futex resumed>) = 1 [pid 6158] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6156] <... futex resumed>) = 0 [pid 5029] umount2("./43", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6174] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6158] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6156] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6174] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6158] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} [pid 6156] <... futex resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./43", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 6175 attached [pid 6174] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6156] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5029] <... openat resumed>) = 3 [pid 6175] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 6174] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6158] <... clone3 resumed> => {parent_tid=[133]}, 88) = 133 [pid 5029] newfstatat(3, "", [pid 6175] <... rseq resumed>) = 0 [pid 6174] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6158] rt_sigprocmask(SIG_SETMASK, [], [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6175] set_robust_list(0x7f4f6607e9a0, 24 [pid 6174] <... futex resumed>) = 1 [pid 6173] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6158] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6156] <... futex resumed>) = 0 [pid 5029] getdents64(3, [pid 6175] <... set_robust_list resumed>) = 0 [pid 6174] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6158] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6175] rt_sigprocmask(SIG_SETMASK, [], [pid 6158] <... futex resumed>) = 0 [pid 5029] umount2("./43/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6175] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6158] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6175] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 5029] newfstatat(AT_FDCWD, "./43/cgroup.cpu", [pid 6175] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6175] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] unlink("./43/cgroup.cpu" [pid 6175] <... futex resumed>) = 1 [pid 6158] <... futex resumed>) = 0 [pid 5029] <... unlink resumed>) = 0 [pid 6175] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6158] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] umount2("./43/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6158] <... futex resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6158] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5029] newfstatat(AT_FDCWD, "./43/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./43/binderfs") = 0 [pid 5029] umount2("./43/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./43/file0", [pid 6173] <... futex resumed>) = 1 [pid 6158] <... futex resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6173] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6158] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=46000000} [pid 5029] umount2("./43/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] openat(AT_FDCWD, "./43/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5029] newfstatat(4, "", [pid 6159] <... mprotect resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6159] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5029] getdents64(4, [pid 6173] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6173] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] getdents64(4, [pid 6173] <... futex resumed>) = 1 [pid 6158] <... futex resumed>) = 0 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5029] close(4) = 0 [pid 5029] rmdir("./43/file0") = 0 [pid 6159] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5029] umount2("./43/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6173] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6161] <... ioctl resumed>) = 0 [pid 6159] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 6176 attached [pid 6161] close(4 [pid 5029] newfstatat(AT_FDCWD, "./43/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./43/cgroup" [pid 6176] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6161] <... close resumed>) = 0 [pid 6159] <... clone3 resumed> => {parent_tid=[134]}, 88) = 134 [pid 5029] <... unlink resumed>) = 0 [pid 5029] umount2("./43/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6176] <... rseq resumed>) = 0 [pid 6161] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6159] rt_sigprocmask(SIG_SETMASK, [], [pid 5029] newfstatat(AT_FDCWD, "./43/cgroup.net", [pid 6176] set_robust_list(0x7f4f6609f9a0, 24 [pid 6161] <... futex resumed>) = 0 [pid 6159] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6176] <... set_robust_list resumed>) = 0 [pid 6161] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5029] unlink("./43/cgroup.net" [pid 6176] rt_sigprocmask(SIG_SETMASK, [], [pid 6159] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] <... unlink resumed>) = 0 [pid 6176] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6159] <... futex resumed>) = 0 [pid 5029] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5029] close(3) = 0 [pid 5029] rmdir("./43" [pid 6176] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6159] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5029] <... rmdir resumed>) = 0 [pid 5029] mkdir("./44", 0777) = 0 [pid 6176] <... openat resumed>) = 3 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6176] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] <... openat resumed>) = 3 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3 [pid 6176] <... futex resumed>) = 1 [pid 6159] <... futex resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6177 attached [pid 6176] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6159] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 137 [pid 6177] set_robust_list(0x55555654e6a0, 24 [pid 6161] <... futex resumed>) = 0 [pid 6159] <... futex resumed>) = 1 [pid 6159] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6161] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6177] <... set_robust_list resumed>) = 0 [pid 6161] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6177] chdir("./44" [pid 6161] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6177] <... chdir resumed>) = 0 [pid 6161] <... futex resumed>) = 1 [pid 6159] <... futex resumed>) = 0 [pid 6177] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6159] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6161] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6159] <... futex resumed>) = 0 [pid 6159] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6161] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6177] <... prctl resumed>) = 0 [pid 6161] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6177] setpgid(0, 0 [pid 6161] <... futex resumed>) = 1 [pid 6159] <... futex resumed>) = 0 [pid 6177] <... setpgid resumed>) = 0 [pid 6177] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 6161] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6159] close(3 [pid 6177] <... symlink resumed>) = 0 [pid 6159] <... close resumed>) = 0 [pid 6177] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu" [pid 6159] close(4 [pid 6177] <... symlink resumed>) = 0 [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6177] symlink("/syzcgroup/net/syz0", "./cgroup.net" [pid 6159] close(5 [pid 6177] <... symlink resumed>) = 0 [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6177] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6159] close(6 [pid 6177] <... openat resumed>) = 3 [pid 6162] <... ioctl resumed>) = 0 [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6177] write(3, "1000", 4 [pid 6159] close(7 [pid 6177] <... write resumed>) = 4 [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6177] close(3 [pid 6162] close(4 [pid 6159] close(8 [pid 6177] <... close resumed>) = 0 [pid 6162] <... close resumed>) = 0 [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6177] symlink("/dev/binderfs", "./binderfs" [pid 6159] close(9 [pid 6162] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] close(3) = 0 [pid 6177] <... symlink resumed>) = 0 [pid 6162] <... futex resumed>) = 0 [pid 6159] close(10 [pid 6158] close(4) = -1 EBADF (Bad file descriptor) [pid 6177] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6162] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] close(5) = -1 EBADF (Bad file descriptor) [pid 6158] close(6 [pid 6177] <... futex resumed>) = 0 [pid 6164] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6159] close(11 [pid 6158] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] close(7 [pid 6177] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6177] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6165] <... mount resumed>) = -1 EEXIST (File exists) [pid 6159] close(12 [pid 6158] close(8) = -1 EBADF (Bad file descriptor) [pid 6158] close(9 [pid 6177] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6165] ioctl(4, LOOP_CLR_FD [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] close(10 [pid 6159] close(13 [pid 6158] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] close(11) = -1 EBADF (Bad file descriptor) [pid 6158] close(12) = -1 EBADF (Bad file descriptor) [pid 6158] close(13 [pid 6177] <... mprotect resumed>) = 0 [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6159] close(14 [pid 6158] close(14 [pid 6177] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] <... close resumed>) = -1 EBADF (Bad file descriptor) [ 322.591370][ T6165] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 322.608234][ T6165] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 6158] close(15 [pid 6177] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6159] close(15 [pid 6158] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] close(16) = -1 EBADF (Bad file descriptor) [pid 6158] close(17) = -1 EBADF (Bad file descriptor) [pid 6158] close(18) = -1 EBADF (Bad file descriptor) [pid 6158] close(19 [pid 6177] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] <... close resumed>) = -1 EBADF (Bad file descriptor) ./strace-static-x86_64: Process 6178 attached [pid 6159] close(16 [pid 6158] close(20 [pid 6178] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6177] <... clone3 resumed> => {parent_tid=[138]}, 88) = 138 [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6178] <... rseq resumed>) = 0 [pid 6177] rt_sigprocmask(SIG_SETMASK, [], [pid 6159] close(17 [pid 6158] close(21 [pid 6178] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6177] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6178] <... set_robust_list resumed>) = 0 [pid 6177] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6159] close(18 [pid 6158] close(22 [pid 6178] rt_sigprocmask(SIG_SETMASK, [], [pid 6177] <... futex resumed>) = 0 [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6178] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6177] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6159] close(19 [pid 6158] close(23) = -1 EBADF (Bad file descriptor) [pid 6158] close(24) = -1 EBADF (Bad file descriptor) [pid 6158] close(25) = -1 EBADF (Bad file descriptor) [pid 6158] close(26 [pid 6178] memfd_create("syzkaller", 0 [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6178] <... memfd_create resumed>) = 3 [pid 6159] close(20 [pid 6158] close(27 [pid 6178] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] close(28) = -1 EBADF (Bad file descriptor) [pid 6158] close(29 [pid 6178] <... mmap resumed>) = 0x7f4f650a0000 [pid 6159] close(21 [pid 6158] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6159] close(22 [pid 6158] <... write resumed>) = 156 [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] exit_group(0 [pid 6175] <... futex resumed>) = ? [pid 6173] <... futex resumed>) = ? [pid 6162] <... futex resumed>) = ? [pid 6159] close(23 [pid 6158] <... exit_group resumed>) = ? [pid 6175] +++ exited with 0 +++ [pid 6173] +++ exited with 0 +++ [pid 6162] +++ exited with 0 +++ [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6158] +++ exited with 0 +++ [pid 6159] close(24 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=130, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=87 /* 0.87 s */} --- [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6159] close(25) = -1 EBADF (Bad file descriptor) [pid 6159] close(26) = -1 EBADF (Bad file descriptor) [pid 6159] close(27) = -1 EBADF (Bad file descriptor) [pid 6159] close(28) = -1 EBADF (Bad file descriptor) [pid 6159] close(29 [pid 5031] umount2("./43", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6159] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6159] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5031] openat(AT_FDCWD, "./43", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6159] <... write resumed>) = 156 [pid 5031] <... openat resumed>) = 3 [pid 6159] exit_group(0 [pid 5031] newfstatat(3, "", [pid 6176] <... futex resumed>) = ? [pid 6161] <... futex resumed>) = ? [pid 6159] <... exit_group resumed>) = ? [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6176] +++ exited with 0 +++ [pid 6161] +++ exited with 0 +++ [pid 6159] +++ exited with 0 +++ [pid 5031] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=132, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=65 /* 0.65 s */} --- [pid 5031] umount2("./43/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] umount2("./44", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./43/cgroup.cpu", [pid 5032] openat(AT_FDCWD, "./44", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... openat resumed>) = 3 [pid 5031] unlink("./43/cgroup.cpu" [pid 5032] newfstatat(3, "", [pid 5031] <... unlink resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] umount2("./43/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(3, [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5031] newfstatat(AT_FDCWD, "./43/binderfs", [pid 5032] umount2("./44/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] unlink("./43/binderfs" [pid 5032] newfstatat(AT_FDCWD, "./44/cgroup.cpu", [pid 5031] <... unlink resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./43/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] unlink("./44/cgroup.cpu" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... unlink resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./43/file0", [pid 5032] umount2("./44/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./43/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] newfstatat(AT_FDCWD, "./44/binderfs", [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] openat(AT_FDCWD, "./43/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] unlink("./44/binderfs" [pid 5031] <... openat resumed>) = 4 [pid 5032] <... unlink resumed>) = 0 [pid 5031] newfstatat(4, "", [pid 5032] umount2("./44/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] getdents64(4, [pid 5032] newfstatat(AT_FDCWD, "./44/file0", [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] getdents64(4, [pid 5032] umount2("./44/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] close(4 [pid 5032] openat(AT_FDCWD, "./44/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... close resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5031] rmdir("./43/file0" [pid 5032] newfstatat(4, "", [pid 5031] <... rmdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] umount2("./43/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(4, [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5031] newfstatat(AT_FDCWD, "./43/cgroup", [pid 5032] getdents64(4, [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5031] unlink("./43/cgroup" [pid 5032] close(4 [pid 5031] <... unlink resumed>) = 0 [pid 5032] <... close resumed>) = 0 [pid 5031] umount2("./43/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] rmdir("./44/file0" [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... rmdir resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./43/cgroup.net", [pid 5032] umount2("./44/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] unlink("./43/cgroup.net" [pid 5032] newfstatat(AT_FDCWD, "./44/cgroup", [pid 5031] <... unlink resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] getdents64(3, [pid 5032] unlink("./44/cgroup" [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5031] close(3 [pid 5032] umount2("./44/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] rmdir("./43" [pid 5032] newfstatat(AT_FDCWD, "./44/cgroup.net", [pid 5031] <... rmdir resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] mkdir("./44", 0777 [pid 5032] unlink("./44/cgroup.net" [pid 5031] <... mkdir resumed>) = 0 [pid 5032] <... unlink resumed>) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5032] getdents64(3, [pid 5031] <... openat resumed>) = 3 [pid 5032] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 5032] close(3 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] <... close resumed>) = 0 [pid 5031] close(3 [pid 5032] rmdir("./44" [pid 5031] <... close resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6179 attached [pid 5032] mkdir("./45", 0777 [pid 6179] set_robust_list(0x55555654e6a0, 24 [pid 5032] <... mkdir resumed>) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 134 [pid 6179] <... set_robust_list resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6179] chdir("./44" [pid 5032] <... openat resumed>) = 3 [pid 6179] <... chdir resumed>) = 0 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6179] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6179] <... prctl resumed>) = 0 [pid 5032] close(3 [pid 6179] setpgid(0, 0 [pid 5032] <... close resumed>) = 0 [pid 6179] <... setpgid resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6180 attached [pid 6179] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 6180] set_robust_list(0x55555654e6a0, 24 [pid 6179] <... symlink resumed>) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 135 [pid 6180] <... set_robust_list resumed>) = 0 [pid 6179] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 6164] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6180] chdir("./45" [pid 6179] <... symlink resumed>) = 0 [pid 6164] <... futex resumed>) = 0 [pid 6179] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 6164] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6180] <... chdir resumed>) = 0 [pid 6179] <... symlink resumed>) = 0 [pid 6164] <... mmap resumed>) = 0x7f4f6607f000 [pid 6180] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6179] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6164] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6180] <... prctl resumed>) = 0 [pid 6179] <... openat resumed>) = 3 [pid 6164] <... mprotect resumed>) = 0 [pid 6180] setpgid(0, 0 [pid 6179] write(3, "1000", 4 [pid 6164] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6180] <... setpgid resumed>) = 0 [pid 6179] <... write resumed>) = 4 [pid 6164] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6179] close(3 [pid 6164] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 6181 attached [pid 6180] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 6179] <... close resumed>) = 0 [pid 6181] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6179] symlink("/dev/binderfs", "./binderfs" [pid 6164] <... clone3 resumed> => {parent_tid=[136]}, 88) = 136 [pid 6181] <... rseq resumed>) = 0 [pid 6180] <... symlink resumed>) = 0 [pid 6179] <... symlink resumed>) = 0 [pid 6164] rt_sigprocmask(SIG_SETMASK, [], [pid 6181] set_robust_list(0x7f4f6609f9a0, 24 [pid 6180] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 6179] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6164] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6181] <... set_robust_list resumed>) = 0 [pid 6179] <... futex resumed>) = 0 [pid 6164] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6181] rt_sigprocmask(SIG_SETMASK, [], [pid 6180] <... symlink resumed>) = 0 [pid 6179] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6164] <... futex resumed>) = 0 [pid 6181] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6180] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 6179] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6164] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6181] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6180] <... symlink resumed>) = 0 [pid 6179] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6181] <... openat resumed>) = 3 [pid 6180] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6179] <... mprotect resumed>) = 0 [pid 6181] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6179] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6181] <... futex resumed>) = 1 [pid 6179] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6164] <... futex resumed>) = 0 [pid 6181] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6179] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 6164] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 6182 attached [pid 6181] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6180] <... openat resumed>) = 3 [pid 6164] <... futex resumed>) = 0 [pid 6182] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6181] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6180] write(3, "1000", 4 [pid 6179] <... clone3 resumed> => {parent_tid=[135]}, 88) = 135 [pid 6164] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6182] <... rseq resumed>) = 0 [pid 6181] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6179] rt_sigprocmask(SIG_SETMASK, [], [pid 6182] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6181] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6180] <... write resumed>) = 4 [pid 6179] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6182] <... set_robust_list resumed>) = 0 [pid 6181] <... futex resumed>) = 1 [pid 6180] close(3 [pid 6179] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6164] <... futex resumed>) = 0 [pid 6182] rt_sigprocmask(SIG_SETMASK, [], [pid 6181] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6180] <... close resumed>) = 0 [pid 6179] <... futex resumed>) = 0 [pid 6182] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6181] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6180] symlink("/dev/binderfs", "./binderfs" [pid 6179] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6164] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6182] memfd_create("syzkaller", 0 [pid 6181] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6164] <... futex resumed>) = 0 [pid 6182] <... memfd_create resumed>) = 3 [pid 6181] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6180] <... symlink resumed>) = 0 [pid 6164] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6182] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6181] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6180] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6182] <... mmap resumed>) = 0x7f4f650a0000 [pid 6181] <... futex resumed>) = 1 [pid 6180] <... futex resumed>) = 0 [pid 6164] <... futex resumed>) = 0 [pid 6181] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6180] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 6180] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6180] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6180] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6183 attached [pid 6183] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6180] <... clone3 resumed> => {parent_tid=[136]}, 88) = 136 [pid 6183] <... rseq resumed>) = 0 [pid 6180] rt_sigprocmask(SIG_SETMASK, [], [pid 6183] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6180] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6180] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6183] <... set_robust_list resumed>) = 0 [pid 6180] <... futex resumed>) = 0 [pid 6183] rt_sigprocmask(SIG_SETMASK, [], [pid 6180] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6183] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6183] memfd_create("syzkaller", 0) = 3 [pid 6183] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 6160] <... ioctl resumed>) = 0 [pid 6160] close(4) = 0 [pid 6160] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6156] close(3 [pid 6160] <... futex resumed>) = 0 [pid 6160] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6156] <... close resumed>) = 0 [pid 6156] close(4) = -1 EBADF (Bad file descriptor) [pid 6156] close(5) = -1 EBADF (Bad file descriptor) [pid 6156] close(6) = -1 EBADF (Bad file descriptor) [pid 6156] close(7) = -1 EBADF (Bad file descriptor) [pid 6156] close(8) = -1 EBADF (Bad file descriptor) [pid 6156] close(9) = -1 EBADF (Bad file descriptor) [pid 6156] close(10) = -1 EBADF (Bad file descriptor) [pid 6156] close(11) = -1 EBADF (Bad file descriptor) [pid 6156] close(12) = -1 EBADF (Bad file descriptor) [pid 6156] close(13) = -1 EBADF (Bad file descriptor) [pid 6156] close(14) = -1 EBADF (Bad file descriptor) [pid 6156] close(15) = -1 EBADF (Bad file descriptor) [pid 6156] close(16 [pid 5030] kill(-125, SIGKILL [pid 6174] <... futex resumed>) = ? [pid 6160] <... futex resumed>) = ? [pid 6156] <... close resumed>) = ? [pid 5030] <... kill resumed>) = 0 [pid 6174] +++ killed by SIGKILL +++ [pid 6160] +++ killed by SIGKILL +++ [pid 6156] +++ killed by SIGKILL +++ [pid 5030] kill(125, SIGKILL) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=125, si_uid=0, si_status=SIGKILL, si_utime=4 /* 0.04 s */, si_stime=64 /* 0.64 s */} --- [pid 5030] umount2("./43", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./43", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5030] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5030] umount2("./43/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./43/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./43/cgroup.cpu") = 0 [pid 5030] umount2("./43/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./43/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./43/binderfs") = 0 [pid 5030] umount2("./43/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./43/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] umount2("./43/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./43/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5030] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] close(4) = 0 [pid 5030] rmdir("./43/file0") = 0 [pid 5030] umount2("./43/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./43/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./43/cgroup") = 0 [pid 5030] umount2("./43/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./43/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] unlink("./43/cgroup.net") = 0 [pid 5030] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] close(3) = 0 [pid 5030] rmdir("./43") = 0 [pid 5030] mkdir("./44", 0777) = 0 [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5034] <... umount2 resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5030] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5030] close(3 [pid 5034] umount2("./44/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... close resumed>) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6184 attached [pid 6184] set_robust_list(0x55555654e6a0, 24 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 128 [pid 6184] <... set_robust_list resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./44/file0", [pid 6184] chdir("./44" [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6184] <... chdir resumed>) = 0 [pid 5034] umount2("./44/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6184] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6184] <... prctl resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./44/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6184] setpgid(0, 0 [pid 5034] <... openat resumed>) = 4 [pid 6184] <... setpgid resumed>) = 0 [pid 5034] newfstatat(4, "", [pid 6184] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6184] <... symlink resumed>) = 0 [pid 5034] getdents64(4, [pid 6184] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu") = 0 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6184] symlink("/syzcgroup/net/syz3", "./cgroup.net" [pid 5034] getdents64(4, [pid 6184] <... symlink resumed>) = 0 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6184] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5034] close(4 [pid 6184] write(3, "1000", 4 [pid 5034] <... close resumed>) = 0 [pid 6184] <... write resumed>) = 4 [pid 5034] rmdir("./44/file0" [pid 6184] close(3 [pid 5034] <... rmdir resumed>) = 0 [pid 6184] <... close resumed>) = 0 [pid 5034] umount2("./44/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6184] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6184] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] newfstatat(AT_FDCWD, "./44/cgroup", [pid 6184] <... futex resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6184] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5034] unlink("./44/cgroup" [pid 6184] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6184] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5034] <... unlink resumed>) = 0 [pid 6184] <... mprotect resumed>) = 0 [pid 6184] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5034] umount2("./44/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6184] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6184] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5034] newfstatat(AT_FDCWD, "./44/cgroup.net", ./strace-static-x86_64: Process 6185 attached {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6185] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6184] <... clone3 resumed> => {parent_tid=[129]}, 88) = 129 [pid 5034] unlink("./44/cgroup.net" [pid 6185] <... rseq resumed>) = 0 [pid 6184] rt_sigprocmask(SIG_SETMASK, [], [pid 6185] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6184] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 6185] <... set_robust_list resumed>) = 0 [pid 6184] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] getdents64(3, [pid 6184] <... futex resumed>) = 0 [pid 6184] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6185] rt_sigprocmask(SIG_SETMASK, [], [pid 5034] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6185] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5034] close(3 [pid 6185] memfd_create("syzkaller", 0 [pid 5034] <... close resumed>) = 0 [pid 6185] <... memfd_create resumed>) = 3 [pid 5034] rmdir("./44" [pid 6185] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... rmdir resumed>) = 0 [pid 6185] <... mmap resumed>) = 0x7f4f650a0000 [pid 5034] mkdir("./45", 0777) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6186 attached [pid 6186] set_robust_list(0x55555654e6a0, 24 [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 136 [pid 6186] <... set_robust_list resumed>) = 0 [pid 6186] chdir("./45") = 0 [pid 6186] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6186] setpgid(0, 0) = 0 [pid 6186] symlink("/syzcgroup/unified/syz5", "./cgroup") = 0 [pid 6186] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu") = 0 [pid 6186] symlink("/syzcgroup/net/syz5", "./cgroup.net") = 0 [pid 6186] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6186] write(3, "1000", 4) = 4 [pid 6186] close(3 [pid 6164] close(3 [pid 6186] <... close resumed>) = 0 [pid 6186] symlink("/dev/binderfs", "./binderfs" [pid 6164] <... close resumed>) = 0 [pid 5033] kill(-134, SIGKILL [pid 6186] <... symlink resumed>) = 0 [pid 6181] <... futex resumed>) = ? [pid 5033] <... kill resumed>) = 0 [pid 6186] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6186] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 6181] +++ killed by SIGKILL +++ [pid 5033] kill(134, SIGKILL [pid 6186] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5033] <... kill resumed>) = 0 [pid 6186] <... mprotect resumed>) = 0 [pid 6186] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6186] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6187 attached [pid 6187] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053) = 0 [pid 6186] <... clone3 resumed> => {parent_tid=[137]}, 88) = 137 [pid 6187] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6186] rt_sigprocmask(SIG_SETMASK, [], [pid 6165] <... ioctl resumed>) = ? [pid 6187] <... set_robust_list resumed>) = 0 [pid 6186] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6187] rt_sigprocmask(SIG_SETMASK, [], [pid 6186] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6187] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6186] <... futex resumed>) = 0 [pid 6187] memfd_create("syzkaller", 0 [pid 6186] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6187] <... memfd_create resumed>) = 3 [pid 6187] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 6165] +++ killed by SIGKILL +++ [pid 6164] +++ killed by SIGKILL +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=134, si_uid=0, si_status=SIGKILL, si_utime=4 /* 0.04 s */, si_stime=61 /* 0.61 s */} --- [pid 5033] umount2("./45", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./45", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5033] umount2("./45/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./45/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./45/cgroup.cpu") = 0 [pid 5033] umount2("./45/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./45/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./45/binderfs") = 0 [pid 5033] umount2("./45/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./45/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./45/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./45/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./45/file0") = 0 [pid 5033] umount2("./45/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./45/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./45/cgroup") = 0 [pid 5033] umount2("./45/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./45/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./45/cgroup.net") = 0 [pid 5033] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./45") = 0 [pid 5033] mkdir("./46", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6188 attached [pid 6188] set_robust_list(0x55555654e6a0, 24 [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 137 [pid 6188] <... set_robust_list resumed>) = 0 [pid 6188] chdir("./46") = 0 [pid 6188] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6188] setpgid(0, 0) = 0 [pid 6188] symlink("/syzcgroup/unified/syz2", "./cgroup") = 0 [pid 6188] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu") = 0 [pid 6188] symlink("/syzcgroup/net/syz2", "./cgroup.net") = 0 [pid 6188] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6188] write(3, "1000", 4) = 4 [pid 6178] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6188] close(3) = 0 [pid 6188] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6188] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6188] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 6188] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6188] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6188] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6189 attached [pid 6189] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6188] <... clone3 resumed> => {parent_tid=[138]}, 88) = 138 [pid 6189] <... rseq resumed>) = 0 [pid 6188] rt_sigprocmask(SIG_SETMASK, [], [pid 6189] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6188] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6189] <... set_robust_list resumed>) = 0 [pid 6188] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6189] rt_sigprocmask(SIG_SETMASK, [], [pid 6188] <... futex resumed>) = 0 [pid 6189] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6188] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6189] memfd_create("syzkaller", 0) = 3 [pid 6189] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 6183] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6182] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6185] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6187] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6178] <... write resumed>) = 16777216 [pid 6178] munmap(0x7f4f650a0000, 16777216 [pid 6189] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6178] <... munmap resumed>) = 0 [pid 6178] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6183] <... write resumed>) = 16777216 [pid 6182] <... write resumed>) = 16777216 [pid 6178] <... openat resumed>) = 4 [pid 6183] munmap(0x7f4f650a0000, 16777216 [pid 6182] munmap(0x7f4f650a0000, 16777216 [pid 6178] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6178] close(3) = 0 [pid 6178] mkdir("./file0", 0777) = 0 [ 324.586193][ T6178] loop0: detected capacity change from 0 to 32768 [ 324.642060][ T6178] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 324.657489][ T6178] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [pid 6178] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6182] <... munmap resumed>) = 0 [pid 6183] <... munmap resumed>) = 0 [ 324.711945][ T6178] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 324.737477][ T5083] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 324.744316][ T5083] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [pid 6185] <... write resumed>) = 16777216 [pid 6183] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6182] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6183] <... openat resumed>) = 4 [pid 6183] ioctl(4, LOOP_SET_FD, 3 [pid 6182] <... openat resumed>) = 4 [pid 6182] ioctl(4, LOOP_SET_FD, 3 [pid 6185] munmap(0x7f4f650a0000, 16777216 [pid 6183] <... ioctl resumed>) = 0 [pid 6182] <... ioctl resumed>) = 0 [pid 6183] close(3 [pid 6182] close(3 [pid 6183] <... close resumed>) = 0 [pid 6182] <... close resumed>) = 0 [pid 6183] mkdir("./file0", 0777 [pid 6182] mkdir("./file0", 0777 [pid 6183] <... mkdir resumed>) = 0 [pid 6183] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6182] <... mkdir resumed>) = 0 [ 324.801818][ T6183] loop1: detected capacity change from 0 to 32768 [ 324.810156][ T6182] loop4: detected capacity change from 0 to 32768 [ 324.854121][ T6182] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 324.871958][ T6183] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 324.895880][ T6182] CPU: 1 PID: 6182 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 324.906397][ T6182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 324.916525][ T6182] Call Trace: [ 324.919851][ T6182] [ 324.922825][ T6182] dump_stack_lvl+0x136/0x150 [ 324.927575][ T6182] sysfs_warn_dup+0x80/0xa0 [ 324.932144][ T6182] sysfs_create_dir_ns+0x237/0x290 [ 324.937318][ T6182] ? sysfs_create_mount_point+0xb0/0xb0 [ 324.940339][ T5083] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 196ms [ 324.942905][ T6182] ? spin_bug+0x1c0/0x1c0 [ 324.954752][ T6182] ? do_raw_spin_unlock+0x175/0x230 [ 324.960016][ T6182] kobject_add_internal+0x2c9/0x9c0 [ 324.965265][ T6182] ? kfree+0x11/0x150 [ 324.969291][ T6182] kobject_init_and_add+0x101/0x170 [ 324.974524][ T6182] ? kobject_create_and_add+0xf0/0xf0 [ 324.979964][ T6182] ? lockdep_init_map_type+0x21e/0x810 [ 324.985487][ T6182] ? lockdep_hardirqs_on+0x7d/0x100 [ 324.990745][ T6182] ? lockdep_init_map_type+0x21e/0x810 [ 324.996247][ T6182] gfs2_sys_fs_add+0x1d5/0x450 [ 325.001052][ T6182] ? recover_store+0x170/0x170 [ 325.005848][ T6182] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 325.011628][ T6182] gfs2_fill_super+0x1312/0x2aa0 [ 325.016604][ T6182] ? gfs2_reconfigure+0xf90/0xf90 [ 325.021658][ T6182] ? snprintf+0xbf/0x100 [ 325.025933][ T6182] ? vsprintf+0x30/0x30 [ 325.030121][ T6182] ? wait_for_completion_io_timeout+0x20/0x20 [ 325.036229][ T6182] ? set_blocksize+0x2d8/0x370 [ 325.041033][ T6182] get_tree_bdev+0x43e/0x7d0 [ 325.045666][ T6182] ? gfs2_reconfigure+0xf90/0xf90 [ 325.050736][ T6182] gfs2_get_tree+0x4e/0x270 [ 325.055284][ T6182] vfs_get_tree+0x8d/0x350 [ 325.059731][ T6182] path_mount+0x136e/0x1e70 [ 325.064270][ T6182] ? putname+0x102/0x140 [ 325.068549][ T6182] ? lockdep_hardirqs_on+0x7d/0x100 [ 325.073783][ T6182] ? finish_automount+0xa30/0xa30 [ 325.078842][ T6182] ? putname+0x102/0x140 [ 325.083112][ T6182] __x64_sys_mount+0x283/0x300 [ 325.087912][ T6182] ? copy_mnt_ns+0xb30/0xb30 [ 325.092545][ T6182] ? lockdep_hardirqs_on+0x7d/0x100 [ 325.097788][ T6182] ? _raw_spin_unlock_irq+0x2e/0x50 [ 325.103027][ T6182] ? ptrace_notify+0xfe/0x140 [ 325.107753][ T6182] do_syscall_64+0x39/0xb0 [ 325.112202][ T6182] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 325.118145][ T6182] RIP: 0033:0x7f4f6dd11c5a [ 325.122582][ T6182] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 325.142224][ T6182] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 325.150672][ T6182] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 325.158681][ T6182] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 325.166682][ T6182] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 325.174768][ T6182] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 325.182762][ T6182] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 325.190761][ T6182] [ 325.215891][ T6183] CPU: 0 PID: 6183 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 325.226400][ T6183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 325.236505][ T6183] Call Trace: [ 325.239823][ T6183] [ 325.242786][ T6183] dump_stack_lvl+0x136/0x150 [ 325.247532][ T6183] sysfs_warn_dup+0x80/0xa0 [ 325.252092][ T6183] sysfs_create_dir_ns+0x237/0x290 [ 325.257259][ T6183] ? sysfs_create_mount_point+0xb0/0xb0 [ 325.262861][ T6183] ? spin_bug+0x1c0/0x1c0 [ 325.267260][ T6183] ? do_raw_spin_unlock+0x175/0x230 [ 325.272525][ T6183] kobject_add_internal+0x2c9/0x9c0 [ 325.277779][ T6183] ? kfree+0x11/0x150 [ 325.281820][ T6183] kobject_init_and_add+0x101/0x170 [ 325.287086][ T6183] ? kobject_create_and_add+0xf0/0xf0 [ 325.292547][ T6183] ? lockdep_init_map_type+0x21e/0x810 [ 325.298088][ T6183] ? lockdep_hardirqs_on+0x7d/0x100 [ 325.303350][ T6183] ? lockdep_init_map_type+0x21e/0x810 [ 325.308885][ T6183] gfs2_sys_fs_add+0x1d5/0x450 [ 325.313707][ T6183] ? recover_store+0x170/0x170 [ 325.318536][ T6183] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 325.324330][ T6183] gfs2_fill_super+0x1312/0x2aa0 [ 325.329334][ T6183] ? gfs2_reconfigure+0xf90/0xf90 [ 325.334426][ T6183] ? snprintf+0xbf/0x100 [ 325.338735][ T6183] ? vsprintf+0x30/0x30 [ 325.342947][ T6183] ? wait_for_completion_io_timeout+0x20/0x20 [ 325.349078][ T6183] ? set_blocksize+0x2d8/0x370 [ 325.353915][ T6183] get_tree_bdev+0x43e/0x7d0 [ 325.358635][ T6183] ? gfs2_reconfigure+0xf90/0xf90 [ 325.363726][ T6183] gfs2_get_tree+0x4e/0x270 [ 325.368290][ T6183] vfs_get_tree+0x8d/0x350 [ 325.372763][ T6183] path_mount+0x136e/0x1e70 [ 325.377324][ T6183] ? putname+0x102/0x140 [ 325.381623][ T6183] ? lockdep_hardirqs_on+0x7d/0x100 [ 325.386884][ T6183] ? finish_automount+0xa30/0xa30 [ 325.391974][ T6183] ? putname+0x102/0x140 [ 325.396276][ T6183] __x64_sys_mount+0x283/0x300 [ 325.401109][ T6183] ? copy_mnt_ns+0xb30/0xb30 [ 325.405764][ T6183] ? lockdep_hardirqs_on+0x7d/0x100 [ 325.411037][ T6183] ? _raw_spin_unlock_irq+0x2e/0x50 [ 325.416309][ T6183] ? ptrace_notify+0xfe/0x140 [ 325.421082][ T6183] do_syscall_64+0x39/0xb0 [ 325.425551][ T6183] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 325.431537][ T6183] RIP: 0033:0x7f4f6dd11c5a [ 325.436000][ T6183] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 325.455669][ T6183] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [pid 6182] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6189] <... write resumed>) = 16777216 [ 325.464142][ T6183] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 325.472163][ T6183] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 325.480185][ T6183] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 325.488211][ T6183] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 325.496238][ T6183] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 325.504263][ T6183] [ 325.511930][ T5083] gfs2: fsid=syz:syz.0: jid=0: Done [pid 6189] munmap(0x7f4f650a0000, 16777216 [pid 6178] <... mount resumed>) = 0 [pid 6178] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 6185] <... munmap resumed>) = 0 [pid 6178] <... openat resumed>) = 3 [pid 6185] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6178] chdir("./file0" [pid 6185] <... openat resumed>) = 4 [pid 6178] <... chdir resumed>) = 0 [pid 6185] ioctl(4, LOOP_SET_FD, 3 [pid 6178] ioctl(4, LOOP_CLR_FD) = 0 [pid 6178] close(4) = 0 [pid 6178] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6185] <... ioctl resumed>) = 0 [pid 6178] <... futex resumed>) = 1 [pid 6177] <... futex resumed>) = 0 [pid 6185] close(3 [pid 6178] openat(AT_FDCWD, "./file0", O_RDONLY [ 325.535858][ T6178] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 325.570240][ T6185] loop3: detected capacity change from 0 to 32768 [pid 6177] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6189] <... munmap resumed>) = 0 [pid 6189] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 6189] ioctl(4, LOOP_SET_FD, 3 [pid 6185] <... close resumed>) = 0 [pid 6189] <... ioctl resumed>) = 0 [pid 6185] mkdir("./file0", 0777) = 0 [pid 6185] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6189] close(3) = 0 [pid 6189] mkdir("./file0", 0777 [ 325.597472][ T6178] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 325.607843][ T6189] loop2: detected capacity change from 0 to 32768 [pid 6177] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6189] <... mkdir resumed>) = 0 [ 325.635049][ T6178] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 325.635049][ T6178] inode = 12 2341 [ 325.635049][ T6178] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 325.660021][ T6185] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 325.669682][ T6182] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 325.684026][ T6189] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 325.686092][ T6182] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 325.691570][ T6189] CPU: 1 PID: 6189 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 325.708516][ T6189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 325.718614][ T6189] Call Trace: [ 325.721941][ T6189] [ 325.724908][ T6189] dump_stack_lvl+0x136/0x150 [ 325.729661][ T6189] sysfs_warn_dup+0x80/0xa0 [ 325.734230][ T6189] sysfs_create_dir_ns+0x237/0x290 [pid 6189] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6187] <... write resumed>) = 16777216 [pid 6187] munmap(0x7f4f650a0000, 16777216 [pid 6177] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 325.739410][ T6189] ? sysfs_create_mount_point+0xb0/0xb0 [ 325.745020][ T6189] ? spin_bug+0x1c0/0x1c0 [ 325.749424][ T6189] ? do_raw_spin_unlock+0x175/0x230 [ 325.754682][ T6189] kobject_add_internal+0x2c9/0x9c0 [ 325.759922][ T6189] ? kfree+0x11/0x150 [ 325.763957][ T6189] kobject_init_and_add+0x101/0x170 [ 325.767153][ T6178] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 325.769196][ T6189] ? kobject_create_and_add+0xf0/0xf0 [ 325.769237][ T6189] ? lockdep_init_map_type+0x21e/0x810 [ 325.789256][ T6189] ? lockdep_hardirqs_on+0x7d/0x100 [ 325.794527][ T6189] ? lockdep_init_map_type+0x21e/0x810 [ 325.800088][ T6189] gfs2_sys_fs_add+0x1d5/0x450 [ 325.805086][ T6189] ? recover_store+0x170/0x170 [ 325.809908][ T6189] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 325.815704][ T6189] gfs2_fill_super+0x1312/0x2aa0 [ 325.820699][ T6189] ? gfs2_reconfigure+0xf90/0xf90 [ 325.825778][ T6189] ? snprintf+0xbf/0x100 [ 325.830078][ T6189] ? vsprintf+0x30/0x30 [ 325.834280][ T6189] ? wait_for_completion_io_timeout+0x20/0x20 [ 325.835241][ T6178] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6178 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 325.840386][ T6189] ? set_blocksize+0x2d8/0x370 [ 325.840433][ T6189] get_tree_bdev+0x43e/0x7d0 [ 325.840475][ T6189] ? gfs2_reconfigure+0xf90/0xf90 [ 325.840512][ T6189] gfs2_get_tree+0x4e/0x270 [ 325.840547][ T6189] vfs_get_tree+0x8d/0x350 [ 325.840583][ T6189] path_mount+0x136e/0x1e70 [ 325.840625][ T6189] ? putname+0x102/0x140 [ 325.840660][ T6189] ? lockdep_hardirqs_on+0x7d/0x100 [ 325.840700][ T6189] ? finish_automount+0xa30/0xa30 [ 325.840740][ T6189] ? putname+0x102/0x140 [ 325.840776][ T6189] __x64_sys_mount+0x283/0x300 [ 325.902297][ T6189] ? copy_mnt_ns+0xb30/0xb30 [ 325.906958][ T6189] ? lockdep_hardirqs_on+0x7d/0x100 [ 325.912220][ T6189] ? _raw_spin_unlock_irq+0x2e/0x50 [ 325.917501][ T6189] ? ptrace_notify+0xfe/0x140 [ 325.922261][ T6189] do_syscall_64+0x39/0xb0 [ 325.926737][ T6189] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 325.932823][ T6189] RIP: 0033:0x7f4f6dd11c5a [pid 6177] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6182] <... mount resumed>) = -1 EEXIST (File exists) [pid 6177] <... futex resumed>) = 0 [ 325.937284][ T6189] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 325.943384][ T6178] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 325.956916][ T6189] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 325.956952][ T6189] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 325.956974][ T6189] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 325.956996][ T6189] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 325.957018][ T6189] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 325.957041][ T6189] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 325.957067][ T6189] [ 325.974331][ T6185] CPU: 1 PID: 6185 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 326.027694][ T6185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 326.038068][ T6185] Call Trace: [pid 6182] ioctl(4, LOOP_CLR_FD [pid 6187] <... munmap resumed>) = 0 [pid 6187] openat(AT_FDCWD, "/dev/loop5", O_RDWR) = 4 [pid 6187] ioctl(4, LOOP_SET_FD, 3) = 0 [ 326.041403][ T6185] [ 326.044390][ T6185] dump_stack_lvl+0x136/0x150 [ 326.049159][ T6185] sysfs_warn_dup+0x80/0xa0 [ 326.053738][ T6185] sysfs_create_dir_ns+0x237/0x290 [ 326.058925][ T6185] ? sysfs_create_mount_point+0xb0/0xb0 [ 326.064546][ T6185] ? spin_bug+0x1c0/0x1c0 [ 326.067171][ T6187] loop5: detected capacity change from 0 to 32768 [ 326.068940][ T6185] ? do_raw_spin_unlock+0x175/0x230 [ 326.080601][ T6185] kobject_add_internal+0x2c9/0x9c0 [ 326.085843][ T6185] ? kfree+0x11/0x150 [ 326.089861][ T6185] kobject_init_and_add+0x101/0x170 [ 326.095092][ T6185] ? kobject_create_and_add+0xf0/0xf0 [ 326.100500][ T6185] ? lockdep_init_map_type+0x21e/0x810 [ 326.106007][ T6185] ? lockdep_hardirqs_on+0x7d/0x100 [ 326.111254][ T6185] ? lockdep_init_map_type+0x21e/0x810 [ 326.116753][ T6185] gfs2_sys_fs_add+0x1d5/0x450 [ 326.121551][ T6185] ? recover_store+0x170/0x170 [ 326.126357][ T6185] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 326.132118][ T6185] gfs2_fill_super+0x1312/0x2aa0 [ 326.137185][ T6185] ? gfs2_reconfigure+0xf90/0xf90 [ 326.142246][ T6185] ? snprintf+0xbf/0x100 [ 326.146528][ T6185] ? vsprintf+0x30/0x30 [ 326.150730][ T6185] ? wait_for_completion_io_timeout+0x20/0x20 [ 326.156837][ T6185] ? set_blocksize+0x2d8/0x370 [ 326.161641][ T6185] get_tree_bdev+0x43e/0x7d0 [ 326.166268][ T6185] ? gfs2_reconfigure+0xf90/0xf90 [ 326.171420][ T6185] gfs2_get_tree+0x4e/0x270 [ 326.175959][ T6185] vfs_get_tree+0x8d/0x350 [ 326.180409][ T6185] path_mount+0x136e/0x1e70 [ 326.184948][ T6185] ? putname+0x102/0x140 [ 326.189221][ T6185] ? lockdep_hardirqs_on+0x7d/0x100 [ 326.194455][ T6185] ? finish_automount+0xa30/0xa30 [ 326.199519][ T6185] ? putname+0x102/0x140 [ 326.203796][ T6185] __x64_sys_mount+0x283/0x300 [ 326.208613][ T6185] ? copy_mnt_ns+0xb30/0xb30 [ 326.213235][ T6185] ? lockdep_hardirqs_on+0x7d/0x100 [ 326.218554][ T6185] ? _raw_spin_unlock_irq+0x2e/0x50 [ 326.223794][ T6185] ? ptrace_notify+0xfe/0x140 [ 326.228524][ T6185] do_syscall_64+0x39/0xb0 [ 326.232972][ T6185] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 326.238914][ T6185] RIP: 0033:0x7f4f6dd11c5a [ 326.243445][ T6185] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 326.263174][ T6185] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 326.271622][ T6185] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 326.279619][ T6185] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [pid 6187] close(3) = 0 [pid 6187] mkdir("./file0", 0777 [pid 6177] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6187] <... mkdir resumed>) = 0 [pid 6187] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [ 326.287621][ T6185] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 326.295621][ T6185] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 326.303626][ T6185] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 326.311634][ T6185] [ 326.315444][ T6183] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 326.335890][ T6178] gfs2: fsid=syz:syz.0: about to withdraw this file system [pid 6177] <... mmap resumed>) = 0x7f4f6607f000 [ 326.356180][ T6189] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 326.370600][ T6178] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 326.381571][ T6183] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 326.388679][ T6187] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 326.388942][ T6189] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 326.396256][ T6187] CPU: 0 PID: 6187 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 326.396298][ T6187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 326.396318][ T6187] Call Trace: [ 326.416594][ T6178] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 326.423324][ T6187] [ 326.436085][ T6187] dump_stack_lvl+0x136/0x150 [ 326.440868][ T6187] sysfs_warn_dup+0x80/0xa0 [ 326.445454][ T6187] sysfs_create_dir_ns+0x237/0x290 [ 326.450749][ T6187] ? sysfs_create_mount_point+0xb0/0xb0 [ 326.456368][ T6187] ? spin_bug+0x1c0/0x1c0 [ 326.460773][ T6187] ? do_raw_spin_unlock+0x175/0x230 [ 326.466054][ T6187] kobject_add_internal+0x2c9/0x9c0 [ 326.471312][ T6187] ? kfree+0x11/0x150 [ 326.475356][ T6187] kobject_init_and_add+0x101/0x170 [ 326.480621][ T6187] ? kobject_create_and_add+0xf0/0xf0 [ 326.486057][ T6187] ? lockdep_init_map_type+0x21e/0x810 [ 326.491592][ T6187] ? lockdep_hardirqs_on+0x7d/0x100 [ 326.495095][ T6178] gfs2: fsid=syz:syz.0: File system withdrawn [ 326.496837][ T6187] ? lockdep_init_map_type+0x21e/0x810 [ 326.496886][ T6187] gfs2_sys_fs_add+0x1d5/0x450 [ 326.496922][ T6187] ? recover_store+0x170/0x170 [ 326.518045][ T6187] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 326.523831][ T6187] gfs2_fill_super+0x1312/0x2aa0 [ 326.528841][ T6187] ? gfs2_reconfigure+0xf90/0xf90 [ 326.533927][ T6187] ? snprintf+0xbf/0x100 [ 326.538238][ T6187] ? vsprintf+0x30/0x30 [ 326.542461][ T6187] ? wait_for_completion_io_timeout+0x20/0x20 [ 326.548611][ T6187] ? set_blocksize+0x2d8/0x370 [ 326.553432][ T6187] get_tree_bdev+0x43e/0x7d0 [ 326.558089][ T6187] ? gfs2_reconfigure+0xf90/0xf90 [ 326.563170][ T6187] gfs2_get_tree+0x4e/0x270 [ 326.567730][ T6187] vfs_get_tree+0x8d/0x350 [ 326.572217][ T6187] path_mount+0x136e/0x1e70 [ 326.576786][ T6187] ? putname+0x102/0x140 [ 326.581153][ T6187] ? lockdep_hardirqs_on+0x7d/0x100 [ 326.586417][ T6187] ? finish_automount+0xa30/0xa30 [ 326.591518][ T6187] ? putname+0x102/0x140 [ 326.595819][ T6187] __x64_sys_mount+0x283/0x300 [ 326.600643][ T6187] ? copy_mnt_ns+0xb30/0xb30 [ 326.605290][ T6187] ? lockdep_hardirqs_on+0x7d/0x100 [ 326.610558][ T6187] ? _raw_spin_unlock_irq+0x2e/0x50 [ 326.615834][ T6187] ? ptrace_notify+0xfe/0x140 [ 326.620579][ T6187] do_syscall_64+0x39/0xb0 [ 326.625040][ T6187] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 326.631015][ T6187] RIP: 0033:0x7f4f6dd11c5a [ 326.635488][ T6187] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [pid 6177] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6177] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6177] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} => {parent_tid=[139]}, 88) = 139 [pid 6177] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6177] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6177] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 6177] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6177] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6605e000 [pid 6177] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6177] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6177] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} => {parent_tid=[140]}, 88) = 140 [pid 6177] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6177] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6177] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) ./strace-static-x86_64: Process 6197 attached [ 326.655151][ T6187] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 326.663625][ T6187] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 326.671651][ T6187] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 326.679674][ T6187] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 326.687710][ T6187] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 326.695730][ T6187] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 326.703740][ T6187] [pid 6197] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053./strace-static-x86_64: Process 6196 attached [pid 6183] <... mount resumed>) = -1 EEXIST (File exists) [pid 6183] ioctl(4, LOOP_CLR_FD [pid 6196] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6189] <... mount resumed>) = -1 EEXIST (File exists) [pid 6196] <... rseq resumed>) = 0 [pid 6189] ioctl(4, LOOP_CLR_FD [pid 6197] <... rseq resumed>) = 0 [ 326.708893][ T6185] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 326.723158][ T6185] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 326.730194][ T6187] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 326.748501][ T6178] CPU: 0 PID: 6178 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 326.759002][ T6178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 326.769111][ T6178] Call Trace: [ 326.772430][ T6178] [ 326.775406][ T6178] dump_stack_lvl+0x136/0x150 [ 326.780184][ T6178] gfs2_withdraw+0xb33/0x1060 [ 326.784928][ T6178] ? gfs2_consist_inode_i+0x104/0x150 [ 326.790366][ T6178] gfs2_dirent_scan+0x32a/0x3d0 [ 326.795456][ T6178] ? gfs2_dirent_prev+0x210/0x210 [ 326.800553][ T6178] ? gfs2_dirent_prev+0x210/0x210 [pid 6196] set_robust_list(0x7f4f6609f9a0, 24 [pid 6182] <... ioctl resumed>) = 0 [pid 6182] close(4) = 0 [pid 6182] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [ 326.805665][ T6178] gfs2_dirent_search+0x47d/0x580 [ 326.810763][ T6178] ? get_first_leaf+0x190/0x190 [ 326.815680][ T6178] ? gfs2_permission+0x256/0x3e0 [ 326.820691][ T6178] gfs2_dir_search+0x8d/0x2d0 [ 326.825448][ T6178] ? gfs2_dir_read+0x14e0/0x14e0 [ 326.830456][ T6178] gfs2_lookupi+0x481/0x640 [ 326.835026][ T6178] ? gfs2_lookup_by_inum+0x100/0x100 [ 326.840397][ T6178] ? __gfs2_lookup+0x83/0x280 [ 326.845136][ T6178] ? d_alloc_parallel+0x693/0x1530 [ 326.850325][ T6178] __gfs2_lookup+0x83/0x280 [ 326.854939][ T6178] ? gfs2_lookupi+0x640/0x640 [ 326.859675][ T6178] ? __d_lookup_rcu+0x4e0/0x4e0 [ 326.864602][ T6178] ? __d_lookup+0x289/0x4c0 [ 326.869166][ T6178] gfs2_atomic_open+0xde/0x250 [ 326.874169][ T6178] ? __gfs2_lookup+0x280/0x280 [ 326.879002][ T6178] lookup_open.isra.0+0xce2/0x1400 [ 326.884180][ T6178] ? link_path_walk.part.0+0xd60/0xd60 [ 326.889711][ T6178] ? lookup_fast+0x14e/0x520 [ 326.894359][ T6178] path_openat+0x969/0x2710 [ 326.898933][ T6178] ? path_lookupat+0x840/0x840 [ 326.903770][ T6178] ? find_held_lock+0x2d/0x110 [pid 6182] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6185] <... mount resumed>) = -1 EEXIST (File exists) [ 326.908598][ T6178] do_filp_open+0x1ba/0x410 [ 326.913169][ T6178] ? may_open_dev+0xf0/0xf0 [ 326.917742][ T6178] ? find_held_lock+0x2d/0x110 [ 326.922573][ T6178] ? do_raw_spin_lock+0x124/0x2b0 [ 326.927677][ T6178] ? spin_bug+0x1c0/0x1c0 [ 326.932084][ T6178] ? _raw_spin_unlock+0x28/0x40 [ 326.937007][ T6178] ? alloc_fd+0x2e4/0x750 [ 326.937903][ T6187] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 326.941391][ T6178] do_sys_openat2+0x160/0x1c0 [ 326.941447][ T6178] ? build_open_flags+0x720/0x720 [ 326.941498][ T6178] ? ptrace_notify+0xfe/0x140 [ 326.962481][ T6178] ? lock_downgrade+0x690/0x690 [ 326.967414][ T6178] __x64_sys_openat+0x143/0x1f0 [ 326.972329][ T6178] ? __ia32_sys_open+0x1c0/0x1c0 [ 326.977333][ T6178] ? _raw_spin_unlock_irq+0x23/0x50 [ 326.982579][ T6178] ? lockdep_hardirqs_on+0x7d/0x100 [ 326.987816][ T6178] ? _raw_spin_unlock_irq+0x2e/0x50 [ 326.993065][ T6178] ? ptrace_notify+0xfe/0x140 [ 326.997813][ T6178] do_syscall_64+0x39/0xb0 [ 327.002284][ T6178] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 327.008236][ T6178] RIP: 0033:0x7f4f6dd107f9 [ 327.012686][ T6178] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 327.032344][ T6178] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 327.040804][ T6178] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 327.048932][ T6178] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [pid 6185] ioctl(4, LOOP_CLR_FD [pid 6180] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6179] <... futex resumed>) = 0 [pid 6179] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6179] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6196] <... set_robust_list resumed>) = 0 [pid 6196] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6196] ioctl(0, VFAT_IOCTL_READDIR_SHORT, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 6196] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6196] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6197] set_robust_list(0x7f4f6607e9a0, 24) = 0 [pid 6197] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6197] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH) = -1 EIO (Input/output error) [pid 6197] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6197] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6178] <... openat resumed>) = -1 EIO (Input/output error) [pid 6178] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6178] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6180] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6180] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 6180] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6180] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6180] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 6198 attached [pid 6198] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6180] <... clone3 resumed> => {parent_tid=[137]}, 88) = 137 [pid 6198] <... rseq resumed>) = 0 [pid 6180] rt_sigprocmask(SIG_SETMASK, [], [pid 6187] <... mount resumed>) = -1 EEXIST (File exists) [pid 6182] <... futex resumed>) = 0 [pid 6198] set_robust_list(0x7f4f6609f9a0, 24 [pid 6180] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6198] <... set_robust_list resumed>) = 0 [pid 6180] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6198] rt_sigprocmask(SIG_SETMASK, [], [pid 6180] <... futex resumed>) = 0 [pid 6198] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6180] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6198] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 6198] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6180] <... futex resumed>) = 0 [pid 6198] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6180] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6198] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6180] <... futex resumed>) = 0 [pid 6198] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6180] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6198] <... futex resumed>) = 0 [pid 6180] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6198] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6180] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6198] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6180] <... futex resumed>) = 0 [pid 6198] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6180] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6198] <... futex resumed>) = 0 [pid 6180] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6198] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6177] close(3) = 0 [pid 6177] close(4) = -1 EBADF (Bad file descriptor) [pid 6177] close(5) = -1 EBADF (Bad file descriptor) [pid 6177] close(6) = -1 EBADF (Bad file descriptor) [pid 6177] close(7) = -1 EBADF (Bad file descriptor) [pid 6177] close(8) = -1 EBADF (Bad file descriptor) [pid 6177] close(9) = -1 EBADF (Bad file descriptor) [pid 6177] close(10) = -1 EBADF (Bad file descriptor) [pid 6177] close(11) = -1 EBADF (Bad file descriptor) [pid 6177] close(12) = -1 EBADF (Bad file descriptor) [pid 6177] close(13) = -1 EBADF (Bad file descriptor) [pid 6177] close(14) = -1 EBADF (Bad file descriptor) [pid 6177] close(15) = -1 EBADF (Bad file descriptor) [pid 6177] close(16) = -1 EBADF (Bad file descriptor) [pid 6177] close(17) = -1 EBADF (Bad file descriptor) [pid 6177] close(18) = -1 EBADF (Bad file descriptor) [pid 6177] close(19) = -1 EBADF (Bad file descriptor) [pid 6177] close(20) = -1 EBADF (Bad file descriptor) [pid 6177] close(21) = -1 EBADF (Bad file descriptor) [pid 6177] close(22) = -1 EBADF (Bad file descriptor) [pid 6177] close(23 [pid 6187] ioctl(4, LOOP_CLR_FD [pid 6182] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6177] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6182] <... openat resumed>) = 3 [pid 6177] close(24 [pid 6182] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6177] <... close resumed>) = -1 EBADF (Bad file descriptor) [ 327.056929][ T6178] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 327.064942][ T6178] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 327.072959][ T6178] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 327.080978][ T6178] [pid 6182] <... futex resumed>) = 1 [pid 6179] <... futex resumed>) = 0 [pid 6177] close(25 [pid 6182] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6179] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6177] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6182] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6179] <... futex resumed>) = 0 [pid 6177] close(26 [pid 6179] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6177] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6177] close(27) = -1 EBADF (Bad file descriptor) [pid 6177] close(28 [pid 6182] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6177] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6177] close(29) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6177] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 6177] exit_group(0 [pid 6197] <... futex resumed>) = ? [pid 6196] <... futex resumed>) = ? [pid 6178] <... futex resumed>) = ? [pid 6177] <... exit_group resumed>) = ? [pid 6197] +++ exited with 0 +++ [pid 6196] +++ exited with 0 +++ [pid 6182] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6179] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6178] +++ exited with 0 +++ [pid 6177] +++ exited with 0 +++ [pid 6182] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6179] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6182] <... futex resumed>) = 0 [pid 6179] <... futex resumed>) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=137, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=65 /* 0.65 s */} --- [pid 6182] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6179] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5029] umount2("./44", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6182] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6182] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] openat(AT_FDCWD, "./44", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6182] <... futex resumed>) = 1 [pid 6179] <... futex resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 6182] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6179] close(3 [pid 5029] newfstatat(3, "", [pid 6184] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6179] <... close resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6184] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6179] close(4 [pid 5029] getdents64(3, [pid 6184] <... futex resumed>) = 0 [pid 6179] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6184] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6179] close(5 [pid 5029] umount2("./44/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6184] <... mmap resumed>) = 0x7f4f6607f000 [pid 6179] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6184] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6179] close(6 [pid 5029] newfstatat(AT_FDCWD, "./44/cgroup.cpu", [pid 6184] <... mprotect resumed>) = 0 [pid 6179] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6184] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6179] close(7 [pid 5029] unlink("./44/cgroup.cpu" [pid 6184] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6179] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... unlink resumed>) = 0 [pid 6184] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6179] close(8 [pid 5029] umount2("./44/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6179] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6184] <... clone3 resumed> => {parent_tid=[130]}, 88) = 130 [pid 6179] close(9 [pid 5029] newfstatat(AT_FDCWD, "./44/binderfs", [pid 6184] rt_sigprocmask(SIG_SETMASK, [], [pid 6179] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6184] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6179] close(10 [pid 5029] unlink("./44/binderfs" [pid 6184] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6179] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... unlink resumed>) = 0 [pid 6184] <... futex resumed>) = 0 [pid 6179] close(11 [pid 5029] umount2("./44/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6184] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6179] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6179] close(12) = -1 EBADF (Bad file descriptor) [pid 6179] close(13) = -1 EBADF (Bad file descriptor) [pid 6179] close(14) = -1 EBADF (Bad file descriptor) [pid 6179] close(15) = -1 EBADF (Bad file descriptor) [pid 6179] close(16) = -1 EBADF (Bad file descriptor) [pid 6179] close(17) = -1 EBADF (Bad file descriptor) [pid 6179] close(18) = -1 EBADF (Bad file descriptor) [pid 6179] close(19) = -1 EBADF (Bad file descriptor) [pid 6179] close(20) = -1 EBADF (Bad file descriptor) [pid 6179] close(21) = -1 EBADF (Bad file descriptor) [pid 6179] close(22) = -1 EBADF (Bad file descriptor) [pid 6179] close(23) = -1 EBADF (Bad file descriptor) [pid 6179] close(24) = -1 EBADF (Bad file descriptor) [pid 6179] close(25./strace-static-x86_64: Process 6199 attached ) = -1 EBADF (Bad file descriptor) [pid 6179] close(26 [pid 6199] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6179] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6179] close(27) = -1 EBADF (Bad file descriptor) [pid 6179] close(28) = -1 EBADF (Bad file descriptor) [pid 6179] close(29) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6179] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 6179] exit_group(0 [pid 6182] <... futex resumed>) = ? [pid 6179] <... exit_group resumed>) = ? [pid 6182] +++ exited with 0 +++ [pid 6199] <... rseq resumed>) = 0 [pid 6184] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6179] +++ exited with 0 +++ [pid 6184] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=134, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=59 /* 0.59 s */} --- [pid 6186] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6184] <... futex resumed>) = 0 [pid 6199] set_robust_list(0x7f4f6609f9a0, 24 [pid 6186] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6184] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5031] umount2("./44", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./44", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5031] umount2("./44/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./44/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./44/cgroup.cpu") = 0 [pid 5031] umount2("./44/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./44/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./44/binderfs") = 0 [pid 5031] umount2("./44/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./44/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./44/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./44/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6186] <... futex resumed>) = 0 [pid 6183] <... ioctl resumed>) = 0 [pid 5031] <... openat resumed>) = 4 [pid 6183] close(4 [pid 5031] newfstatat(4, "", [pid 6183] <... close resumed>) = 0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5031] close(4) = 0 [pid 5031] rmdir("./44/file0" [pid 6199] <... set_robust_list resumed>) = 0 [pid 6184] <... mmap resumed>) = 0x7f4f6605e000 [pid 5031] <... rmdir resumed>) = 0 [pid 6183] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] umount2("./44/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6183] <... futex resumed>) = 0 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6183] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5031] newfstatat(AT_FDCWD, "./44/cgroup", [pid 6199] rt_sigprocmask(SIG_SETMASK, [], [pid 6184] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE [pid 6180] close(3 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6199] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6184] <... mprotect resumed>) = 0 [pid 6180] <... close resumed>) = 0 [pid 5031] unlink("./44/cgroup" [pid 6199] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6184] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6180] close(4 [pid 5031] <... unlink resumed>) = 0 [pid 6199] <... openat resumed>) = 3 [pid 6184] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] umount2("./44/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6199] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6184] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} [pid 6180] close(5 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] newfstatat(AT_FDCWD, "./44/cgroup.net", [pid 6180] close(6 [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 6200 attached [pid 6199] <... futex resumed>) = 0 [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] unlink("./44/cgroup.net" [pid 6200] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 6199] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6185] <... ioctl resumed>) = 0 [pid 6184] <... clone3 resumed> => {parent_tid=[131]}, 88) = 131 [pid 6180] close(7 [pid 5031] <... unlink resumed>) = 0 [pid 6200] <... rseq resumed>) = 0 [pid 6185] close(4 [pid 6184] rt_sigprocmask(SIG_SETMASK, [], [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] getdents64(3, [pid 6200] set_robust_list(0x7f4f6607e9a0, 24 [pid 6187] <... ioctl resumed>) = 0 [pid 6186] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6185] <... close resumed>) = 0 [pid 6184] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6180] close(8 [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6200] <... set_robust_list resumed>) = 0 [pid 6187] close(4 [pid 6186] <... mmap resumed>) = 0x7f4f6607f000 [pid 6185] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6184] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] close(3 [pid 6200] rt_sigprocmask(SIG_SETMASK, [], [pid 6187] <... close resumed>) = 0 [pid 6186] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6185] <... futex resumed>) = 0 [pid 6184] <... futex resumed>) = 0 [pid 6180] close(9 [pid 5031] <... close resumed>) = 0 [pid 6200] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6187] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6186] <... mprotect resumed>) = 0 [pid 6185] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6184] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] rmdir("./44" [pid 6200] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6187] <... futex resumed>) = 0 [pid 6186] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6180] close(10 [pid 5031] <... rmdir resumed>) = 0 [pid 6200] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] mkdir("./45", 0777 [pid 6200] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 6187] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6186] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6180] close(11 [pid 5031] <... mkdir resumed>) = 0 [pid 6200] <... futex resumed>) = 1 [pid 6186] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6184] <... futex resumed>) = 0 [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR./strace-static-x86_64: Process 6201 attached [pid 6200] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6184] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6180] close(12 [pid 5031] <... openat resumed>) = 3 [pid 6201] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6186] <... clone3 resumed> => {parent_tid=[138]}, 88) = 138 [pid 6185] <... futex resumed>) = 0 [pid 6184] <... futex resumed>) = 1 [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6201] <... rseq resumed>) = 0 [pid 6186] rt_sigprocmask(SIG_SETMASK, [], [pid 6185] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6184] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6180] close(13 [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6201] set_robust_list(0x7f4f6609f9a0, 24 [pid 6186] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6185] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] close(3 [pid 6201] <... set_robust_list resumed>) = 0 [pid 6186] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6185] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6180] close(14 [pid 5031] <... close resumed>) = 0 [pid 6201] rt_sigprocmask(SIG_SETMASK, [], [pid 6189] <... ioctl resumed>) = 0 [pid 6186] <... futex resumed>) = 0 [pid 6185] <... futex resumed>) = 1 [pid 6184] <... futex resumed>) = 0 [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6202 attached [pid 6201] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6189] close(4 [pid 6186] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6185] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6184] close(3 [pid 6180] close(15 [pid 6202] set_robust_list(0x55555654e6a0, 24 [pid 6201] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6189] <... close resumed>) = 0 [pid 6184] <... close resumed>) = 0 [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 136 [pid 6202] <... set_robust_list resumed>) = 0 [pid 6201] <... openat resumed>) = 3 [pid 6189] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6184] close(4 [pid 6180] close(16 [pid 6202] chdir("./45" [pid 6201] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6189] <... futex resumed>) = 1 [pid 6188] <... futex resumed>) = 0 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6202] <... chdir resumed>) = 0 [pid 6201] <... futex resumed>) = 1 [pid 6189] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6188] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6186] <... futex resumed>) = 0 [pid 6184] close(5 [pid 6180] close(17 [pid 6202] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6201] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6189] <... openat resumed>) = 3 [pid 6188] <... futex resumed>) = 0 [pid 6186] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6202] <... prctl resumed>) = 0 [pid 6189] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6188] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6187] <... futex resumed>) = 0 [pid 6186] <... futex resumed>) = 1 [pid 6184] close(6 [pid 6180] close(18 [pid 6202] setpgid(0, 0 [pid 6189] <... futex resumed>) = 0 [pid 6188] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6187] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6186] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6202] <... setpgid resumed>) = 0 [pid 6189] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6188] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6187] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6184] close(7 [pid 6180] close(19 [pid 6202] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 6189] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6188] <... futex resumed>) = 0 [pid 6187] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6202] <... symlink resumed>) = 0 [pid 6189] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6188] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6187] <... futex resumed>) = 1 [pid 6186] <... futex resumed>) = 0 [pid 6184] close(8 [pid 6180] close(20 [pid 6202] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 6189] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6187] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6186] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6202] <... symlink resumed>) = 0 [pid 6189] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6187] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6186] <... futex resumed>) = 0 [pid 6184] close(9 [pid 6180] close(21 [pid 6202] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 6189] <... futex resumed>) = 1 [pid 6188] <... futex resumed>) = 0 [pid 6187] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6186] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6202] <... symlink resumed>) = 0 [pid 6189] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6188] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6187] <... futex resumed>) = 0 [pid 6186] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6184] close(10 [pid 6180] close(22 [pid 6202] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6189] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6188] <... futex resumed>) = 0 [pid 6187] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6186] close(3 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6202] <... openat resumed>) = 3 [pid 6189] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6188] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6186] <... close resumed>) = 0 [pid 6184] close(11 [pid 6180] close(23 [pid 6202] write(3, "1000", 4 [pid 6189] <... futex resumed>) = 0 [pid 6188] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6186] close(4 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6202] <... write resumed>) = 4 [pid 6189] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6188] close(3 [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] close(12 [pid 6180] close(24 [pid 6202] close(3 [pid 6188] <... close resumed>) = 0 [pid 6186] close(5 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6202] <... close resumed>) = 0 [pid 6188] close(4 [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] close(13 [pid 6180] close(25 [pid 6202] symlink("/dev/binderfs", "./binderfs" [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] close(6 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6202] <... symlink resumed>) = 0 [pid 6188] close(5 [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] close(14 [pid 6180] close(26 [pid 6202] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] close(7 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6202] <... futex resumed>) = 0 [pid 6188] close(6 [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] close(15 [pid 6180] close(27 [pid 6202] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] close(8 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6202] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6188] close(7 [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] close(16 [pid 6180] close(28 [pid 6202] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] close(9 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6202] <... mprotect resumed>) = 0 [pid 6188] close(8 [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] close(17 [pid 6180] close(29 [pid 6202] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] close(10 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6180] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... umount2 resumed>) = 0 [pid 6202] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6188] close(9 [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] close(18write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6180] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5029] umount2("./44/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6202] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] close(11 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6180] <... write resumed>) = 156 ./strace-static-x86_64: Process 6203 attached [pid 6188] close(10 [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] close(19 [pid 6180] exit_group(0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6203] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6202] <... clone3 resumed> => {parent_tid=[137]}, 88) = 137 [pid 6198] <... futex resumed>) = ? [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] close(12 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6183] <... futex resumed>) = ? [pid 6180] <... exit_group resumed>) = ? [pid 5029] newfstatat(AT_FDCWD, "./44/file0", [pid 6203] <... rseq resumed>) = 0 [pid 6202] rt_sigprocmask(SIG_SETMASK, [], [pid 6198] +++ exited with 0 +++ [pid 6188] close(11 [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] close(20 [pid 6183] +++ exited with 0 +++ [pid 6180] +++ exited with 0 +++ [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6203] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6202] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] close(13 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./44/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6203] <... set_robust_list resumed>) = 0 [pid 6202] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6188] close(12 [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] close(21 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=135, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=48 /* 0.48 s */} --- [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6203] rt_sigprocmask(SIG_SETMASK, [], [pid 6202] <... futex resumed>) = 0 [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] openat(AT_FDCWD, "./44/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6203] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6202] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6188] close(13 [pid 6186] close(14 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./45", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... openat resumed>) = 4 [pid 6188] close(14 [pid 5029] newfstatat(4, "", [pid 6203] memfd_create("syzkaller", 0 [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] close(22 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6203] <... memfd_create resumed>) = 3 [pid 6188] close(15 [pid 6186] close(15 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] openat(AT_FDCWD, "./45", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5029] getdents64(4, [pid 6203] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] close(23 [pid 5032] <... openat resumed>) = 3 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6203] <... mmap resumed>) = 0x7f4f650a0000 [pid 6188] close(16 [pid 6186] close(16 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] newfstatat(3, "", [pid 5029] getdents64(4, [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6188] close(17 [pid 5029] close(4 [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] close(24 [pid 5029] <... close resumed>) = 0 [pid 6188] close(18 [pid 6186] close(17 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5029] rmdir("./44/file0" [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] close(25 [pid 5032] getdents64(3, [pid 5029] <... rmdir resumed>) = 0 [pid 6188] close(19 [pid 6186] close(18 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5029] umount2("./44/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] close(26 [pid 5032] umount2("./45/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6188] close(20 [pid 6186] close(19 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./44/cgroup", [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] close(27 [pid 5032] newfstatat(AT_FDCWD, "./45/cgroup.cpu", [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6188] close(21 [pid 6186] close(20 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./44/cgroup" [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] close(28write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5032] unlink("./45/cgroup.cpu" [pid 5029] <... unlink resumed>) = 0 [pid 6188] close(22 [pid 6186] close(21 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./44/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6188] close(23 [pid 5029] newfstatat(AT_FDCWD, "./44/cgroup.net", [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6188] close(24 [pid 5032] <... unlink resumed>) = 0 [pid 5029] unlink("./44/cgroup.net" [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] close(29 [pid 5029] <... unlink resumed>) = 0 [pid 6188] close(25 [pid 6186] close(22 [pid 6184] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./45/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] getdents64(3, [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6188] close(26 [pid 6186] close(23 [pid 6184] <... write resumed>) = 156 [pid 5032] newfstatat(AT_FDCWD, "./45/binderfs", [pid 5029] close(3 [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6184] exit_group(0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... close resumed>) = 0 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6199] <... futex resumed>) = ? [pid 6188] close(27 [pid 6200] <... futex resumed>) = ? [pid 6186] close(24 [pid 6185] <... futex resumed>) = ? [pid 6184] <... exit_group resumed>) = ? [pid 5032] unlink("./45/binderfs" [pid 5029] rmdir("./44" [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... rmdir resumed>) = 0 [pid 6188] close(28 [pid 5029] mkdir("./45", 0777 [pid 6200] +++ exited with 0 +++ [pid 6199] +++ exited with 0 +++ [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] close(25 [pid 5029] <... mkdir resumed>) = 0 [pid 6188] close(29 [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6188] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6186] close(26 [pid 5032] <... unlink resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 6188] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./45/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6188] <... write resumed>) = 156 [pid 6186] close(27 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6188] exit_group(0 [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] newfstatat(AT_FDCWD, "./45/file0", [pid 5029] close(3 [pid 6189] <... futex resumed>) = ? [pid 6188] <... exit_group resumed>) = ? [pid 6186] close(28 [pid 6185] +++ exited with 0 +++ [pid 6184] +++ exited with 0 +++ [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] <... close resumed>) = 0 [pid 6189] +++ exited with 0 +++ [pid 6188] +++ exited with 0 +++ [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./45/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=128, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=61 /* 0.61 s */} --- [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6204 attached [pid 6186] close(29 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=137, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=62 /* 0.62 s */} --- [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6204] set_robust_list(0x55555654e6a0, 24 [pid 5033] restart_syscall(<... resuming interrupted clone ...> [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 141 [pid 6204] <... set_robust_list resumed>) = 0 [pid 6186] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... restart_syscall resumed>) = 0 [pid 5032] openat(AT_FDCWD, "./45/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6204] chdir("./45" write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6186] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6204] <... chdir resumed>) = 0 [pid 6186] <... write resumed>) = 156 [pid 5032] <... openat resumed>) = 4 [pid 5030] umount2("./44", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6204] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6186] exit_group(0 [pid 5033] umount2("./46", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6204] <... prctl resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6204] setpgid(0, 0 [pid 5033] openat(AT_FDCWD, "./46", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6204] <... setpgid resumed>) = 0 [pid 5033] <... openat resumed>) = 3 [pid 6204] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 6201] <... futex resumed>) = ? [pid 6187] <... futex resumed>) = ? [pid 6186] <... exit_group resumed>) = ? [pid 5033] newfstatat(3, "", [pid 5032] newfstatat(4, "", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6204] <... symlink resumed>) = 0 [pid 6201] +++ exited with 0 +++ [pid 6187] +++ exited with 0 +++ [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6204] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu" [pid 5033] getdents64(3, [pid 6204] <... symlink resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6204] symlink("/syzcgroup/net/syz0", "./cgroup.net" [pid 6186] +++ exited with 0 +++ [pid 5033] umount2("./46/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] openat(AT_FDCWD, "./44", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6204] <... symlink resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] getdents64(4, [pid 6204] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=136, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=67 /* 0.67 s */} --- [pid 5033] newfstatat(AT_FDCWD, "./46/cgroup.cpu", [pid 5030] <... openat resumed>) = 3 [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6204] <... openat resumed>) = 3 [pid 5034] restart_syscall(<... resuming interrupted clone ...> [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] getdents64(4, [pid 5030] newfstatat(3, "", [pid 6204] write(3, "1000", 4 [pid 5034] <... restart_syscall resumed>) = 0 [pid 5033] unlink("./46/cgroup.cpu" [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6204] <... write resumed>) = 4 [pid 5033] <... unlink resumed>) = 0 [pid 5032] close(4 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6204] close(3 [pid 5033] umount2("./46/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... close resumed>) = 0 [pid 5030] getdents64(3, [pid 6204] <... close resumed>) = 0 [pid 5034] umount2("./45", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] rmdir("./45/file0" [pid 6204] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./46/binderfs", [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6204] <... symlink resumed>) = 0 [pid 5034] openat(AT_FDCWD, "./45", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./45/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./44/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6204] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] <... openat resumed>) = 3 [pid 5033] unlink("./46/binderfs" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6204] <... futex resumed>) = 0 [pid 5034] newfstatat(3, "", [pid 5033] <... unlink resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./45/cgroup", [pid 5030] newfstatat(AT_FDCWD, "./44/cgroup.cpu", [pid 6204] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] umount2("./46/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6204] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5034] getdents64(3, [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] unlink("./45/cgroup" [pid 5030] unlink("./44/cgroup.cpu" [pid 6204] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5034] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5033] newfstatat(AT_FDCWD, "./46/file0", [pid 5032] <... unlink resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 6204] <... mprotect resumed>) = 0 [pid 5034] umount2("./45/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./45/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./44/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6204] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] umount2("./46/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6204] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5034] newfstatat(AT_FDCWD, "./45/cgroup.cpu", [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./45/cgroup.net", [pid 5030] newfstatat(AT_FDCWD, "./44/binderfs", [pid 6204] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] openat(AT_FDCWD, "./46/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 6205 attached [pid 5034] unlink("./45/cgroup.cpu" [pid 5033] <... openat resumed>) = 4 [pid 5032] unlink("./45/cgroup.net" [pid 5030] unlink("./44/binderfs" [pid 6205] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6204] <... clone3 resumed> => {parent_tid=[142]}, 88) = 142 [pid 5034] <... unlink resumed>) = 0 [pid 5033] newfstatat(4, "", [pid 5032] <... unlink resumed>) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 6205] <... rseq resumed>) = 0 [pid 6204] rt_sigprocmask(SIG_SETMASK, [], [pid 5034] umount2("./45/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 5030] umount2("./44/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6205] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6204] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] getdents64(4, [pid 5032] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6205] <... set_robust_list resumed>) = 0 [pid 6204] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] newfstatat(AT_FDCWD, "./45/binderfs", [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5032] close(3 [pid 5030] newfstatat(AT_FDCWD, "./44/file0", [pid 6205] rt_sigprocmask(SIG_SETMASK, [], [pid 6204] <... futex resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] getdents64(4, [pid 5032] <... close resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6205] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6204] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5034] unlink("./45/binderfs" [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5032] rmdir("./45" [pid 5030] umount2("./44/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] mkdir("./46", 0777 [pid 5030] openat(AT_FDCWD, "./44/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6205] memfd_create("syzkaller", 0 [pid 5034] <... unlink resumed>) = 0 [pid 5033] close(4 [pid 5032] <... mkdir resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 6205] <... memfd_create resumed>) = 3 [pid 5034] umount2("./45/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... close resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5030] newfstatat(4, "", [pid 6205] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] rmdir("./46/file0" [pid 5032] <... openat resumed>) = 3 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6205] <... mmap resumed>) = 0x7f4f650a0000 [pid 5034] newfstatat(AT_FDCWD, "./45/file0", [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5030] getdents64(4, [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5032] close(3 [pid 5030] getdents64(4, [pid 5032] <... close resumed>) = 0 [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] close(4./strace-static-x86_64: Process 6206 attached [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./46/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... close resumed>) = 0 [pid 6206] set_robust_list(0x55555654e6a0, 24 [pid 5034] umount2("./45/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 138 [pid 5030] rmdir("./44/file0" [pid 6206] <... set_robust_list resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./46/cgroup", [pid 5030] <... rmdir resumed>) = 0 [pid 6206] chdir("./46" [pid 5034] openat(AT_FDCWD, "./45/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./44/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6206] <... chdir resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6206] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] newfstatat(4, "", [pid 5033] unlink("./46/cgroup" [pid 5030] newfstatat(AT_FDCWD, "./44/cgroup", [pid 6206] <... prctl resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6206] setpgid(0, 0 [pid 5034] getdents64(4, [pid 5033] umount2("./46/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] unlink("./44/cgroup" [pid 6206] <... setpgid resumed>) = 0 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... unlink resumed>) = 0 [pid 6206] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 5034] getdents64(4, [pid 5033] newfstatat(AT_FDCWD, "./46/cgroup.net", [pid 5030] umount2("./44/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6206] <... symlink resumed>) = 0 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6206] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 5034] close(4 [pid 5033] unlink("./46/cgroup.net" [pid 5030] newfstatat(AT_FDCWD, "./44/cgroup.net", [pid 6206] <... symlink resumed>) = 0 [pid 5034] <... close resumed>) = 0 [pid 5033] <... unlink resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6206] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 5034] rmdir("./45/file0" [pid 5033] getdents64(3, [pid 5030] unlink("./44/cgroup.net" [pid 6206] <... symlink resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] <... unlink resumed>) = 0 [pid 6206] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] umount2("./45/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] close(3 [pid 5030] getdents64(3, [pid 6206] <... openat resumed>) = 3 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... close resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6206] write(3, "1000", 4 [pid 5034] newfstatat(AT_FDCWD, "./45/cgroup", [pid 5033] rmdir("./46" [pid 5030] close(3 [pid 6206] <... write resumed>) = 4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... rmdir resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 6206] close(3 [pid 5034] unlink("./45/cgroup" [pid 5033] mkdir("./47", 0777 [pid 5030] rmdir("./44" [pid 6206] <... close resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6206] symlink("/dev/binderfs", "./binderfs" [pid 5034] umount2("./45/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] mkdir("./45", 0777 [pid 6206] <... symlink resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... openat resumed>) = 3 [pid 5030] <... mkdir resumed>) = 0 [pid 6206] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] newfstatat(AT_FDCWD, "./45/cgroup.net", [pid 5033] ioctl(3, LOOP_CLR_FD [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6206] <... futex resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5030] <... openat resumed>) = 3 [pid 6206] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5034] unlink("./45/cgroup.net" [pid 5033] close(3 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6206] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5034] <... unlink resumed>) = 0 [pid 5033] <... close resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6206] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5034] getdents64(3, [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5030] close(3 [pid 6206] <... mprotect resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6208 attached ./strace-static-x86_64: Process 6207 attached [pid 6206] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5034] close(3 [pid 6208] set_robust_list(0x55555654e6a0, 24 [pid 6207] set_robust_list(0x55555654e6a0, 24 [pid 6206] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5034] <... close resumed>) = 0 [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 139 [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 132 [pid 6208] <... set_robust_list resumed>) = 0 [pid 6207] <... set_robust_list resumed>) = 0 [pid 6206] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5034] rmdir("./45"./strace-static-x86_64: Process 6209 attached [pid 6208] chdir("./45" [pid 6207] chdir("./47" [pid 6209] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6208] <... chdir resumed>) = 0 [pid 6207] <... chdir resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 6209] <... rseq resumed>) = 0 [pid 6207] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6209] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6208] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6207] <... prctl resumed>) = 0 [pid 6206] <... clone3 resumed> => {parent_tid=[139]}, 88) = 139 [pid 5034] mkdir("./46", 0777 [pid 6209] <... set_robust_list resumed>) = 0 [pid 6208] <... prctl resumed>) = 0 [pid 6207] setpgid(0, 0 [pid 6206] rt_sigprocmask(SIG_SETMASK, [], [pid 5034] <... mkdir resumed>) = 0 [pid 6209] rt_sigprocmask(SIG_SETMASK, [], [pid 6208] setpgid(0, 0 [pid 6207] <... setpgid resumed>) = 0 [pid 6206] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6209] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6208] <... setpgid resumed>) = 0 [pid 6207] symlink("/syzcgroup/unified/syz2", "./cgroup" [pid 6206] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] <... openat resumed>) = 3 [pid 6209] memfd_create("syzkaller", 0 [pid 6208] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 6207] <... symlink resumed>) = 0 [pid 6206] <... futex resumed>) = 0 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 6209] <... memfd_create resumed>) = 3 [pid 6208] <... symlink resumed>) = 0 [pid 6207] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu" [pid 6206] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6209] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6208] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu" [pid 6207] <... symlink resumed>) = 0 [pid 5034] close(3 [pid 6209] <... mmap resumed>) = 0x7f4f650a0000 [pid 6208] <... symlink resumed>) = 0 [pid 6207] symlink("/syzcgroup/net/syz2", "./cgroup.net" [pid 5034] <... close resumed>) = 0 [pid 6208] symlink("/syzcgroup/net/syz3", "./cgroup.net" [pid 6207] <... symlink resumed>) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6208] <... symlink resumed>) = 0 [pid 6207] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 ./strace-static-x86_64: Process 6210 attached [pid 6208] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6207] write(3, "1000", 4 [pid 6210] set_robust_list(0x55555654e6a0, 24 [pid 6208] <... openat resumed>) = 3 [pid 6207] <... write resumed>) = 4 [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 139 [pid 6210] <... set_robust_list resumed>) = 0 [pid 6208] write(3, "1000", 4 [pid 6207] close(3) = 0 [pid 6210] chdir("./46" [pid 6208] <... write resumed>) = 4 [pid 6207] symlink("/dev/binderfs", "./binderfs" [pid 6210] <... chdir resumed>) = 0 [pid 6208] close(3 [pid 6207] <... symlink resumed>) = 0 [pid 6210] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6208] <... close resumed>) = 0 [pid 6207] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6210] <... prctl resumed>) = 0 [pid 6208] symlink("/dev/binderfs", "./binderfs" [pid 6207] <... futex resumed>) = 0 [pid 6210] setpgid(0, 0 [pid 6207] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6210] <... setpgid resumed>) = 0 [pid 6208] <... symlink resumed>) = 0 [pid 6207] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6207] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6210] symlink("/syzcgroup/unified/syz5", "./cgroup" [pid 6208] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6207] <... mprotect resumed>) = 0 [pid 6210] <... symlink resumed>) = 0 [pid 6208] <... futex resumed>) = 0 [pid 6207] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6210] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu" [pid 6208] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6207] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6210] <... symlink resumed>) = 0 [pid 6208] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6207] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6211 attached [pid 6210] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 6208] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6211] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6207] <... clone3 resumed> => {parent_tid=[140]}, 88) = 140 [pid 6211] <... rseq resumed>) = 0 [pid 6210] <... symlink resumed>) = 0 [pid 6208] <... mprotect resumed>) = 0 [pid 6207] rt_sigprocmask(SIG_SETMASK, [], [pid 6211] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6210] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6208] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6207] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6211] <... set_robust_list resumed>) = 0 [pid 6210] <... openat resumed>) = 3 [pid 6207] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6208] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6211] rt_sigprocmask(SIG_SETMASK, [], [pid 6210] write(3, "1000", 4 [pid 6208] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 6207] <... futex resumed>) = 0 ./strace-static-x86_64: Process 6212 attached [pid 6211] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6210] <... write resumed>) = 4 [pid 6207] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6212] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6211] memfd_create("syzkaller", 0 [pid 6210] close(3 [pid 6208] <... clone3 resumed> => {parent_tid=[133]}, 88) = 133 [pid 6212] <... rseq resumed>) = 0 [pid 6211] <... memfd_create resumed>) = 3 [pid 6210] <... close resumed>) = 0 [pid 6208] rt_sigprocmask(SIG_SETMASK, [], [pid 6212] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6211] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6210] symlink("/dev/binderfs", "./binderfs" [pid 6208] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6212] <... set_robust_list resumed>) = 0 [pid 6211] <... mmap resumed>) = 0x7f4f650a0000 [pid 6212] rt_sigprocmask(SIG_SETMASK, [], [pid 6210] <... symlink resumed>) = 0 [pid 6208] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6212] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6210] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6208] <... futex resumed>) = 0 [pid 6212] memfd_create("syzkaller", 0 [pid 6210] <... futex resumed>) = 0 [pid 6208] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6212] <... memfd_create resumed>) = 3 [pid 6210] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6212] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6210] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6212] <... mmap resumed>) = 0x7f4f650a0000 [pid 6210] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6210] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6210] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6213 attached [pid 6213] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6210] <... clone3 resumed> => {parent_tid=[140]}, 88) = 140 [pid 6213] <... rseq resumed>) = 0 [pid 6210] rt_sigprocmask(SIG_SETMASK, [], [pid 6213] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6210] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6213] <... set_robust_list resumed>) = 0 [pid 6210] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6213] rt_sigprocmask(SIG_SETMASK, [], [pid 6210] <... futex resumed>) = 0 [pid 6213] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6210] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6213] memfd_create("syzkaller", 0) = 3 [pid 6213] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 6203] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6205] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6209] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6212] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6213] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6211] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6203] <... write resumed>) = 16777216 [pid 6203] munmap(0x7f4f650a0000, 16777216) = 0 [pid 6203] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 6203] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6203] close(3) = 0 [pid 6203] mkdir("./file0", 0777) = 0 [ 329.487966][ T6203] loop4: detected capacity change from 0 to 32768 [pid 6203] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6205] <... write resumed>) = 16777216 [ 329.561328][ T6203] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 329.579263][ T6203] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 329.618421][ T6203] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 329.637331][ T5086] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 329.644180][ T5086] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [pid 6205] munmap(0x7f4f650a0000, 16777216 [pid 6212] <... write resumed>) = 16777216 [pid 6212] munmap(0x7f4f650a0000, 16777216 [pid 6211] <... write resumed>) = 16777216 [ 329.735340][ T5086] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 91ms [ 329.765340][ T5086] gfs2: fsid=syz:syz.0: jid=0: Done [ 329.773577][ T6203] gfs2: fsid=syz:syz.0: first mount done, others may mount [pid 6211] munmap(0x7f4f650a0000, 16777216 [pid 6203] <... mount resumed>) = 0 [pid 6203] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6203] chdir("./file0") = 0 [pid 6203] ioctl(4, LOOP_CLR_FD) = 0 [pid 6203] close(4) = 0 [pid 6203] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6202] <... futex resumed>) = 0 [pid 6203] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6202] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6203] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6202] <... futex resumed>) = 0 [pid 6203] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6202] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6205] <... munmap resumed>) = 0 [pid 6205] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6205] ioctl(4, LOOP_SET_FD, 3 [pid 6209] <... write resumed>) = 16777216 [pid 6209] munmap(0x7f4f650a0000, 16777216 [pid 6205] <... ioctl resumed>) = 0 [pid 6205] close(3) = 0 [pid 6205] mkdir("./file0", 0777 [pid 6213] <... write resumed>) = 16777216 [pid 6213] munmap(0x7f4f650a0000, 16777216 [pid 6205] <... mkdir resumed>) = 0 [ 329.855470][ T6203] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 329.877393][ T6205] loop0: detected capacity change from 0 to 32768 [ 329.884618][ T6203] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 329.884618][ T6203] inode = 12 2341 [ 329.884618][ T6203] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [pid 6205] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [ 329.945989][ T6203] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 329.976829][ T6205] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 329.984361][ T6205] CPU: 0 PID: 6205 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 329.991532][ T6203] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6203 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 329.994806][ T6205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 330.005544][ T6203] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 330.014838][ T6205] Call Trace: [ 330.014851][ T6205] [ 330.014861][ T6205] dump_stack_lvl+0x136/0x150 [ 330.014916][ T6205] sysfs_warn_dup+0x80/0xa0 [ 330.024038][ T6203] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 330.026608][ T6205] sysfs_create_dir_ns+0x237/0x290 [ 330.026651][ T6205] ? sysfs_create_mount_point+0xb0/0xb0 [ 330.030242][ T6203] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 330.034266][ T6205] ? spin_bug+0x1c0/0x1c0 [ 330.069817][ T6205] ? do_raw_spin_unlock+0x175/0x230 [ 330.075066][ T6205] kobject_add_internal+0x2c9/0x9c0 [ 330.080303][ T6205] ? kfree+0x11/0x150 [ 330.084317][ T6205] kobject_init_and_add+0x101/0x170 [ 330.089553][ T6205] ? kobject_create_and_add+0xf0/0xf0 [ 330.094966][ T6205] ? lockdep_init_map_type+0x21e/0x810 [ 330.100461][ T6205] ? lockdep_hardirqs_on+0x7d/0x100 [ 330.105706][ T6205] ? lockdep_init_map_type+0x21e/0x810 [ 330.111209][ T6205] gfs2_sys_fs_add+0x1d5/0x450 [ 330.116009][ T6205] ? recover_store+0x170/0x170 [ 330.120828][ T6205] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 330.126625][ T6205] gfs2_fill_super+0x1312/0x2aa0 [ 330.131599][ T6205] ? gfs2_reconfigure+0xf90/0xf90 [ 330.136657][ T6205] ? snprintf+0xbf/0x100 [ 330.140934][ T6205] ? vsprintf+0x30/0x30 [ 330.145123][ T6205] ? wait_for_completion_io_timeout+0x20/0x20 [ 330.151228][ T6205] ? set_blocksize+0x2d8/0x370 [ 330.156025][ T6205] get_tree_bdev+0x43e/0x7d0 [ 330.160656][ T6205] ? gfs2_reconfigure+0xf90/0xf90 [ 330.165719][ T6205] gfs2_get_tree+0x4e/0x270 [ 330.170260][ T6205] vfs_get_tree+0x8d/0x350 [ 330.174712][ T6205] path_mount+0x136e/0x1e70 [ 330.179251][ T6205] ? putname+0x102/0x140 [ 330.183519][ T6205] ? lockdep_hardirqs_on+0x7d/0x100 [ 330.188751][ T6205] ? finish_automount+0xa30/0xa30 [ 330.193817][ T6205] ? putname+0x102/0x140 [ 330.198117][ T6205] __x64_sys_mount+0x283/0x300 [ 330.202916][ T6205] ? copy_mnt_ns+0xb30/0xb30 [ 330.207544][ T6205] ? lockdep_hardirqs_on+0x7d/0x100 [ 330.212781][ T6205] ? _raw_spin_unlock_irq+0x2e/0x50 [ 330.218025][ T6205] ? ptrace_notify+0xfe/0x140 [ 330.222813][ T6205] do_syscall_64+0x39/0xb0 [ 330.227261][ T6205] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 330.233204][ T6205] RIP: 0033:0x7f4f6dd11c5a [ 330.237681][ T6205] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 330.257323][ T6205] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 330.265859][ T6205] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 330.273860][ T6205] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 330.281860][ T6205] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [pid 6212] <... munmap resumed>) = 0 [pid 6212] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6211] <... munmap resumed>) = 0 [pid 6202] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6212] <... openat resumed>) = 4 [pid 6211] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6202] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6212] ioctl(4, LOOP_SET_FD, 3 [pid 6211] <... openat resumed>) = 4 [pid 6212] <... ioctl resumed>) = 0 [pid 6211] ioctl(4, LOOP_SET_FD, 3 [pid 6202] <... futex resumed>) = 0 [pid 6202] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6212] close(3 [pid 6202] <... mmap resumed>) = 0x7f4f6607f000 [ 330.289952][ T6205] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 330.297960][ T6205] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 330.305965][ T6205] [ 330.328045][ T6212] loop3: detected capacity change from 0 to 32768 [ 330.336830][ T6211] loop2: detected capacity change from 0 to 32768 [pid 6212] <... close resumed>) = 0 [pid 6211] <... ioctl resumed>) = 0 [pid 6212] mkdir("./file0", 0777) = 0 [pid 6211] close(3 [pid 6212] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6211] <... close resumed>) = 0 [ 330.346102][ T6205] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 330.366145][ T6203] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [pid 6211] mkdir("./file0", 0777 [pid 6213] <... munmap resumed>) = 0 [pid 6211] <... mkdir resumed>) = 0 [pid 6202] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6213] openat(AT_FDCWD, "/dev/loop5", O_RDWR [ 330.400796][ T6203] gfs2: fsid=syz:syz.0: File system withdrawn [ 330.401993][ T6205] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 330.407711][ T6212] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 330.424227][ T6203] CPU: 1 PID: 6203 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 330.434728][ T6203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 330.444837][ T6203] Call Trace: [ 330.448155][ T6203] [ 330.451127][ T6203] dump_stack_lvl+0x136/0x150 [ 330.455868][ T6203] gfs2_withdraw+0xb33/0x1060 [ 330.460606][ T6203] ? gfs2_consist_inode_i+0x104/0x150 [ 330.466124][ T6203] gfs2_dirent_scan+0x32a/0x3d0 [ 330.471024][ T6203] ? gfs2_dirent_prev+0x210/0x210 [ 330.476112][ T6203] ? gfs2_dirent_prev+0x210/0x210 [ 330.481239][ T6203] gfs2_dirent_search+0x47d/0x580 [ 330.486313][ T6203] ? get_first_leaf+0x190/0x190 [ 330.491215][ T6203] ? gfs2_permission+0x256/0x3e0 [ 330.496190][ T6203] gfs2_dir_search+0x8d/0x2d0 [ 330.500911][ T6203] ? gfs2_dir_read+0x14e0/0x14e0 [ 330.505899][ T6203] gfs2_lookupi+0x481/0x640 [ 330.510438][ T6203] ? gfs2_lookup_by_inum+0x100/0x100 [ 330.515760][ T6203] ? __gfs2_lookup+0x83/0x280 [ 330.520485][ T6203] ? d_alloc_parallel+0x693/0x1530 [ 330.525634][ T6203] __gfs2_lookup+0x83/0x280 [ 330.530179][ T6203] ? gfs2_lookupi+0x640/0x640 [ 330.534926][ T6203] ? __d_lookup_rcu+0x4e0/0x4e0 [ 330.539927][ T6203] ? __d_lookup+0x289/0x4c0 [ 330.544478][ T6203] gfs2_atomic_open+0xde/0x250 [ 330.549308][ T6203] ? __gfs2_lookup+0x280/0x280 [ 330.554114][ T6203] lookup_open.isra.0+0xce2/0x1400 [ 330.559265][ T6203] ? link_path_walk.part.0+0xd60/0xd60 [ 330.564771][ T6203] ? lookup_fast+0x14e/0x520 [ 330.569398][ T6203] path_openat+0x969/0x2710 [ 330.573955][ T6203] ? path_lookupat+0x840/0x840 [ 330.578774][ T6203] ? find_held_lock+0x2d/0x110 [ 330.583576][ T6203] do_filp_open+0x1ba/0x410 [ 330.588127][ T6203] ? may_open_dev+0xf0/0xf0 [ 330.592682][ T6203] ? find_held_lock+0x2d/0x110 [ 330.597498][ T6203] ? do_raw_spin_lock+0x124/0x2b0 [ 330.602588][ T6203] ? spin_bug+0x1c0/0x1c0 [ 330.606969][ T6203] ? _raw_spin_unlock+0x28/0x40 [ 330.611868][ T6203] ? alloc_fd+0x2e4/0x750 [ 330.616253][ T6203] do_sys_openat2+0x160/0x1c0 [ 330.620984][ T6203] ? build_open_flags+0x720/0x720 [ 330.626078][ T6203] ? ptrace_notify+0xfe/0x140 [ 330.630833][ T6203] ? lock_downgrade+0x690/0x690 [ 330.635733][ T6203] __x64_sys_openat+0x143/0x1f0 [ 330.640650][ T6203] ? __ia32_sys_open+0x1c0/0x1c0 [ 330.645645][ T6203] ? _raw_spin_unlock_irq+0x23/0x50 [ 330.650908][ T6203] ? lockdep_hardirqs_on+0x7d/0x100 [ 330.656149][ T6203] ? _raw_spin_unlock_irq+0x2e/0x50 [ 330.661393][ T6203] ? ptrace_notify+0xfe/0x140 [ 330.666136][ T6203] do_syscall_64+0x39/0xb0 [ 330.670588][ T6203] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 330.676559][ T6203] RIP: 0033:0x7f4f6dd107f9 [ 330.681026][ T6203] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [pid 6211] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6213] <... openat resumed>) = 4 [pid 6209] <... munmap resumed>) = 0 [pid 6205] <... mount resumed>) = -1 EEXIST (File exists) [pid 6202] <... mprotect resumed>) = 0 [pid 6213] ioctl(4, LOOP_SET_FD, 3 [pid 6209] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6205] ioctl(4, LOOP_CLR_FD [ 330.700677][ T6203] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 330.709126][ T6203] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 330.717121][ T6203] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [ 330.725133][ T6203] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 330.733185][ T6203] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 330.741276][ T6203] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 330.749285][ T6203] [ 330.770316][ T6213] loop5: detected capacity change from 0 to 32768 [ 330.774011][ T6212] CPU: 1 PID: 6212 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 330.784126][ T6211] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 330.787196][ T6212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 330.787219][ T6212] Call Trace: [ 330.787229][ T6212] [ 330.787239][ T6212] dump_stack_lvl+0x136/0x150 [ 330.787292][ T6212] sysfs_warn_dup+0x80/0xa0 [pid 6202] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6213] <... ioctl resumed>) = 0 [pid 6209] <... openat resumed>) = 4 [pid 6202] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6213] close(3 [pid 6209] ioctl(4, LOOP_SET_FD, 3 [pid 6202] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6213] <... close resumed>) = 0 [pid 6213] mkdir("./file0", 0777 [pid 6202] <... clone3 resumed> => {parent_tid=[138]}, 88) = 138 [pid 6213] <... mkdir resumed>) = 0 [pid 6202] rt_sigprocmask(SIG_SETMASK, [], [pid 6213] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6202] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6202] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 330.787328][ T6212] sysfs_create_dir_ns+0x237/0x290 [ 330.825531][ T6212] ? sysfs_create_mount_point+0xb0/0xb0 [ 330.831222][ T6212] ? spin_bug+0x1c0/0x1c0 [ 330.836235][ T6212] ? do_raw_spin_unlock+0x175/0x230 [ 330.841500][ T6212] kobject_add_internal+0x2c9/0x9c0 [ 330.846763][ T6212] ? kfree+0x11/0x150 [ 330.850817][ T6212] kobject_init_and_add+0x101/0x170 [ 330.856079][ T6209] loop1: detected capacity change from 0 to 32768 [ 330.856074][ T6212] ? kobject_create_and_add+0xf0/0xf0 [pid 6202] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6209] <... ioctl resumed>) = 0 [pid 6209] close(3) = 0 [pid 6209] mkdir("./file0", 0777) = 0 [ 330.856115][ T6212] ? lockdep_init_map_type+0x21e/0x810 [ 330.873423][ T6212] ? lockdep_hardirqs_on+0x7d/0x100 [ 330.878688][ T6212] ? lockdep_init_map_type+0x21e/0x810 [ 330.884226][ T6212] gfs2_sys_fs_add+0x1d5/0x450 [ 330.889047][ T6212] ? recover_store+0x170/0x170 [ 330.893864][ T6212] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 330.899658][ T6212] gfs2_fill_super+0x1312/0x2aa0 [ 330.904662][ T6212] ? gfs2_reconfigure+0xf90/0xf90 [ 330.909764][ T6212] ? snprintf+0xbf/0x100 [ 330.914151][ T6212] ? vsprintf+0x30/0x30 [ 330.918363][ T6212] ? wait_for_completion_io_timeout+0x20/0x20 [ 330.924507][ T6212] ? set_blocksize+0x2d8/0x370 [ 330.929349][ T6212] get_tree_bdev+0x43e/0x7d0 [ 330.934018][ T6212] ? gfs2_reconfigure+0xf90/0xf90 [ 330.939120][ T6212] gfs2_get_tree+0x4e/0x270 [ 330.943689][ T6212] vfs_get_tree+0x8d/0x350 [ 330.948234][ T6212] path_mount+0x136e/0x1e70 [ 330.952799][ T6212] ? putname+0x102/0x140 [ 330.957102][ T6212] ? lockdep_hardirqs_on+0x7d/0x100 [ 330.962385][ T6212] ? finish_automount+0xa30/0xa30 [ 330.967477][ T6212] ? putname+0x102/0x140 [ 330.971765][ T6212] __x64_sys_mount+0x283/0x300 [ 330.976583][ T6212] ? copy_mnt_ns+0xb30/0xb30 [ 330.981245][ T6212] ? lockdep_hardirqs_on+0x7d/0x100 [ 330.986551][ T6212] ? _raw_spin_unlock_irq+0x2e/0x50 [ 330.991810][ T6212] ? ptrace_notify+0xfe/0x140 [ 330.996556][ T6212] do_syscall_64+0x39/0xb0 [ 331.001016][ T6212] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 331.006998][ T6212] RIP: 0033:0x7f4f6dd11c5a [ 331.011472][ T6212] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 331.031144][ T6212] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 331.039619][ T6212] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 331.047640][ T6212] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 331.055749][ T6212] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 331.063765][ T6212] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [pid 6209] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6202] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6202] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6202] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6605e000 [pid 6202] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6202] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6202] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} => {parent_tid=[139]}, 88) = 139 [pid 6202] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6202] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6202] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [ 331.071868][ T6212] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 331.079889][ T6212] [ 331.094053][ T6212] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 331.099800][ T6213] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 331.108298][ T6212] gfs2: fsid=syz:syz: error -17 adding sysfs files ./strace-static-x86_64: Process 6219 attached ./strace-static-x86_64: Process 6218 attached [pid 6203] <... openat resumed>) = -1 EIO (Input/output error) [ 331.115981][ T6209] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 331.129763][ T6211] CPU: 1 PID: 6211 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 331.140245][ T6211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 331.150358][ T6211] Call Trace: [ 331.153692][ T6211] [ 331.156661][ T6211] dump_stack_lvl+0x136/0x150 [ 331.161413][ T6211] sysfs_warn_dup+0x80/0xa0 [ 331.165991][ T6211] sysfs_create_dir_ns+0x237/0x290 [ 331.171165][ T6211] ? sysfs_create_mount_point+0xb0/0xb0 [ 331.176756][ T6211] ? spin_bug+0x1c0/0x1c0 [ 331.181132][ T6211] ? do_raw_spin_unlock+0x175/0x230 [ 331.186389][ T6211] kobject_add_internal+0x2c9/0x9c0 [ 331.191737][ T6211] ? kfree+0x11/0x150 [ 331.195776][ T6211] kobject_init_and_add+0x101/0x170 [ 331.201037][ T6211] ? kobject_create_and_add+0xf0/0xf0 [ 331.206470][ T6211] ? lockdep_init_map_type+0x21e/0x810 [ 331.212003][ T6211] ? lockdep_hardirqs_on+0x7d/0x100 [ 331.217260][ T6211] ? lockdep_init_map_type+0x21e/0x810 [ 331.222774][ T6211] gfs2_sys_fs_add+0x1d5/0x450 [ 331.227584][ T6211] ? recover_store+0x170/0x170 [ 331.232412][ T6211] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 331.238199][ T6211] gfs2_fill_super+0x1312/0x2aa0 [ 331.243198][ T6211] ? gfs2_reconfigure+0xf90/0xf90 [ 331.248284][ T6211] ? snprintf+0xbf/0x100 [ 331.252597][ T6211] ? vsprintf+0x30/0x30 [ 331.256808][ T6211] ? wait_for_completion_io_timeout+0x20/0x20 [ 331.262939][ T6211] ? set_blocksize+0x2d8/0x370 [ 331.267772][ T6211] get_tree_bdev+0x43e/0x7d0 [ 331.272423][ T6211] ? gfs2_reconfigure+0xf90/0xf90 [ 331.277498][ T6211] gfs2_get_tree+0x4e/0x270 [ 331.282320][ T6211] vfs_get_tree+0x8d/0x350 [ 331.286812][ T6211] path_mount+0x136e/0x1e70 [ 331.291377][ T6211] ? putname+0x102/0x140 [ 331.295677][ T6211] ? lockdep_hardirqs_on+0x7d/0x100 [ 331.300955][ T6211] ? finish_automount+0xa30/0xa30 [ 331.306052][ T6211] ? putname+0x102/0x140 [ 331.310363][ T6211] __x64_sys_mount+0x283/0x300 [ 331.315177][ T6211] ? copy_mnt_ns+0xb30/0xb30 [ 331.319815][ T6211] ? lockdep_hardirqs_on+0x7d/0x100 [ 331.325061][ T6211] ? _raw_spin_unlock_irq+0x2e/0x50 [ 331.330325][ T6211] ? ptrace_notify+0xfe/0x140 [ 331.335054][ T6211] do_syscall_64+0x39/0xb0 [ 331.339516][ T6211] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 331.345489][ T6211] RIP: 0033:0x7f4f6dd11c5a [ 331.349947][ T6211] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [pid 6219] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 6218] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6219] <... rseq resumed>) = 0 [pid 6218] <... rseq resumed>) = 0 [pid 6219] set_robust_list(0x7f4f6607e9a0, 24 [pid 6218] set_robust_list(0x7f4f6609f9a0, 24 [pid 6219] <... set_robust_list resumed>) = 0 [pid 6218] <... set_robust_list resumed>) = 0 [pid 6219] rt_sigprocmask(SIG_SETMASK, [], [pid 6218] rt_sigprocmask(SIG_SETMASK, [], [pid 6219] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6218] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6219] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6218] ioctl(0, VFAT_IOCTL_READDIR_SHORT [pid 6219] <... openat resumed>) = -1 EIO (Input/output error) [pid 6218] <... ioctl resumed>, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 6219] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 6218] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6219] <... futex resumed>) = 0 [pid 6218] <... futex resumed>) = 0 [pid 6219] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6218] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6202] close(3) = 0 [pid 6202] close(4) = -1 EBADF (Bad file descriptor) [pid 6202] close(5) = -1 EBADF (Bad file descriptor) [pid 6202] close(6) = -1 EBADF (Bad file descriptor) [pid 6202] close(7) = -1 EBADF (Bad file descriptor) [pid 6202] close(8) = -1 EBADF (Bad file descriptor) [pid 6202] close(9 [pid 6212] <... mount resumed>) = -1 EEXIST (File exists) [pid 6203] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6202] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6212] ioctl(4, LOOP_CLR_FD [pid 6202] close(10) = -1 EBADF (Bad file descriptor) [pid 6202] close(11) = -1 EBADF (Bad file descriptor) [ 331.369612][ T6211] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 331.378090][ T6211] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 331.386120][ T6211] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 331.394152][ T6211] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 331.402262][ T6211] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 331.410317][ T6211] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 331.418427][ T6211] [ 331.428496][ T6213] CPU: 0 PID: 6213 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 331.438995][ T6213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 331.449105][ T6213] Call Trace: [ 331.452407][ T6213] [ 331.455359][ T6213] dump_stack_lvl+0x136/0x150 [ 331.460085][ T6213] sysfs_warn_dup+0x80/0xa0 [ 331.464642][ T6213] sysfs_create_dir_ns+0x237/0x290 [ 331.469824][ T6213] ? sysfs_create_mount_point+0xb0/0xb0 [ 331.475401][ T6213] ? spin_bug+0x1c0/0x1c0 [ 331.479771][ T6213] ? do_raw_spin_unlock+0x175/0x230 [ 331.485010][ T6213] kobject_add_internal+0x2c9/0x9c0 [ 331.490241][ T6213] ? kfree+0x11/0x150 [ 331.494257][ T6213] kobject_init_and_add+0x101/0x170 [ 331.499492][ T6213] ? kobject_create_and_add+0xf0/0xf0 [ 331.504897][ T6213] ? lockdep_init_map_type+0x21e/0x810 [ 331.510394][ T6213] ? lockdep_hardirqs_on+0x7d/0x100 [ 331.515633][ T6213] ? lockdep_init_map_type+0x21e/0x810 [ 331.521134][ T6213] gfs2_sys_fs_add+0x1d5/0x450 [ 331.525935][ T6213] ? recover_store+0x170/0x170 [ 331.530727][ T6213] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 331.536493][ T6213] gfs2_fill_super+0x1312/0x2aa0 [ 331.541477][ T6213] ? gfs2_reconfigure+0xf90/0xf90 [ 331.546538][ T6213] ? snprintf+0xbf/0x100 [ 331.550817][ T6213] ? vsprintf+0x30/0x30 [ 331.555006][ T6213] ? wait_for_completion_io_timeout+0x20/0x20 [ 331.561117][ T6213] ? set_blocksize+0x2d8/0x370 [ 331.565914][ T6213] get_tree_bdev+0x43e/0x7d0 [ 331.570542][ T6213] ? gfs2_reconfigure+0xf90/0xf90 [ 331.575597][ T6213] gfs2_get_tree+0x4e/0x270 [ 331.580131][ T6213] vfs_get_tree+0x8d/0x350 [ 331.584580][ T6213] path_mount+0x136e/0x1e70 [ 331.589121][ T6213] ? putname+0x102/0x140 [ 331.593394][ T6213] ? lockdep_hardirqs_on+0x7d/0x100 [ 331.598629][ T6213] ? finish_automount+0xa30/0xa30 [ 331.603709][ T6213] ? putname+0x102/0x140 [ 331.607993][ T6213] __x64_sys_mount+0x283/0x300 [ 331.612828][ T6213] ? copy_mnt_ns+0xb30/0xb30 [ 331.617463][ T6213] ? lockdep_hardirqs_on+0x7d/0x100 [ 331.622707][ T6213] ? _raw_spin_unlock_irq+0x2e/0x50 [ 331.627961][ T6213] ? ptrace_notify+0xfe/0x140 [ 331.632685][ T6213] do_syscall_64+0x39/0xb0 [ 331.637132][ T6213] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 331.643071][ T6213] RIP: 0033:0x7f4f6dd11c5a [ 331.647516][ T6213] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 331.667158][ T6213] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 331.675606][ T6213] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 331.683607][ T6213] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 331.691619][ T6213] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 331.699619][ T6213] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 331.707615][ T6213] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 331.715617][ T6213] [pid 6203] <... futex resumed>) = 0 [pid 6202] close(12 [pid 6203] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6202] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6202] close(13) = -1 EBADF (Bad file descriptor) [pid 6202] close(14) = -1 EBADF (Bad file descriptor) [ 331.720911][ T6211] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 6202] close(15) = -1 EBADF (Bad file descriptor) [pid 6202] close(16) = -1 EBADF (Bad file descriptor) [pid 6202] close(17) = -1 EBADF (Bad file descriptor) [pid 6202] close(18) = -1 EBADF (Bad file descriptor) [pid 6202] close(19) = -1 EBADF (Bad file descriptor) [pid 6202] close(20) = -1 EBADF (Bad file descriptor) [pid 6202] close(21) = -1 EBADF (Bad file descriptor) [pid 6202] close(22) = -1 EBADF (Bad file descriptor) [pid 6202] close(23) = -1 EBADF (Bad file descriptor) [pid 6202] close(24) = -1 EBADF (Bad file descriptor) [pid 6202] close(25) = -1 EBADF (Bad file descriptor) [pid 6202] close(26) = -1 EBADF (Bad file descriptor) [pid 6202] close(27) = -1 EBADF (Bad file descriptor) [pid 6202] close(28) = -1 EBADF (Bad file descriptor) [ 331.752795][ T6209] CPU: 1 PID: 6209 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 331.763651][ T6209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 331.773795][ T6209] Call Trace: [ 331.777128][ T6209] [ 331.780099][ T6209] dump_stack_lvl+0x136/0x150 [ 331.784865][ T6209] sysfs_warn_dup+0x80/0xa0 [ 331.789446][ T6209] sysfs_create_dir_ns+0x237/0x290 [ 331.794653][ T6209] ? sysfs_create_mount_point+0xb0/0xb0 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6202] close(29) = -1 EBADF (Bad file descriptor) [pid 6202] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 6202] exit_group(0 [pid 6219] <... futex resumed>) = ? [pid 6218] <... futex resumed>) = ? [pid 6202] <... exit_group resumed>) = ? [pid 6219] +++ exited with 0 +++ [pid 6218] +++ exited with 0 +++ [ 331.796303][ T6211] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 331.800333][ T6209] ? spin_bug+0x1c0/0x1c0 [ 331.800381][ T6209] ? do_raw_spin_unlock+0x175/0x230 [ 331.816563][ T6209] kobject_add_internal+0x2c9/0x9c0 [ 331.821831][ T6209] ? kfree+0x11/0x150 [ 331.825870][ T6209] kobject_init_and_add+0x101/0x170 [ 331.831126][ T6209] ? kobject_create_and_add+0xf0/0xf0 [ 331.841551][ T6209] ? lockdep_init_map_type+0x21e/0x810 [ 331.847173][ T6209] ? lockdep_hardirqs_on+0x7d/0x100 [ 331.852443][ T6209] ? lockdep_init_map_type+0x21e/0x810 [ 331.857977][ T6209] gfs2_sys_fs_add+0x1d5/0x450 [ 331.862792][ T6209] ? recover_store+0x170/0x170 [ 331.867610][ T6209] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 331.873403][ T6209] gfs2_fill_super+0x1312/0x2aa0 [ 331.878488][ T6209] ? gfs2_reconfigure+0xf90/0xf90 [ 331.883572][ T6209] ? snprintf+0xbf/0x100 [ 331.887883][ T6209] ? vsprintf+0x30/0x30 [ 331.892122][ T6209] ? wait_for_completion_io_timeout+0x20/0x20 [ 331.898256][ T6209] ? set_blocksize+0x2d8/0x370 [ 331.903073][ T6209] get_tree_bdev+0x43e/0x7d0 [ 331.907719][ T6209] ? gfs2_reconfigure+0xf90/0xf90 [ 331.912808][ T6209] gfs2_get_tree+0x4e/0x270 [ 331.917461][ T6209] vfs_get_tree+0x8d/0x350 [ 331.921933][ T6209] path_mount+0x136e/0x1e70 [ 331.926496][ T6209] ? putname+0x102/0x140 [ 331.930790][ T6209] ? lockdep_hardirqs_on+0x7d/0x100 [ 331.936058][ T6209] ? finish_automount+0xa30/0xa30 [ 331.941151][ T6209] ? putname+0x102/0x140 [ 331.945535][ T6209] __x64_sys_mount+0x283/0x300 [ 331.950364][ T6209] ? copy_mnt_ns+0xb30/0xb30 [ 331.955016][ T6209] ? lockdep_hardirqs_on+0x7d/0x100 [ 331.960274][ T6209] ? _raw_spin_unlock_irq+0x2e/0x50 [ 331.965555][ T6209] ? ptrace_notify+0xfe/0x140 [ 331.970326][ T6209] do_syscall_64+0x39/0xb0 [ 331.974807][ T6209] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 331.980781][ T6209] RIP: 0033:0x7f4f6dd11c5a [ 331.985243][ T6209] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 332.004909][ T6209] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 332.013572][ T6209] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 332.021604][ T6209] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 332.029635][ T6209] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 332.037677][ T6209] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 332.045708][ T6209] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [pid 6203] <... futex resumed>) = ? [pid 6203] +++ exited with 0 +++ [pid 6202] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=136, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=53 /* 0.53 s */} --- [pid 5031] umount2("./45", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./45", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5031] umount2("./45/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./45/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./45/cgroup.cpu") = 0 [pid 5031] umount2("./45/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./45/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./45/binderfs") = 0 [pid 5031] umount2("./45/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6205] <... ioctl resumed>) = 0 [pid 6205] close(4 [pid 6211] <... mount resumed>) = -1 EEXIST (File exists) [pid 6211] ioctl(4, LOOP_CLR_FD [pid 6204] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6204] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6205] <... close resumed>) = 0 [pid 6204] <... futex resumed>) = 0 [pid 6204] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 6205] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6204] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6205] <... futex resumed>) = 0 [pid 6205] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6204] <... mprotect resumed>) = 0 [pid 6204] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 332.053740][ T6209] [ 332.065991][ T6213] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 332.125066][ T6213] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 332.134300][ T6209] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 6208] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6207] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6206] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6204] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 6222 attached [pid 6207] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6222] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6204] <... clone3 resumed> => {parent_tid=[143]}, 88) = 143 [pid 6222] <... rseq resumed>) = 0 [pid 6204] rt_sigprocmask(SIG_SETMASK, [], [pid 6222] set_robust_list(0x7f4f6609f9a0, 24 [pid 6204] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6222] <... set_robust_list resumed>) = 0 [pid 6204] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6207] <... futex resumed>) = 0 [pid 6222] rt_sigprocmask(SIG_SETMASK, [], [pid 6204] <... futex resumed>) = 0 [pid 6222] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6207] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6204] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6222] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 6207] <... mmap resumed>) = 0x7f4f6607f000 [pid 6222] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6208] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6207] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6204] <... futex resumed>) = 0 [pid 6222] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6204] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6207] <... mprotect resumed>) = 0 [pid 6204] <... futex resumed>) = 1 [pid 6204] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6213] <... mount resumed>) = -1 EEXIST (File exists) [pid 6210] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6207] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6205] <... futex resumed>) = 0 [pid 6213] ioctl(4, LOOP_CLR_FD [pid 6210] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6207] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6205] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6210] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 6207] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6205] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6210] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6205] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6210] <... mprotect resumed>) = 0 [pid 6205] <... futex resumed>) = 1 [pid 6204] <... futex resumed>) = 0 [pid 6204] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6210] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6205] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6204] <... futex resumed>) = 0 [pid 6207] <... clone3 resumed> => {parent_tid=[141]}, 88) = 141 [pid 6210] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6205] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6204] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6210] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6205] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6204] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6208] <... futex resumed>) = 0 [pid 6207] rt_sigprocmask(SIG_SETMASK, [], [pid 6204] close(3 [pid 6210] <... clone3 resumed> => {parent_tid=[141]}, 88) = 141 [pid 6208] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6204] <... close resumed>) = 0 [pid 6210] rt_sigprocmask(SIG_SETMASK, [], [pid 6208] <... mmap resumed>) = 0x7f4f6607f000 [pid 6204] close(4 [pid 6210] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6206] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6204] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6210] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6204] close(5 [pid 6210] <... futex resumed>) = 0 [pid 6204] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6210] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6204] close(6) = -1 EBADF (Bad file descriptor) [pid 6204] close(7) = -1 EBADF (Bad file descriptor) [pid 6204] close(8) = -1 EBADF (Bad file descriptor) [pid 6204] close(9 [pid 6205] <... futex resumed>) = 0 [pid 6205] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6204] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6204] close(10 [pid 6208] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6204] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6204] close(11) = -1 EBADF (Bad file descriptor) [pid 6207] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6204] close(12) = -1 EBADF (Bad file descriptor) [pid 6204] close(13 [pid 6207] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6204] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6206] <... futex resumed>) = 0 [pid 6207] <... futex resumed>) = 0 [pid 6204] close(14) = -1 EBADF (Bad file descriptor) [pid 6204] close(15 [pid 6206] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6204] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6204] close(16) = -1 EBADF (Bad file descriptor) [pid 6204] close(17) = -1 EBADF (Bad file descriptor) [pid 6204] close(18./strace-static-x86_64: Process 6223 attached [pid 6207] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6204] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6204] close(19 [pid 6208] <... mprotect resumed>) = 0 [pid 6204] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6204] close(20 [pid 6208] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6204] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6223] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6208] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6204] close(21) = -1 EBADF (Bad file descriptor) [pid 6204] close(22 [pid 6208] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6204] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6204] close(23 [pid 6223] <... rseq resumed>) = 0 [pid 6206] <... mmap resumed>) = 0x7f4f6607f000 [pid 6204] <... close resumed>) = -1 EBADF (Bad file descriptor) [ 332.259359][ T6209] gfs2: fsid=syz:syz: error -17 adding sysfs files ./strace-static-x86_64: Process 6225 attached ./strace-static-x86_64: Process 6224 attached [pid 6223] set_robust_list(0x7f4f6609f9a0, 24 [pid 6212] <... ioctl resumed>) = 0 [pid 6211] <... ioctl resumed>) = 0 [pid 6209] <... mount resumed>) = -1 EEXIST (File exists) [pid 6208] <... clone3 resumed> => {parent_tid=[134]}, 88) = 134 [pid 6206] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6204] close(24 [pid 6210] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6204] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6210] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 6204] close(25 [pid 6210] <... futex resumed>) = 0 [pid 6204] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6225] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6224] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6223] <... set_robust_list resumed>) = 0 [pid 6212] close(4 [pid 6211] close(4 [pid 6209] ioctl(4, LOOP_CLR_FD [pid 6208] rt_sigprocmask(SIG_SETMASK, [], [pid 6207] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6206] <... mprotect resumed>) = 0 [pid 6204] close(26 [pid 6225] <... rseq resumed>) = 0 [pid 6223] rt_sigprocmask(SIG_SETMASK, [], [pid 6211] <... close resumed>) = 0 [pid 6207] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 6204] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6225] set_robust_list(0x7f4f6609f9a0, 24 [pid 6224] <... rseq resumed>) = 0 [pid 6223] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6212] <... close resumed>) = 0 [pid 6211] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6208] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6207] <... futex resumed>) = 0 [pid 6206] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6204] close(27 [pid 6225] <... set_robust_list resumed>) = 0 [pid 6224] set_robust_list(0x7f4f6609f9a0, 24 [pid 6223] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6212] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6211] <... futex resumed>) = 0 [pid 6208] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6207] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6206] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6204] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6225] rt_sigprocmask(SIG_SETMASK, [], [pid 6224] <... set_robust_list resumed>) = 0 [pid 6223] <... openat resumed>) = 3 [pid 6212] <... futex resumed>) = 0 [pid 6211] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6210] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6208] <... futex resumed>) = 0 [pid 6207] <... mmap resumed>) = 0x7f4f6605e000 [pid 6206] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6204] close(28./strace-static-x86_64: Process 6226 attached [pid 6225] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6224] rt_sigprocmask(SIG_SETMASK, [], [pid 6223] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6212] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6210] <... mmap resumed>) = 0x7f4f6605e000 [pid 6208] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6207] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE [pid 6204] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6226] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6225] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6224] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6223] <... futex resumed>) = 0 [pid 6210] mprotect(0x7f4f6605f000, 131072, PROT_READ|PROT_WRITE [pid 6207] <... mprotect resumed>) = 0 [pid 6206] <... clone3 resumed> => {parent_tid=[140]}, 88) = 140 [pid 6204] close(29 [pid 6226] <... rseq resumed>) = 0 [pid 6225] <... openat resumed>) = 3 [pid 6224] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6223] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6207] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6206] rt_sigprocmask(SIG_SETMASK, [], [pid 6210] <... mprotect resumed>) = 0 [pid 6204] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6225] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6207] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6226] set_robust_list(0x7f4f6609f9a0, 24 [pid 6206] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6204] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6226] <... set_robust_list resumed>) = 0 [pid 6225] <... futex resumed>) = 1 [pid 6208] <... futex resumed>) = 0 [pid 6207] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} [pid 6206] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6204] <... write resumed>) = 156 ./strace-static-x86_64: Process 6227 attached [pid 6226] rt_sigprocmask(SIG_SETMASK, [], [pid 6225] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6208] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6206] <... futex resumed>) = 0 [pid 6204] exit_group(0 [pid 6227] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 6226] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6222] <... futex resumed>) = ? [pid 6208] <... futex resumed>) = 1 [pid 6204] <... exit_group resumed>) = ? [pid 6222] +++ exited with 0 +++ [pid 6208] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6212] <... futex resumed>) = 0 [pid 6206] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6205] <... futex resumed>) = ? [pid 6227] <... rseq resumed>) = 0 [pid 6212] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6207] <... clone3 resumed> => {parent_tid=[142]}, 88) = 142 [pid 6227] set_robust_list(0x7f4f6607e9a0, 24 [pid 6224] <... openat resumed>) = 3 [pid 6212] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6210] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6207] rt_sigprocmask(SIG_SETMASK, [], [pid 6205] +++ exited with 0 +++ [pid 6204] +++ exited with 0 +++ [pid 6227] <... set_robust_list resumed>) = 0 [pid 6226] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6212] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6207] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=141, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=53 /* 0.53 s */} --- [pid 6227] rt_sigprocmask(SIG_SETMASK, [], [pid 6224] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6212] <... futex resumed>) = 1 [pid 6210] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6208] <... futex resumed>) = 0 [pid 6207] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 6227] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6212] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6208] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6207] <... futex resumed>) = 0 [pid 6227] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6226] <... openat resumed>) = 3 [pid 6212] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6208] <... futex resumed>) = 0 [pid 6207] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5029] umount2("./45", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6227] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6226] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6212] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6208] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6227] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 6226] <... futex resumed>) = 1 [pid 6212] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6206] <... futex resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./45", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6227] <... futex resumed>) = 1 [pid 6226] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6224] <... futex resumed>) = 0 [pid 6212] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6210] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6607e990, parent_tid=0x7f4f6607e990, exit_signal=0, stack=0x7f4f6605e000, stack_size=0x20300, tls=0x7f4f6607e6c0} [pid 6207] <... futex resumed>) = 0 [pid 6206] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] <... openat resumed>) = 3 [pid 6227] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6212] <... futex resumed>) = 1 [pid 6208] <... futex resumed>) = 0 [pid 6207] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] newfstatat(3, "", [pid 6226] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6212] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6211] <... futex resumed>) = 0 [pid 6208] close(3 [pid 6207] <... futex resumed>) = 1 [pid 6206] <... futex resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6226] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6224] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6211] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6208] <... close resumed>) = 0 [pid 6207] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6206] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5029] getdents64(3, [pid 6226] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6211] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6210] <... clone3 resumed> => {parent_tid=[142]}, 88) = 142 [pid 6208] close(4 [pid 5029] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 ./strace-static-x86_64: Process 6228 attached [pid 6226] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6211] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6210] rt_sigprocmask(SIG_SETMASK, [], [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./45/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6211] <... futex resumed>) = 1 [pid 6208] close(5 [pid 6207] <... futex resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6211] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] close(3 [pid 5029] newfstatat(AT_FDCWD, "./45/cgroup.cpu", [pid 6226] <... futex resumed>) = 1 [pid 6208] close(6 [pid 6207] <... close resumed>) = 0 [pid 6206] <... futex resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6228] rseq(0x7f4f6607efe0, 0x20, 0, 0x53053053 [pid 6226] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6210] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] close(4 [pid 5029] unlink("./45/cgroup.cpu" [pid 6228] <... rseq resumed>) = 0 [pid 6226] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6210] futex(0x7f4f6dda4708, FUTEX_WAKE_PRIVATE, 1000000 [pid 6208] close(7 [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6206] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] <... unlink resumed>) = 0 [pid 6228] set_robust_list(0x7f4f6607e9a0, 24 [pid 6226] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6210] <... futex resumed>) = 0 [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] close(5 [pid 5029] umount2("./45/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6228] <... set_robust_list resumed>) = 0 [pid 6210] futex(0x7f4f6dda470c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6208] close(8 [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6206] <... futex resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6226] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] close(6 [pid 5029] newfstatat(AT_FDCWD, "./45/binderfs", [pid 6228] rt_sigprocmask(SIG_SETMASK, [], [pid 6208] close(9 [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6228] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6226] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] close(7 [pid 6206] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5029] unlink("./45/binderfs" [pid 6226] <... futex resumed>) = 0 [pid 6208] close(10 [pid 5029] <... unlink resumed>) = 0 [pid 6226] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6206] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5029] umount2("./45/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6208] close(11 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] newfstatat(AT_FDCWD, "./45/file0", [pid 6208] close(12 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./45/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6208] close(13 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] openat(AT_FDCWD, "./45/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6208] close(14 [pid 5029] <... openat resumed>) = 4 [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] newfstatat(4, "", [pid 6208] close(15 [pid 6207] close(8 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] getdents64(4, [pid 6208] close(16 [pid 6207] close(9 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] getdents64(4, [pid 6208] close(17 [pid 6207] close(10 [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] close(4 [pid 6208] close(18 [pid 6207] close(11 [pid 5029] <... close resumed>) = 0 [pid 6228] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] rmdir("./45/file0" [pid 6228] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6210] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6208] close(19 [pid 6207] close(12 [pid 5029] <... rmdir resumed>) = 0 [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./45/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6208] close(20 [pid 6207] close(13 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] newfstatat(AT_FDCWD, "./45/cgroup", [pid 6208] close(21 [pid 6207] close(14 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] unlink("./45/cgroup" [pid 6208] close(22 [pid 6207] close(15 [pid 5029] <... unlink resumed>) = 0 [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] umount2("./45/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6228] futex(0x7f4f6dda470c, FUTEX_WAKE_PRIVATE, 1000000 [pid 6210] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6208] close(23 [pid 6207] close(16 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6228] <... futex resumed>) = 0 [pid 6224] <... futex resumed>) = 0 [pid 6210] <... futex resumed>) = 1 [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] newfstatat(AT_FDCWD, "./45/cgroup.net", [pid 6228] futex(0x7f4f6dda4708, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6224] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6210] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6208] close(24 [pid 6207] close(17 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6224] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] unlink("./45/cgroup.net" [pid 6224] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6208] close(25 [pid 6207] close(18 [pid 5029] <... unlink resumed>) = 0 [pid 6224] <... futex resumed>) = 1 [pid 6210] <... futex resumed>) = 0 [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] getdents64(3, [pid 6224] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6208] close(26 [pid 6207] close(19 [pid 5029] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] close(3 [pid 6208] close(27 [pid 6207] close(20 [pid 5029] <... close resumed>) = 0 [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] rmdir("./45" [pid 6208] close(28 [pid 6207] close(21 [pid 5029] <... rmdir resumed>) = 0 [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] mkdir("./46", 0777 [pid 6208] close(29 [pid 6207] close(22 [pid 5029] <... mkdir resumed>) = 0 [pid 6208] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6208] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6207] close(23 [pid 5029] <... openat resumed>) = 3 [pid 6208] <... write resumed>) = 156 [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] ioctl(3, LOOP_CLR_FD [pid 6208] exit_group(0 [pid 6207] close(24 [pid 5029] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6225] <... futex resumed>) = ? [pid 6212] <... futex resumed>) = ? [pid 6208] <... exit_group resumed>) = ? [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] close(3 [pid 6225] +++ exited with 0 +++ [pid 6212] +++ exited with 0 +++ [pid 6208] +++ exited with 0 +++ [pid 6207] close(25 [pid 5031] <... umount2 resumed>) = 0 [pid 5029] <... close resumed>) = 0 [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6229 attached [pid 6207] close(26 [pid 5031] umount2("./45/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=132, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=59 /* 0.59 s */} --- [pid 6229] set_robust_list(0x55555654e6a0, 24 [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] umount2("./45", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 144 [pid 6229] <... set_robust_list resumed>) = 0 [pid 6207] close(27 [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6229] chdir("./46" [pid 6213] <... ioctl resumed>) = 0 [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] newfstatat(AT_FDCWD, "./45/file0", [pid 5030] openat(AT_FDCWD, "./45", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6229] <... chdir resumed>) = 0 [pid 6213] close(4 [pid 6207] close(28 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... openat resumed>) = 3 [pid 6229] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6213] <... close resumed>) = 0 [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] umount2("./45/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(3, "", [pid 6229] <... prctl resumed>) = 0 [pid 6213] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6207] close(29write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6229] setpgid(0, 0 [pid 6213] <... futex resumed>) = 0 [pid 6210] close(3 [pid 6207] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] openat(AT_FDCWD, "./45/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] getdents64(3, [pid 6229] <... setpgid resumed>) = 0 [pid 6213] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6210] <... close resumed>) = 0 [pid 6207] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 5031] <... openat resumed>) = 4 [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6229] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 6210] close(4 [pid 6207] <... write resumed>) = 156 [pid 5031] newfstatat(4, "", [pid 5030] umount2("./45/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6229] <... symlink resumed>) = 0 [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] exit_group(0 [pid 5031] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6229] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu" [pid 6227] <... futex resumed>) = ? [pid 6223] <... futex resumed>) = ? [pid 6211] <... futex resumed>) = ? [pid 6210] close(5 [pid 6207] <... exit_group resumed>) = ? [pid 5031] getdents64(4, [pid 5030] newfstatat(AT_FDCWD, "./45/cgroup.cpu", [pid 6229] <... symlink resumed>) = 0 [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6229] symlink("/syzcgroup/net/syz0", "./cgroup.net" [pid 6210] close(6 [pid 5030] unlink("./45/cgroup.cpu" [pid 6229] <... symlink resumed>) = 0 [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] <... unlink resumed>) = 0 [pid 6229] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6210] close(7 [pid 5030] umount2("./45/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6229] <... openat resumed>) = 3 [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6229] write(3, "1000", 4 [pid 6210] close(8 [pid 5030] newfstatat(AT_FDCWD, "./45/binderfs", [pid 6229] <... write resumed>) = 4 [pid 6223] +++ exited with 0 +++ [pid 6211] +++ exited with 0 +++ [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6229] close(3 [pid 6210] close(9 [pid 5030] unlink("./45/binderfs" [pid 6229] <... close resumed>) = 0 [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5030] <... unlink resumed>) = 0 [pid 6229] symlink("/dev/binderfs", "./binderfs" [pid 6210] close(10 [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] umount2("./45/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6229] <... symlink resumed>) = 0 [pid 6227] +++ exited with 0 +++ [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6207] +++ exited with 0 +++ [pid 5031] getdents64(4, [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6229] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6210] close(11 [pid 5031] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] newfstatat(AT_FDCWD, "./45/file0", [pid 6229] <... futex resumed>) = 0 [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] close(4 [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=139, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=79 /* 0.79 s */} --- [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6229] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6210] close(12 [pid 5031] <... close resumed>) = 0 [pid 5030] umount2("./45/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6229] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5031] rmdir("./45/file0" [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6229] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6210] close(13 [pid 5030] openat(AT_FDCWD, "./45/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6229] <... mprotect resumed>) = 0 [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6209] <... ioctl resumed>) = 0 [pid 5033] umount2("./47", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... rmdir resumed>) = 0 [pid 5030] <... openat resumed>) = 4 [pid 6229] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6210] close(14 [pid 5030] newfstatat(4, "", [pid 6229] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] umount2("./45/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6229] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 6210] close(15 [pid 5033] openat(AT_FDCWD, "./47", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] getdents64(4, ./strace-static-x86_64: Process 6230 attached [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... openat resumed>) = 3 [pid 5031] newfstatat(AT_FDCWD, "./45/cgroup", [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6230] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6229] <... clone3 resumed> => {parent_tid=[145]}, 88) = 145 [pid 6210] close(16 [pid 5033] newfstatat(3, "", [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] getdents64(4, [pid 6230] <... rseq resumed>) = 0 [pid 6229] rt_sigprocmask(SIG_SETMASK, [], [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] unlink("./45/cgroup" [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6230] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6229] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6210] close(17 [pid 6209] close(4 [pid 5033] getdents64(3, [pid 5031] <... unlink resumed>) = 0 [pid 5030] close(4 [pid 6230] <... set_robust_list resumed>) = 0 [pid 6229] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6209] <... close resumed>) = 0 [pid 5033] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5031] umount2("./45/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6230] rt_sigprocmask(SIG_SETMASK, [], [pid 6209] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] umount2("./47/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6230] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6229] <... futex resumed>) = 0 [pid 6210] close(18 [pid 6209] <... futex resumed>) = 0 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./45/cgroup.net", [pid 5030] <... close resumed>) = 0 [pid 6230] memfd_create("syzkaller", 0 [pid 6229] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6209] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5033] newfstatat(AT_FDCWD, "./47/cgroup.cpu", [pid 5031] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] rmdir("./45/file0" [pid 6230] <... memfd_create resumed>) = 3 [pid 6210] close(19 [pid 6206] close(3 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./45/cgroup.net" [pid 6230] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6206] <... close resumed>) = 0 [pid 5033] unlink("./47/cgroup.cpu" [pid 5031] <... unlink resumed>) = 0 [pid 6230] <... mmap resumed>) = 0x7f4f650a0000 [pid 6206] close(4 [pid 5033] <... unlink resumed>) = 0 [pid 5031] getdents64(3, [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./47/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 6210] close(20 [pid 6206] close(5 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] close(3 [pid 5030] umount2("./45/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(AT_FDCWD, "./47/binderfs", [pid 5031] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6210] close(21 [pid 6206] close(6 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] rmdir("./45" [pid 5030] newfstatat(AT_FDCWD, "./45/cgroup", [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] unlink("./47/binderfs" [pid 5031] <... rmdir resumed>) = 0 [pid 6210] close(22 [pid 6206] close(7 [pid 5033] <... unlink resumed>) = 0 [pid 5031] mkdir("./46", 0777 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./47/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... mkdir resumed>) = 0 [pid 6210] close(23 [pid 6206] close(8 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5030] unlink("./45/cgroup" [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(AT_FDCWD, "./47/file0", [pid 5031] <... openat resumed>) = 3 [pid 6206] close(9 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./47/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6210] close(24 [pid 6206] close(10 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5031] close(3 [pid 5030] <... unlink resumed>) = 0 [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] openat(AT_FDCWD, "./47/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5031] <... close resumed>) = 0 [pid 6206] close(11 [pid 5033] <... openat resumed>) = 4 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6231 attached [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(4, "", [pid 6231] set_robust_list(0x55555654e6a0, 24 [pid 6206] close(12 [pid 5033] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 140 [pid 6231] <... set_robust_list resumed>) = 0 [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] getdents64(4, [pid 6231] chdir("./46" [pid 6206] close(13 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6231] <... chdir resumed>) = 0 [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] getdents64(4, [pid 6231] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6206] close(14 [pid 5033] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6231] <... prctl resumed>) = 0 [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] close(4 [pid 6231] setpgid(0, 0 [pid 6206] close(15 [pid 5033] <... close resumed>) = 0 [pid 6231] <... setpgid resumed>) = 0 [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] rmdir("./47/file0" [pid 6231] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 6210] close(25 [pid 6206] close(16 [pid 5033] <... rmdir resumed>) = 0 [pid 5030] umount2("./45/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6231] <... symlink resumed>) = 0 [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./47/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6231] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6206] close(17 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] newfstatat(AT_FDCWD, "./45/cgroup.net", [pid 6231] <... symlink resumed>) = 0 [pid 6210] close(26 [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(AT_FDCWD, "./47/cgroup", [pid 6231] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6206] close(18 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6231] <... symlink resumed>) = 0 [pid 6210] close(27 [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] unlink("./47/cgroup" [pid 6231] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6206] close(19 [pid 5033] <... unlink resumed>) = 0 [pid 6231] <... openat resumed>) = 3 [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] umount2("./47/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6231] write(3, "1000", 4 [pid 6206] close(20 [pid 5033] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6231] <... write resumed>) = 4 [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] newfstatat(AT_FDCWD, "./47/cgroup.net", [pid 5030] unlink("./45/cgroup.net" [pid 6231] close(3 [pid 6210] close(28 [pid 6206] close(21 [pid 5033] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6231] <... close resumed>) = 0 [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] unlink("./47/cgroup.net" [pid 5030] <... unlink resumed>) = 0 [pid 6231] symlink("/dev/binderfs", "./binderfs" [pid 6210] close(29 [pid 6206] close(22 [pid 5033] <... unlink resumed>) = 0 [pid 5030] getdents64(3, [pid 6231] <... symlink resumed>) = 0 write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6210] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6206] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5033] getdents64(3, [pid 5032] kill(-138, SIGKILL [pid 6231] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6226] <... futex resumed>) = ? [pid 6210] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6209] <... futex resumed>) = ? [pid 5033] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5032] <... kill resumed>) = 0 [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6231] <... futex resumed>) = 0 [pid 6226] +++ killed by SIGKILL +++ [pid 6210] <... write resumed>) = 156 [pid 6209] +++ killed by SIGKILL +++ [pid 5033] close(3 [pid 6231] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5033] <... close resumed>) = 0 [pid 6231] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5033] rmdir("./47" [pid 5032] kill(138, SIGKILL [pid 6231] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6210] exit_group(0 [pid 6206] +++ killed by SIGKILL +++ [pid 5033] <... rmdir resumed>) = 0 [pid 5032] <... kill resumed>) = 0 [pid 5030] close(3 [pid 6231] <... mprotect resumed>) = 0 [pid 6228] <... futex resumed>) = ? [pid 6224] <... futex resumed>) = ? [pid 6213] <... futex resumed>) = ? [pid 6210] <... exit_group resumed>) = ? [pid 5030] <... close resumed>) = 0 [pid 6224] +++ exited with 0 +++ [pid 6231] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6228] +++ exited with 0 +++ [pid 6213] +++ exited with 0 +++ [pid 6210] +++ exited with 0 +++ [pid 5033] mkdir("./48", 0777 [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=138, si_uid=0, si_status=SIGKILL, si_utime=8 /* 0.08 s */, si_stime=75 /* 0.75 s */} --- [pid 5030] rmdir("./45" [pid 6231] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5033] <... mkdir resumed>) = 0 [pid 6231] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5030] <... rmdir resumed>) = 0 ./strace-static-x86_64: Process 6232 attached [pid 5033] <... openat resumed>) = 3 [pid 5032] umount2("./46", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] mkdir("./46", 0777 [pid 6232] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6231] <... clone3 resumed> => {parent_tid=[141]}, 88) = 141 [pid 5033] ioctl(3, LOOP_CLR_FD [pid 6232] <... rseq resumed>) = 0 [pid 6231] rt_sigprocmask(SIG_SETMASK, [], [pid 5033] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6232] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6231] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5033] close(3 [pid 6232] <... set_robust_list resumed>) = 0 [pid 6231] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5033] <... close resumed>) = 0 [pid 6232] rt_sigprocmask(SIG_SETMASK, [], [pid 6231] <... futex resumed>) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=139, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=79 /* 0.79 s */} --- [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6233 attached [pid 6232] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6231] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5034] umount2("./46", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... mkdir resumed>) = 0 [pid 6233] set_robust_list(0x55555654e6a0, 24 [pid 6232] memfd_create("syzkaller", 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 143 [pid 5032] openat(AT_FDCWD, "./46", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6233] <... set_robust_list resumed>) = 0 [pid 6232] <... memfd_create resumed>) = 3 [pid 5034] openat(AT_FDCWD, "./46", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... openat resumed>) = 3 [pid 6233] chdir("./48" [pid 6232] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", [pid 5030] <... openat resumed>) = 3 [pid 6233] <... chdir resumed>) = 0 [pid 6232] <... mmap resumed>) = 0x7f4f650a0000 [pid 5034] newfstatat(3, "", [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 6233] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6233] <... prctl resumed>) = 0 [pid 5034] getdents64(3, [pid 6233] setpgid(0, 0 [pid 5034] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 6233] <... setpgid resumed>) = 0 [pid 5034] umount2("./46/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(3, [pid 6233] symlink("/syzcgroup/unified/syz2", "./cgroup" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6233] <... symlink resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./46/cgroup.cpu", [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5030] close(3 [pid 6233] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu" [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./46/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6233] <... symlink resumed>) = 0 [pid 5034] unlink("./46/cgroup.cpu" [pid 5030] <... close resumed>) = 0 [pid 6233] symlink("/syzcgroup/net/syz2", "./cgroup.net" [pid 5034] <... unlink resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 6233] <... symlink resumed>) = 0 [pid 5034] umount2("./46/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6233] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./46/cgroup.cpu", [pid 6233] <... openat resumed>) = 3 [pid 5034] newfstatat(AT_FDCWD, "./46/binderfs", ./strace-static-x86_64: Process 6234 attached [pid 6233] write(3, "1000", 4 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6234] set_robust_list(0x55555654e6a0, 24 [pid 6233] <... write resumed>) = 4 [pid 5034] unlink("./46/binderfs" [pid 6234] <... set_robust_list resumed>) = 0 [pid 6233] close(3 [pid 5034] <... unlink resumed>) = 0 [pid 5032] unlink("./46/cgroup.cpu" [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 135 [pid 6234] chdir("./46" [pid 6233] <... close resumed>) = 0 [pid 5034] umount2("./46/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6234] <... chdir resumed>) = 0 [pid 6233] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... unlink resumed>) = 0 [pid 6234] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6233] <... symlink resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./46/file0", [pid 5032] umount2("./46/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6234] <... prctl resumed>) = 0 [pid 6233] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6234] setpgid(0, 0 [pid 6233] <... futex resumed>) = 0 [pid 5034] umount2("./46/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6234] <... setpgid resumed>) = 0 [pid 6233] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./46/binderfs", [pid 6234] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 6233] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5034] openat(AT_FDCWD, "./46/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6234] <... symlink resumed>) = 0 [pid 6233] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5034] <... openat resumed>) = 4 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6234] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu" [pid 6233] <... mprotect resumed>) = 0 [pid 5034] newfstatat(4, "", [pid 5032] unlink("./46/binderfs" [pid 6234] <... symlink resumed>) = 0 [pid 6233] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6234] symlink("/syzcgroup/net/syz3", "./cgroup.net" [pid 6233] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5034] getdents64(4, [pid 5032] <... unlink resumed>) = 0 [pid 6234] <... symlink resumed>) = 0 [pid 6233] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5032] umount2("./46/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 6235 attached [pid 6234] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] getdents64(4, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6235] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6234] <... openat resumed>) = 3 [pid 6233] <... clone3 resumed> => {parent_tid=[144]}, 88) = 144 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5032] newfstatat(AT_FDCWD, "./46/file0", [pid 6235] <... rseq resumed>) = 0 [pid 6234] write(3, "1000", 4 [pid 6233] rt_sigprocmask(SIG_SETMASK, [], [pid 5034] close(4 [pid 6235] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6234] <... write resumed>) = 4 [pid 6233] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5034] <... close resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6235] <... set_robust_list resumed>) = 0 [pid 6234] close(3 [pid 6233] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] rmdir("./46/file0" [pid 5032] umount2("./46/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6235] rt_sigprocmask(SIG_SETMASK, [], [pid 6234] <... close resumed>) = 0 [pid 6233] <... futex resumed>) = 0 [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6235] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6234] symlink("/dev/binderfs", "./binderfs" [pid 6233] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5034] umount2("./46/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] openat(AT_FDCWD, "./46/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6235] memfd_create("syzkaller", 0 [pid 6234] <... symlink resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6235] <... memfd_create resumed>) = 3 [pid 6234] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] newfstatat(AT_FDCWD, "./46/cgroup", [pid 5032] <... openat resumed>) = 4 [pid 6235] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6234] <... futex resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] newfstatat(4, "", [pid 6235] <... mmap resumed>) = 0x7f4f650a0000 [pid 6234] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5034] unlink("./46/cgroup" [pid 6234] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5034] <... unlink resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6234] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5034] umount2("./46/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] getdents64(4, [pid 6234] <... mprotect resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6234] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5034] newfstatat(AT_FDCWD, "./46/cgroup.net", [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6234] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] getdents64(4, [pid 6234] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5034] unlink("./46/cgroup.net" [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 ./strace-static-x86_64: Process 6236 attached [pid 5034] <... unlink resumed>) = 0 [pid 5032] close(4 [pid 6236] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6234] <... clone3 resumed> => {parent_tid=[136]}, 88) = 136 [pid 5034] getdents64(3, [pid 6236] <... rseq resumed>) = 0 [pid 6234] rt_sigprocmask(SIG_SETMASK, [], [pid 5034] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5032] <... close resumed>) = 0 [pid 6236] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6234] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5034] close(3 [pid 6236] <... set_robust_list resumed>) = 0 [pid 6234] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] <... close resumed>) = 0 [pid 5032] rmdir("./46/file0" [pid 6236] rt_sigprocmask(SIG_SETMASK, [], [pid 6234] <... futex resumed>) = 0 [pid 5034] rmdir("./46" [pid 6236] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6234] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5034] <... rmdir resumed>) = 0 [pid 5032] <... rmdir resumed>) = 0 [pid 6236] memfd_create("syzkaller", 0 [pid 5034] mkdir("./47", 0777 [pid 5032] umount2("./46/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6236] <... memfd_create resumed>) = 3 [pid 5034] <... mkdir resumed>) = 0 [pid 6236] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6236] <... mmap resumed>) = 0x7f4f650a0000 [pid 5034] <... openat resumed>) = 3 [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5032] newfstatat(AT_FDCWD, "./46/cgroup", [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] close(3) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6237 attached , child_tidptr=0x55555654e690) = 143 [pid 6237] set_robust_list(0x55555654e6a0, 24) = 0 [pid 6237] chdir("./47") = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./46/cgroup" [pid 6237] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5032] <... unlink resumed>) = 0 [pid 6237] <... prctl resumed>) = 0 [pid 5032] umount2("./46/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5032] newfstatat(AT_FDCWD, "./46/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] unlink("./46/cgroup.net") = 0 [pid 5032] getdents64(3, [pid 6237] setpgid(0, 0 [pid 5032] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6237] <... setpgid resumed>) = 0 [pid 5032] close(3 [pid 6237] symlink("/syzcgroup/unified/syz5", "./cgroup" [pid 5032] <... close resumed>) = 0 [pid 6237] <... symlink resumed>) = 0 [pid 5032] rmdir("./46" [pid 6237] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu" [pid 5032] <... rmdir resumed>) = 0 [pid 6237] <... symlink resumed>) = 0 [pid 5032] mkdir("./47", 0777 [pid 6237] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 5032] <... mkdir resumed>) = 0 [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 6237] <... symlink resumed>) = 0 [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5032] close(3 [pid 6237] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5032] <... close resumed>) = 0 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6238 attached [pid 6237] <... openat resumed>) = 3 [pid 6238] set_robust_list(0x55555654e6a0, 24 [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 141 [pid 6238] <... set_robust_list resumed>) = 0 [pid 6238] chdir("./47") = 0 [pid 6237] write(3, "1000", 4 [pid 6238] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6237] <... write resumed>) = 4 [pid 6238] <... prctl resumed>) = 0 [pid 6237] close(3 [pid 6238] setpgid(0, 0 [pid 6237] <... close resumed>) = 0 [pid 6238] <... setpgid resumed>) = 0 [pid 6237] symlink("/dev/binderfs", "./binderfs" [pid 6238] symlink("/syzcgroup/unified/syz1", "./cgroup") = 0 [pid 6237] <... symlink resumed>) = 0 [pid 6238] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 6237] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6238] <... symlink resumed>) = 0 [pid 6237] <... futex resumed>) = 0 [pid 6238] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 6237] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6238] <... symlink resumed>) = 0 [pid 6238] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6237] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6238] <... openat resumed>) = 3 [pid 6237] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6238] write(3, "1000", 4) = 4 [pid 6238] close(3 [pid 6237] <... mprotect resumed>) = 0 [pid 6238] <... close resumed>) = 0 [pid 6238] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6237] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6238] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6237] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6238] <... futex resumed>) = 0 [pid 6237] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6239 attached [pid 6238] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6239] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6238] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6237] <... clone3 resumed> => {parent_tid=[144]}, 88) = 144 [pid 6239] <... rseq resumed>) = 0 [pid 6238] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6237] rt_sigprocmask(SIG_SETMASK, [], [pid 6239] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6238] <... mprotect resumed>) = 0 [pid 6237] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6239] <... set_robust_list resumed>) = 0 [pid 6238] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6237] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6239] rt_sigprocmask(SIG_SETMASK, [], [pid 6238] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6237] <... futex resumed>) = 0 [pid 6239] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6238] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6240 attached [pid 6239] memfd_create("syzkaller", 0 [pid 6237] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6240] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6238] <... clone3 resumed> => {parent_tid=[142]}, 88) = 142 [pid 6240] <... rseq resumed>) = 0 [pid 6238] rt_sigprocmask(SIG_SETMASK, [], [pid 6240] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6239] <... memfd_create resumed>) = 3 [pid 6238] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6240] <... set_robust_list resumed>) = 0 [pid 6238] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6240] rt_sigprocmask(SIG_SETMASK, [], [pid 6238] <... futex resumed>) = 0 [pid 6240] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6238] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6240] memfd_create("syzkaller", 0 [pid 6239] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6240] <... memfd_create resumed>) = 3 [pid 6240] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 6239] <... mmap resumed>) = 0x7f4f650a0000 [pid 6230] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6232] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6235] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6239] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6240] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6236] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6230] <... write resumed>) = 16777216 [pid 6230] munmap(0x7f4f650a0000, 16777216 [pid 6232] <... write resumed>) = 16777216 [pid 6235] <... write resumed>) = 16777216 [pid 6232] munmap(0x7f4f650a0000, 16777216 [pid 6230] <... munmap resumed>) = 0 [pid 6235] munmap(0x7f4f650a0000, 16777216 [pid 6230] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6230] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6230] close(3) = 0 [pid 6230] mkdir("./file0", 0777) = 0 [ 334.917749][ T6230] loop0: detected capacity change from 0 to 32768 [pid 6230] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6240] <... write resumed>) = 16777216 [ 334.963944][ T6230] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 334.985869][ T6230] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [pid 6240] munmap(0x7f4f650a0000, 16777216) = 0 [pid 6236] <... write resumed>) = 16777216 [pid 6232] <... munmap resumed>) = 0 [ 335.026977][ T6230] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [pid 6232] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 6236] munmap(0x7f4f650a0000, 16777216 [pid 6232] <... openat resumed>) = 4 [pid 6232] ioctl(4, LOOP_SET_FD, 3 [pid 6240] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 6240] ioctl(4, LOOP_SET_FD, 3 [pid 6235] <... munmap resumed>) = 0 [pid 6232] <... ioctl resumed>) = 0 [pid 6232] close(3) = 0 [pid 6232] mkdir("./file0", 0777 [pid 6235] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 6232] <... mkdir resumed>) = 0 [pid 6235] <... openat resumed>) = 4 [pid 6235] ioctl(4, LOOP_SET_FD, 3 [ 335.076599][ T917] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 335.083473][ T917] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 335.093587][ T6232] loop4: detected capacity change from 0 to 32768 [ 335.099185][ T6240] loop1: detected capacity change from 0 to 32768 [pid 6232] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6235] <... ioctl resumed>) = 0 [pid 6235] close(3) = 0 [pid 6235] mkdir("./file0", 0777) = 0 [pid 6239] <... write resumed>) = 16777216 [ 335.126093][ T6235] loop2: detected capacity change from 0 to 32768 [ 335.135388][ T6232] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 335.165963][ T6235] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 335.173412][ T6235] CPU: 1 PID: 6235 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 335.183969][ T6235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 335.194073][ T6235] Call Trace: [ 335.197373][ T6235] [ 335.200328][ T6235] dump_stack_lvl+0x136/0x150 [ 335.205058][ T6235] sysfs_warn_dup+0x80/0xa0 [ 335.209600][ T6235] sysfs_create_dir_ns+0x237/0x290 [ 335.214749][ T6235] ? sysfs_create_mount_point+0xb0/0xb0 [ 335.220330][ T6235] ? spin_bug+0x1c0/0x1c0 [ 335.224703][ T6235] ? do_raw_spin_unlock+0x175/0x230 [ 335.229950][ T6235] kobject_add_internal+0x2c9/0x9c0 [ 335.235185][ T6235] ? kfree+0x11/0x150 [ 335.239205][ T6235] kobject_init_and_add+0x101/0x170 [ 335.244439][ T6235] ? kobject_create_and_add+0xf0/0xf0 [ 335.249855][ T6235] ? lockdep_init_map_type+0x21e/0x810 [ 335.255354][ T6235] ? lockdep_hardirqs_on+0x7d/0x100 [ 335.260592][ T6235] ? lockdep_init_map_type+0x21e/0x810 [ 335.266099][ T6235] gfs2_sys_fs_add+0x1d5/0x450 [ 335.270917][ T6235] ? recover_store+0x170/0x170 [ 335.275727][ T6235] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 335.281513][ T6235] gfs2_fill_super+0x1312/0x2aa0 [ 335.286518][ T6235] ? gfs2_reconfigure+0xf90/0xf90 [ 335.290120][ T917] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 206ms [ 335.291592][ T6235] ? snprintf+0xbf/0x100 [ 335.303331][ T6235] ? vsprintf+0x30/0x30 [ 335.306067][ T917] gfs2: fsid=syz:syz.0: jid=0: Done [ 335.307507][ T6235] ? wait_for_completion_io_timeout+0x20/0x20 [ 335.312736][ T6230] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 335.318767][ T6235] ? set_blocksize+0x2d8/0x370 [ 335.318808][ T6235] get_tree_bdev+0x43e/0x7d0 [ 335.335458][ T6235] ? gfs2_reconfigure+0xf90/0xf90 [ 335.340530][ T6235] gfs2_get_tree+0x4e/0x270 [ 335.345088][ T6235] vfs_get_tree+0x8d/0x350 [ 335.349560][ T6235] path_mount+0x136e/0x1e70 [ 335.354126][ T6235] ? putname+0x102/0x140 [ 335.358410][ T6235] ? lockdep_hardirqs_on+0x7d/0x100 [ 335.363647][ T6235] ? finish_automount+0xa30/0xa30 [ 335.368728][ T6235] ? putname+0x102/0x140 [ 335.373012][ T6235] __x64_sys_mount+0x283/0x300 [ 335.377817][ T6235] ? copy_mnt_ns+0xb30/0xb30 [ 335.382448][ T6235] ? lockdep_hardirqs_on+0x7d/0x100 [ 335.387693][ T6235] ? _raw_spin_unlock_irq+0x2e/0x50 [ 335.392955][ T6235] ? ptrace_notify+0xfe/0x140 [ 335.397707][ T6235] do_syscall_64+0x39/0xb0 [ 335.402156][ T6235] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 335.408109][ T6235] RIP: 0033:0x7f4f6dd11c5a [ 335.412564][ T6235] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 335.432217][ T6235] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 335.440681][ T6235] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 335.448707][ T6235] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 335.456733][ T6235] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 335.464735][ T6235] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [pid 6235] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6240] <... ioctl resumed>) = 0 [pid 6239] munmap(0x7f4f650a0000, 16777216 [pid 6236] <... munmap resumed>) = 0 [pid 6230] <... mount resumed>) = 0 [ 335.472759][ T6235] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 335.480789][ T6235] [ 335.483834][ T6232] CPU: 0 PID: 6232 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 335.494331][ T6232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 335.504433][ T6232] Call Trace: [ 335.507749][ T6232] [ 335.510732][ T6232] dump_stack_lvl+0x136/0x150 [ 335.515574][ T6232] sysfs_warn_dup+0x80/0xa0 [ 335.520144][ T6232] sysfs_create_dir_ns+0x237/0x290 [ 335.525326][ T6232] ? sysfs_create_mount_point+0xb0/0xb0 [ 335.530928][ T6232] ? spin_bug+0x1c0/0x1c0 [ 335.535323][ T6232] ? do_raw_spin_unlock+0x175/0x230 [ 335.540582][ T6232] kobject_add_internal+0x2c9/0x9c0 [ 335.545829][ T6232] ? kfree+0x11/0x150 [ 335.549862][ T6232] kobject_init_and_add+0x101/0x170 [ 335.555116][ T6232] ? kobject_create_and_add+0xf0/0xf0 [ 335.560547][ T6232] ? lockdep_init_map_type+0x21e/0x810 [ 335.564443][ T6235] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 335.566043][ T6232] ? lockdep_hardirqs_on+0x7d/0x100 [ 335.566087][ T6232] ? lockdep_init_map_type+0x21e/0x810 [ 335.590700][ T6232] gfs2_sys_fs_add+0x1d5/0x450 [ 335.595507][ T6232] ? recover_store+0x170/0x170 [ 335.600400][ T6232] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 335.606161][ T6232] gfs2_fill_super+0x1312/0x2aa0 [ 335.611144][ T6232] ? gfs2_reconfigure+0xf90/0xf90 [ 335.616209][ T6232] ? snprintf+0xbf/0x100 [ 335.620485][ T6232] ? vsprintf+0x30/0x30 [ 335.624673][ T6232] ? wait_for_completion_io_timeout+0x20/0x20 [ 335.630844][ T6232] ? set_blocksize+0x2d8/0x370 [ 335.635667][ T6232] get_tree_bdev+0x43e/0x7d0 [ 335.640311][ T6232] ? gfs2_reconfigure+0xf90/0xf90 [ 335.645371][ T6232] gfs2_get_tree+0x4e/0x270 [ 335.649916][ T6232] vfs_get_tree+0x8d/0x350 [ 335.654365][ T6232] path_mount+0x136e/0x1e70 [ 335.658904][ T6232] ? putname+0x102/0x140 [ 335.663177][ T6232] ? lockdep_hardirqs_on+0x7d/0x100 [ 335.668407][ T6232] ? finish_automount+0xa30/0xa30 [ 335.673465][ T6232] ? putname+0x102/0x140 [ 335.677743][ T6232] __x64_sys_mount+0x283/0x300 [ 335.682548][ T6232] ? copy_mnt_ns+0xb30/0xb30 [ 335.687185][ T6232] ? lockdep_hardirqs_on+0x7d/0x100 [ 335.692420][ T6232] ? _raw_spin_unlock_irq+0x2e/0x50 [ 335.697674][ T6232] ? ptrace_notify+0xfe/0x140 [ 335.702431][ T6232] do_syscall_64+0x39/0xb0 [ 335.706873][ T6232] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 335.712816][ T6232] RIP: 0033:0x7f4f6dd11c5a [ 335.717264][ T6232] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 335.736921][ T6232] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 335.745371][ T6232] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 335.753367][ T6232] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 335.761379][ T6232] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 335.769596][ T6232] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [pid 6240] close(3 [pid 6236] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 6230] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6236] <... openat resumed>) = 4 [pid 6240] <... close resumed>) = 0 [ 335.777604][ T6232] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 335.785612][ T6232] [ 335.797219][ T6235] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 335.805906][ T6232] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [pid 6240] mkdir("./file0", 0777 [pid 6236] ioctl(4, LOOP_SET_FD, 3 [pid 6230] chdir("./file0" [pid 6240] <... mkdir resumed>) = 0 [pid 6235] <... mount resumed>) = -1 EEXIST (File exists) [pid 6230] <... chdir resumed>) = 0 [pid 6235] ioctl(4, LOOP_CLR_FD [pid 6230] ioctl(4, LOOP_CLR_FD [pid 6240] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6230] <... ioctl resumed>) = 0 [pid 6230] close(4) = 0 [pid 6230] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6229] <... futex resumed>) = 0 [pid 6230] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6229] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6236] <... ioctl resumed>) = 0 [ 335.832686][ T6236] loop3: detected capacity change from 0 to 32768 [ 335.848415][ T6230] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 335.876034][ T6240] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 335.883497][ T6240] CPU: 1 PID: 6240 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 335.893969][ T6240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 335.904077][ T6240] Call Trace: [ 335.907400][ T6240] [ 335.910376][ T6240] dump_stack_lvl+0x136/0x150 [ 335.915135][ T6240] sysfs_warn_dup+0x80/0xa0 [ 335.919702][ T6240] sysfs_create_dir_ns+0x237/0x290 [ 335.924975][ T6240] ? sysfs_create_mount_point+0xb0/0xb0 [ 335.930584][ T6240] ? spin_bug+0x1c0/0x1c0 [ 335.934997][ T6240] ? do_raw_spin_unlock+0x175/0x230 [ 335.940367][ T6240] kobject_add_internal+0x2c9/0x9c0 [ 335.945635][ T6240] ? kfree+0x11/0x150 [ 335.949674][ T6240] kobject_init_and_add+0x101/0x170 [ 335.954935][ T6240] ? kobject_create_and_add+0xf0/0xf0 [ 335.960361][ T6240] ? lockdep_init_map_type+0x21e/0x810 [ 335.965892][ T6240] ? lockdep_hardirqs_on+0x7d/0x100 [ 335.971155][ T6240] ? lockdep_init_map_type+0x21e/0x810 [ 335.976679][ T6240] gfs2_sys_fs_add+0x1d5/0x450 [ 335.981305][ T6232] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 335.981551][ T6240] ? recover_store+0x170/0x170 [ 335.992884][ T6240] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 335.993968][ T6230] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 335.993968][ T6230] inode = 12 2341 [ 335.993968][ T6230] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 335.998644][ T6240] gfs2_fill_super+0x1312/0x2aa0 [ 335.998698][ T6240] ? gfs2_reconfigure+0xf90/0xf90 [ 335.998734][ T6240] ? snprintf+0xbf/0x100 [ 336.018444][ T6230] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 336.022264][ T6240] ? vsprintf+0x30/0x30 [ 336.027389][ T6230] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6230 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 336.031557][ T6240] ? wait_for_completion_io_timeout+0x20/0x20 [ 336.040931][ T6230] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 336.044757][ T6240] ? set_blocksize+0x2d8/0x370 [ 336.054786][ T6230] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 336.060787][ T6240] get_tree_bdev+0x43e/0x7d0 [ 336.060838][ T6240] ? gfs2_reconfigure+0xf90/0xf90 [ 336.060876][ T6240] gfs2_get_tree+0x4e/0x270 [ 336.060911][ T6240] vfs_get_tree+0x8d/0x350 [ 336.060945][ T6240] path_mount+0x136e/0x1e70 [ 336.060984][ T6240] ? putname+0x102/0x140 [ 336.108978][ T6240] ? lockdep_hardirqs_on+0x7d/0x100 [ 336.114263][ T6240] ? finish_automount+0xa30/0xa30 [ 336.119363][ T6240] ? putname+0x102/0x140 [ 336.123666][ T6240] __x64_sys_mount+0x283/0x300 [ 336.124031][ T6230] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 336.128466][ T6240] ? copy_mnt_ns+0xb30/0xb30 [ 336.128507][ T6240] ? lockdep_hardirqs_on+0x7d/0x100 [ 336.128544][ T6240] ? _raw_spin_unlock_irq+0x2e/0x50 [ 336.128609][ T6240] ? ptrace_notify+0xfe/0x140 [ 336.128661][ T6240] do_syscall_64+0x39/0xb0 [ 336.151015][ T6230] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 336.152454][ T6240] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 336.162256][ T6230] gfs2: fsid=syz:syz.0: File system withdrawn [ 336.167960][ T6240] RIP: 0033:0x7f4f6dd11c5a [ 336.167987][ T6240] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 336.168018][ T6240] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 336.212515][ T6240] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [pid 6236] close(3 [pid 6239] <... munmap resumed>) = 0 [pid 6236] <... close resumed>) = 0 [pid 6235] <... ioctl resumed>) = 0 [pid 6229] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6239] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6236] mkdir("./file0", 0777 [pid 6235] close(4 [pid 6239] <... openat resumed>) = 4 [pid 6236] <... mkdir resumed>) = 0 [pid 6235] <... close resumed>) = 0 [pid 6239] ioctl(4, LOOP_SET_FD, 3 [pid 6236] mount("/dev/loop3", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6235] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6233] <... futex resumed>) = 0 [pid 6232] <... mount resumed>) = -1 EEXIST (File exists) [pid 6235] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6233] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6232] ioctl(4, LOOP_CLR_FD [pid 6235] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6233] <... futex resumed>) = 0 [pid 6235] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6233] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6235] <... openat resumed>) = 3 [pid 6235] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6239] <... ioctl resumed>) = 0 [pid 6235] <... futex resumed>) = 1 [pid 6233] <... futex resumed>) = 0 [pid 6239] close(3 [pid 6235] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6233] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6239] <... close resumed>) = 0 [pid 6235] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6233] <... futex resumed>) = 0 [pid 6239] mkdir("./file0", 0777 [pid 6235] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6233] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6239] <... mkdir resumed>) = 0 [pid 6235] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6239] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6235] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6233] <... futex resumed>) = 0 [pid 6235] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6233] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6235] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6233] <... futex resumed>) = 0 [pid 6235] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6233] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6235] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6235] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6233] <... futex resumed>) = 0 [ 336.220534][ T6240] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 336.228572][ T6240] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 336.236611][ T6240] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 336.244623][ T6240] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 336.251507][ T6239] loop5: detected capacity change from 0 to 32768 [ 336.252624][ T6240] [ 336.259608][ T6240] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 336.294155][ T6230] CPU: 0 PID: 6230 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 336.304667][ T6230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 336.307772][ T6240] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 336.314739][ T6230] Call Trace: [ 336.314753][ T6230] [ 336.314766][ T6230] dump_stack_lvl+0x136/0x150 [ 336.332219][ T6230] gfs2_withdraw+0xb33/0x1060 [ 336.336930][ T6230] ? gfs2_consist_inode_i+0x104/0x150 [ 336.342333][ T6230] gfs2_dirent_scan+0x32a/0x3d0 [ 336.347225][ T6230] ? gfs2_dirent_prev+0x210/0x210 [ 336.352291][ T6230] ? gfs2_dirent_prev+0x210/0x210 [ 336.357354][ T6230] gfs2_dirent_search+0x47d/0x580 [ 336.362416][ T6230] ? get_first_leaf+0x190/0x190 [ 336.367305][ T6230] ? gfs2_permission+0x256/0x3e0 [ 336.372275][ T6230] gfs2_dir_search+0x8d/0x2d0 [ 336.376993][ T6230] ? gfs2_dir_read+0x14e0/0x14e0 [ 336.381967][ T6230] gfs2_lookupi+0x481/0x640 [ 336.386499][ T6230] ? gfs2_lookup_by_inum+0x100/0x100 [ 336.391818][ T6230] ? __gfs2_lookup+0x83/0x280 [ 336.396527][ T6230] ? d_alloc_parallel+0x693/0x1530 [ 336.401674][ T6230] __gfs2_lookup+0x83/0x280 [ 336.406205][ T6230] ? gfs2_lookupi+0x640/0x640 [ 336.410907][ T6230] ? __d_lookup_rcu+0x4e0/0x4e0 [ 336.415804][ T6230] ? __d_lookup+0x289/0x4c0 [ 336.420337][ T6230] gfs2_atomic_open+0xde/0x250 [ 336.425143][ T6230] ? __gfs2_lookup+0x280/0x280 [ 336.429938][ T6230] lookup_open.isra.0+0xce2/0x1400 [ 336.435083][ T6230] ? link_path_walk.part.0+0xd60/0xd60 [ 336.440583][ T6230] ? lookup_fast+0x14e/0x520 [ 336.445218][ T6230] path_openat+0x969/0x2710 [ 336.449755][ T6230] ? path_lookupat+0x840/0x840 [ 336.454550][ T6230] ? find_held_lock+0x2d/0x110 [ 336.459346][ T6230] do_filp_open+0x1ba/0x410 [ 336.463883][ T6230] ? may_open_dev+0xf0/0xf0 [ 336.468420][ T6230] ? find_held_lock+0x2d/0x110 [ 336.473206][ T6230] ? do_raw_spin_lock+0x124/0x2b0 [ 336.478261][ T6230] ? spin_bug+0x1c0/0x1c0 [ 336.482625][ T6230] ? _raw_spin_unlock+0x28/0x40 [ 336.487517][ T6230] ? alloc_fd+0x2e4/0x750 [ 336.491889][ T6230] do_sys_openat2+0x160/0x1c0 [ 336.496608][ T6230] ? build_open_flags+0x720/0x720 [ 336.501677][ T6230] ? ptrace_notify+0xfe/0x140 [ 336.506399][ T6230] ? lock_downgrade+0x690/0x690 [ 336.511302][ T6230] __x64_sys_openat+0x143/0x1f0 [ 336.516190][ T6230] ? __ia32_sys_open+0x1c0/0x1c0 [ 336.521165][ T6230] ? _raw_spin_unlock_irq+0x23/0x50 [ 336.526418][ T6230] ? lockdep_hardirqs_on+0x7d/0x100 [ 336.531650][ T6230] ? _raw_spin_unlock_irq+0x2e/0x50 [ 336.536886][ T6230] ? ptrace_notify+0xfe/0x140 [ 336.541608][ T6230] do_syscall_64+0x39/0xb0 [ 336.546058][ T6230] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 336.552008][ T6230] RIP: 0033:0x7f4f6dd107f9 [ 336.556448][ T6230] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 336.576086][ T6230] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 336.584524][ T6230] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 336.592530][ T6230] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [ 336.600537][ T6230] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 336.608539][ T6230] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 336.616547][ T6230] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 336.624653][ T6230] [ 336.637774][ T6236] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [pid 6235] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6233] close(3 [pid 6230] <... openat resumed>) = -1 EIO (Input/output error) [pid 6229] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6230] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 336.645218][ T6236] CPU: 0 PID: 6236 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 336.655678][ T6236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 336.665771][ T6236] Call Trace: [ 336.669111][ T6236] [ 336.672083][ T6236] dump_stack_lvl+0x136/0x150 [ 336.676833][ T6236] sysfs_warn_dup+0x80/0xa0 [ 336.681368][ T6236] sysfs_create_dir_ns+0x237/0x290 [ 336.686512][ T6236] ? sysfs_create_mount_point+0xb0/0xb0 [ 336.692099][ T6236] ? spin_bug+0x1c0/0x1c0 [ 336.696474][ T6236] ? do_raw_spin_unlock+0x175/0x230 [ 336.701739][ T6236] kobject_add_internal+0x2c9/0x9c0 [ 336.706965][ T6236] ? kfree+0x11/0x150 [ 336.710970][ T6236] kobject_init_and_add+0x101/0x170 [ 336.716194][ T6236] ? kobject_create_and_add+0xf0/0xf0 [ 336.721592][ T6236] ? lockdep_init_map_type+0x21e/0x810 [ 336.727082][ T6236] ? lockdep_hardirqs_on+0x7d/0x100 [ 336.732323][ T6236] ? lockdep_init_map_type+0x21e/0x810 [ 336.737825][ T6236] gfs2_sys_fs_add+0x1d5/0x450 [ 336.742618][ T6236] ? recover_store+0x170/0x170 [ 336.747410][ T6236] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 336.753171][ T6236] gfs2_fill_super+0x1312/0x2aa0 [ 336.758140][ T6236] ? gfs2_reconfigure+0xf90/0xf90 [ 336.763188][ T6236] ? snprintf+0xbf/0x100 [ 336.767459][ T6236] ? vsprintf+0x30/0x30 [ 336.771827][ T6236] ? wait_for_completion_io_timeout+0x20/0x20 [ 336.777928][ T6236] ? set_blocksize+0x2d8/0x370 [ 336.782741][ T6236] get_tree_bdev+0x43e/0x7d0 [ 336.787476][ T6236] ? gfs2_reconfigure+0xf90/0xf90 [ 336.792541][ T6236] gfs2_get_tree+0x4e/0x270 [ 336.797077][ T6236] vfs_get_tree+0x8d/0x350 [ 336.801528][ T6236] path_mount+0x136e/0x1e70 [ 336.806064][ T6236] ? putname+0x102/0x140 [ 336.810335][ T6236] ? lockdep_hardirqs_on+0x7d/0x100 [ 336.815566][ T6236] ? finish_automount+0xa30/0xa30 [ 336.820626][ T6236] ? putname+0x102/0x140 [ 336.824900][ T6236] __x64_sys_mount+0x283/0x300 [ 336.829711][ T6236] ? copy_mnt_ns+0xb30/0xb30 [ 336.834333][ T6236] ? lockdep_hardirqs_on+0x7d/0x100 [ 336.839560][ T6236] ? _raw_spin_unlock_irq+0x2e/0x50 [ 336.844794][ T6236] ? ptrace_notify+0xfe/0x140 [ 336.849522][ T6236] do_syscall_64+0x39/0xb0 [ 336.853964][ T6236] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 336.859895][ T6236] RIP: 0033:0x7f4f6dd11c5a [ 336.864353][ T6236] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 336.883983][ T6236] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [pid 6230] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6233] <... close resumed>) = 0 [ 336.892434][ T6236] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 336.900426][ T6236] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 336.908440][ T6236] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 336.916462][ T6236] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 336.924452][ T6236] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 336.932448][ T6236] [pid 6233] close(4 [pid 6229] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6229] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6233] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6230] <... futex resumed>) = 0 [pid 6233] close(5) = -1 EBADF (Bad file descriptor) [pid 6233] close(6) = -1 EBADF (Bad file descriptor) [pid 6233] close(7) = -1 EBADF (Bad file descriptor) [pid 6233] close(8) = -1 EBADF (Bad file descriptor) [pid 6233] close(9) = -1 EBADF (Bad file descriptor) [pid 6233] close(10) = -1 EBADF (Bad file descriptor) [pid 6233] close(11) = -1 EBADF (Bad file descriptor) [pid 6233] close(12) = -1 EBADF (Bad file descriptor) [pid 6233] close(13) = -1 EBADF (Bad file descriptor) [pid 6233] close(14) = -1 EBADF (Bad file descriptor) [pid 6233] close(15) = -1 EBADF (Bad file descriptor) [pid 6233] close(16 [pid 6230] ioctl(0, VFAT_IOCTL_READDIR_SHORT [pid 6233] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6230] <... ioctl resumed>, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 6233] close(17 [pid 6230] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6233] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6230] <... futex resumed>) = 1 [pid 6229] <... futex resumed>) = 0 [pid 6233] close(18 [pid 6231] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6230] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6233] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6233] close(19) = -1 EBADF (Bad file descriptor) [pid 6233] close(20) = -1 EBADF (Bad file descriptor) [pid 6233] close(21) = -1 EBADF (Bad file descriptor) [pid 6233] close(22) = -1 EBADF (Bad file descriptor) [pid 6233] close(23) = -1 EBADF (Bad file descriptor) [pid 6233] close(24) = -1 EBADF (Bad file descriptor) [ 336.965883][ T6236] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 336.990598][ T6239] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 337.005250][ T6239] CPU: 0 PID: 6239 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [pid 6233] close(25) = -1 EBADF (Bad file descriptor) [pid 6233] close(26) = -1 EBADF (Bad file descriptor) [pid 6233] close(27) = -1 EBADF (Bad file descriptor) [pid 6233] close(28) = -1 EBADF (Bad file descriptor) [pid 6233] close(29) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6233] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 6233] exit_group(0 [pid 6235] <... futex resumed>) = ? [pid 6233] <... exit_group resumed>) = ? [pid 6235] +++ exited with 0 +++ [pid 6233] +++ exited with 0 +++ [pid 5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=143, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=46 /* 0.46 s */} --- [pid 5033] umount2("./48", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./48", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5033] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [ 337.015747][ T6239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 337.025856][ T6239] Call Trace: [ 337.029192][ T6239] [ 337.032164][ T6239] dump_stack_lvl+0x136/0x150 [ 337.034336][ T6236] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 337.036893][ T6239] sysfs_warn_dup+0x80/0xa0 [ 337.036936][ T6239] sysfs_create_dir_ns+0x237/0x290 [ 337.036972][ T6239] ? sysfs_create_mount_point+0xb0/0xb0 [ 337.058726][ T6239] ? spin_bug+0x1c0/0x1c0 [pid 5033] umount2("./48/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./48/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./48/cgroup.cpu") = 0 [pid 5033] umount2("./48/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./48/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./48/binderfs") = 0 [pid 5033] umount2("./48/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./48/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] umount2("./48/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] openat(AT_FDCWD, "./48/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5033] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5033] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5033] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5033] close(4) = 0 [pid 5033] rmdir("./48/file0") = 0 [pid 5033] umount2("./48/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./48/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./48/cgroup") = 0 [pid 5033] umount2("./48/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5033] newfstatat(AT_FDCWD, "./48/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5033] unlink("./48/cgroup.net") = 0 [pid 5033] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5033] close(3) = 0 [pid 5033] rmdir("./48") = 0 [pid 5033] mkdir("./49", 0777) = 0 [pid 5033] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [ 337.063130][ T6239] ? do_raw_spin_unlock+0x175/0x230 [ 337.068400][ T6239] kobject_add_internal+0x2c9/0x9c0 [ 337.073673][ T6239] ? kfree+0x11/0x150 [ 337.077722][ T6239] kobject_init_and_add+0x101/0x170 [ 337.082978][ T6239] ? kobject_create_and_add+0xf0/0xf0 [ 337.088427][ T6239] ? lockdep_init_map_type+0x21e/0x810 [ 337.093950][ T6239] ? lockdep_hardirqs_on+0x7d/0x100 [ 337.099242][ T6239] ? lockdep_init_map_type+0x21e/0x810 [ 337.104770][ T6239] gfs2_sys_fs_add+0x1d5/0x450 [ 337.109585][ T6239] ? recover_store+0x170/0x170 [pid 5033] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5033] close(3) = 0 [pid 5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6247 attached [pid 6247] set_robust_list(0x55555654e6a0, 24 [pid 5033] <... clone resumed>, child_tidptr=0x55555654e690) = 145 [pid 6247] <... set_robust_list resumed>) = 0 [pid 6247] chdir("./49") = 0 [pid 6247] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6247] setpgid(0, 0) = 0 [pid 6247] symlink("/syzcgroup/unified/syz2", "./cgroup") = 0 [pid 6247] symlink("/syzcgroup/cpu/syz2", "./cgroup.cpu") = 0 [pid 6247] symlink("/syzcgroup/net/syz2", "./cgroup.net") = 0 [pid 6247] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6247] write(3, "1000", 4) = 4 [pid 6247] close(3) = 0 [ 337.114416][ T6239] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 337.120197][ T6239] gfs2_fill_super+0x1312/0x2aa0 [ 337.125194][ T6239] ? gfs2_reconfigure+0xf90/0xf90 [ 337.130294][ T6239] ? snprintf+0xbf/0x100 [ 337.134596][ T6239] ? vsprintf+0x30/0x30 [ 337.138815][ T6239] ? wait_for_completion_io_timeout+0x20/0x20 [ 337.144946][ T6239] ? set_blocksize+0x2d8/0x370 [ 337.149773][ T6239] get_tree_bdev+0x43e/0x7d0 [ 337.154426][ T6239] ? gfs2_reconfigure+0xf90/0xf90 [ 337.159512][ T6239] gfs2_get_tree+0x4e/0x270 [pid 6247] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6247] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6247] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 6247] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6247] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6247] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6248 attached [pid 6248] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6247] <... clone3 resumed> => {parent_tid=[146]}, 88) = 146 [pid 6248] <... rseq resumed>) = 0 [pid 6247] rt_sigprocmask(SIG_SETMASK, [], [pid 6248] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6247] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6248] <... set_robust_list resumed>) = 0 [pid 6247] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6248] rt_sigprocmask(SIG_SETMASK, [], [pid 6247] <... futex resumed>) = 0 [pid 6248] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6247] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6248] memfd_create("syzkaller", 0) = 3 [pid 6248] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [ 337.164076][ T6239] vfs_get_tree+0x8d/0x350 [ 337.168588][ T6239] path_mount+0x136e/0x1e70 [ 337.173160][ T6239] ? putname+0x102/0x140 [ 337.177460][ T6239] ? lockdep_hardirqs_on+0x7d/0x100 [ 337.182734][ T6239] ? finish_automount+0xa30/0xa30 [ 337.187826][ T6239] ? putname+0x102/0x140 [ 337.192131][ T6239] __x64_sys_mount+0x283/0x300 [ 337.196960][ T6239] ? copy_mnt_ns+0xb30/0xb30 [ 337.201610][ T6239] ? lockdep_hardirqs_on+0x7d/0x100 [ 337.206873][ T6239] ? _raw_spin_unlock_irq+0x2e/0x50 [ 337.212137][ T6239] ? ptrace_notify+0xfe/0x140 [pid 6229] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6230] <... futex resumed>) = 0 [pid 6229] <... futex resumed>) = 1 [pid 6230] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6229] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6230] <... openat resumed>) = -1 EIO (Input/output error) [pid 6230] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6229] <... futex resumed>) = 0 [ 337.216893][ T6239] do_syscall_64+0x39/0xb0 [ 337.221398][ T6239] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 337.227365][ T6239] RIP: 0033:0x7f4f6dd11c5a [ 337.231827][ T6239] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 337.251512][ T6239] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [pid 6230] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6229] close(3) = 0 [pid 6229] close(4) = -1 EBADF (Bad file descriptor) [pid 6237] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6231] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6229] close(5 [pid 6237] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6237] <... futex resumed>) = 0 [pid 6229] close(6 [pid 6237] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6237] <... mmap resumed>) = 0x7f4f6607f000 [pid 6229] close(7 [pid 6237] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6237] <... mprotect resumed>) = 0 [pid 6229] close(8 [pid 6237] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6237] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6231] <... futex resumed>) = 0 [pid 6229] close(9 [pid 6237] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) ./strace-static-x86_64: Process 6249 attached [pid 6229] close(10 [pid 6249] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [ 337.259986][ T6239] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 337.268049][ T6239] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 337.276165][ T6239] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 337.284190][ T6239] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 337.292217][ T6239] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 337.300252][ T6239] [pid 6237] <... clone3 resumed> => {parent_tid=[145]}, 88) = 145 [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6249] <... rseq resumed>) = 0 [pid 6240] <... mount resumed>) = -1 EEXIST (File exists) [pid 6238] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6237] rt_sigprocmask(SIG_SETMASK, [], [pid 6234] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 6229] close(11 [pid 6249] set_robust_list(0x7f4f6609f9a0, 24 [pid 6237] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6249] <... set_robust_list resumed>) = 0 [pid 6237] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6229] close(12 [pid 6249] rt_sigprocmask(SIG_SETMASK, [], [pid 6237] <... futex resumed>) = 0 [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6249] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6237] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6229] close(13 [pid 6249] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6249] <... openat resumed>) = 3 [pid 6240] ioctl(4, LOOP_CLR_FD [pid 6238] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6234] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6229] close(14 [pid 6249] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6238] <... futex resumed>) = 0 [pid 6236] <... mount resumed>) = -1 EEXIST (File exists) [pid 6234] <... futex resumed>) = 0 [pid 6231] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6249] <... futex resumed>) = 1 [pid 6237] <... futex resumed>) = 0 [pid 6236] ioctl(4, LOOP_CLR_FD [pid 6229] close(15 [pid 6249] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6237] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6249] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6237] <... futex resumed>) = 0 [pid 6229] close(16 [pid 6249] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6238] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6237] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6234] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6249] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6238] <... mmap resumed>) = 0x7f4f6607f000 [pid 6234] <... mmap resumed>) = 0x7f4f6607f000 [pid 6229] close(17 [pid 6249] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6238] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6234] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6249] <... futex resumed>) = 1 [pid 6238] <... mprotect resumed>) = 0 [pid 6237] <... futex resumed>) = 0 [pid 6234] <... mprotect resumed>) = 0 [pid 6229] close(18 [pid 6249] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6238] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6237] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6234] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6249] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6238] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6237] <... futex resumed>) = 0 [pid 6234] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6229] close(19 [pid 6249] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6238] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6237] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6234] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) ./strace-static-x86_64: Process 6251 attached ./strace-static-x86_64: Process 6250 attached [pid 6249] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6229] close(20 [pid 6251] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6250] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6249] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6251] <... rseq resumed>) = 0 [pid 6250] <... rseq resumed>) = 0 [pid 6249] <... futex resumed>) = 1 [ 337.316243][ T6239] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 337.330690][ T6239] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 6239] <... mount resumed>) = -1 EEXIST (File exists) [pid 6238] <... clone3 resumed> => {parent_tid=[143]}, 88) = 143 [pid 6237] <... futex resumed>) = 0 [pid 6234] <... clone3 resumed> => {parent_tid=[137]}, 88) = 137 [pid 6231] <... mmap resumed>) = 0x7f4f6607f000 [pid 6229] close(21 [pid 6251] set_robust_list(0x7f4f6609f9a0, 24 [pid 6250] set_robust_list(0x7f4f6609f9a0, 24 [pid 6249] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6239] ioctl(4, LOOP_CLR_FD [pid 6238] rt_sigprocmask(SIG_SETMASK, [], [pid 6234] rt_sigprocmask(SIG_SETMASK, [], [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6251] <... set_robust_list resumed>) = 0 [pid 6234] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6229] close(22 [pid 6251] rt_sigprocmask(SIG_SETMASK, [], [pid 6234] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6251] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6234] <... futex resumed>) = 0 [pid 6229] close(23 [pid 6251] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6250] <... set_robust_list resumed>) = 0 [pid 6238] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6234] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6251] <... openat resumed>) = 3 [pid 6229] close(24 [pid 6251] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6250] rt_sigprocmask(SIG_SETMASK, [], [pid 6238] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6251] <... futex resumed>) = 1 [pid 6250] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6238] <... futex resumed>) = 0 [pid 6234] <... futex resumed>) = 0 [pid 6229] close(25 [pid 6251] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6250] openat(AT_FDCWD, "./file0", O_RDONLY [pid 6238] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6234] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6251] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6250] <... openat resumed>) = 3 [pid 6234] <... futex resumed>) = 0 [pid 6229] close(26 [pid 6251] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6250] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6234] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6251] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6231] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE [pid 6229] close(27 [pid 6231] <... mprotect resumed>) = 0 [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6251] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6231] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6229] close(28 [pid 6251] <... futex resumed>) = 1 [pid 6234] <... futex resumed>) = 0 [pid 6231] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6231] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0} [pid 6229] close(29./strace-static-x86_64: Process 6252 attached [pid 6250] <... futex resumed>) = 1 [pid 6238] <... futex resumed>) = 0 [pid 6229] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6252] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6250] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6238] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6231] <... clone3 resumed> => {parent_tid=[142]}, 88) = 142 [pid 6229] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156 [pid 6252] <... rseq resumed>) = 0 [pid 6250] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6238] <... futex resumed>) = 0 [pid 6231] rt_sigprocmask(SIG_SETMASK, [], [pid 6229] <... write resumed>) = 156 [pid 6252] set_robust_list(0x7f4f6609f9a0, 24 [pid 6251] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6250] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6238] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6234] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6231] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6229] exit_group(0 [pid 6252] <... set_robust_list resumed>) = 0 [pid 6251] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6231] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6230] <... futex resumed>) = ? [pid 6229] <... exit_group resumed>) = ? [pid 6252] rt_sigprocmask(SIG_SETMASK, [], [pid 6250] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6231] <... futex resumed>) = 0 [pid 6230] +++ exited with 0 +++ [pid 6229] +++ exited with 0 +++ [pid 6252] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6231] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6252] openat(AT_FDCWD, "./file0", O_RDONLY) = 3 [pid 5029] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=144, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=68 /* 0.68 s */} --- [pid 6252] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] restart_syscall(<... resuming interrupted clone ...> [pid 6252] <... futex resumed>) = 1 [pid 6231] <... futex resumed>) = 0 [pid 5029] <... restart_syscall resumed>) = 0 [pid 6252] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6234] <... futex resumed>) = 0 [pid 6231] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6252] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6231] <... futex resumed>) = 0 [pid 6252] ioctl(-1, VFAT_IOCTL_READDIR_SHORT [pid 6251] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6250] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6231] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6252] <... ioctl resumed>, 0) = -1 EBADF (Bad file descriptor) [pid 6251] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6250] <... futex resumed>) = 1 [pid 6238] <... futex resumed>) = 0 [pid 5029] umount2("./46", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6252] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6251] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6250] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6238] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6252] <... futex resumed>) = 1 [pid 6251] <... futex resumed>) = 0 [pid 6250] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6238] <... futex resumed>) = 0 [pid 6231] <... futex resumed>) = 0 [pid 5029] openat(AT_FDCWD, "./46", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6252] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6251] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6250] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6238] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6231] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6252] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6250] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6231] <... futex resumed>) = 0 [pid 5029] <... openat resumed>) = 3 [pid 6252] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6250] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6231] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5029] newfstatat(3, "", [pid 6252] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 6252] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6250] <... futex resumed>) = 1 [pid 6238] <... futex resumed>) = 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6252] <... futex resumed>) = 1 [pid 6231] <... futex resumed>) = 0 [pid 5029] getdents64(3, [pid 6252] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6250] futex(0x7f4f6dda46f8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5029] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5029] umount2("./46/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./46/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5029] unlink("./46/cgroup.cpu") = 0 [pid 5029] umount2("./46/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5029] newfstatat(AT_FDCWD, "./46/binderfs", [pid 6234] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6234] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5029] unlink("./46/binderfs") = 0 [pid 5029] umount2("./46/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6232] <... ioctl resumed>) = 0 [pid 6232] close(4) = 0 [pid 6232] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6231] close(3 [pid 6232] <... futex resumed>) = 0 [pid 6231] <... close resumed>) = 0 [pid 6232] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6231] close(4) = -1 EBADF (Bad file descriptor) [pid 6231] close(5) = -1 EBADF (Bad file descriptor) [pid 6231] close(6) = -1 EBADF (Bad file descriptor) [pid 6231] close(7) = -1 EBADF (Bad file descriptor) [pid 6231] close(8) = -1 EBADF (Bad file descriptor) [pid 6231] close(9) = -1 EBADF (Bad file descriptor) [pid 6231] close(10) = -1 EBADF (Bad file descriptor) [pid 6231] close(11) = -1 EBADF (Bad file descriptor) [pid 6231] close(12) = -1 EBADF (Bad file descriptor) [pid 6231] close(13) = -1 EBADF (Bad file descriptor) [pid 6231] close(14) = -1 EBADF (Bad file descriptor) [pid 6231] close(15) = -1 EBADF (Bad file descriptor) [pid 6231] close(16) = -1 EBADF (Bad file descriptor) [pid 6231] close(17) = -1 EBADF (Bad file descriptor) [pid 6231] close(18) = -1 EBADF (Bad file descriptor) [pid 6231] close(19) = -1 EBADF (Bad file descriptor) [pid 6231] close(20) = -1 EBADF (Bad file descriptor) [pid 6231] close(21) = -1 EBADF (Bad file descriptor) [pid 6231] close(22) = -1 EBADF (Bad file descriptor) [pid 6231] close(23) = -1 EBADF (Bad file descriptor) [pid 6231] close(24) = -1 EBADF (Bad file descriptor) [pid 6231] close(25 [pid 6248] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6231] <... close resumed>) = -1 EBADF (Bad file descriptor) write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6231] close(26) = -1 EBADF (Bad file descriptor) [pid 6231] close(27) = -1 EBADF (Bad file descriptor) [pid 6231] close(28) = -1 EBADF (Bad file descriptor) [pid 6231] close(29) = -1 EBADF (Bad file descriptor) [pid 6231] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156) = 156 [pid 6231] exit_group(0 [pid 6252] <... futex resumed>) = ? [pid 6232] <... futex resumed>) = ? [pid 6231] <... exit_group resumed>) = ? [pid 6252] +++ exited with 0 +++ [pid 6232] +++ exited with 0 +++ [pid 6231] +++ exited with 0 +++ [pid 5031] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=140, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=83 /* 0.83 s */} --- [pid 5031] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5031] umount2("./46", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./46", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5031] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(3, 0x555556550860 /* 7 entries */, 32768) = 208 [pid 5031] umount2("./46/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./46/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./46/cgroup.cpu") = 0 [pid 5031] umount2("./46/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6240] <... ioctl resumed>) = 0 [pid 5031] newfstatat(AT_FDCWD, "./46/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./46/binderfs") = 0 [pid 5031] umount2("./46/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 6240] close(4 [pid 5031] newfstatat(AT_FDCWD, "./46/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] umount2("./46/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] openat(AT_FDCWD, "./46/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5031] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5031] getdents64(4, 0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5031] getdents64(4, 0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5031] close(4 [pid 6240] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5031] rmdir("./46/file0") = 0 [pid 5031] umount2("./46/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./46/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./46/cgroup") = 0 [pid 5031] umount2("./46/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5031] newfstatat(AT_FDCWD, "./46/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5031] unlink("./46/cgroup.net" [pid 6240] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] <... unlink resumed>) = 0 [pid 5031] getdents64(3, 0x555556550860 /* 0 entries */, 32768) = 0 [pid 5031] close(3) = 0 [pid 5031] rmdir("./46") = 0 [pid 5031] mkdir("./47", 0777) = 0 [pid 5031] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 6240] <... futex resumed>) = 0 [pid 5031] ioctl(3, LOOP_CLR_FD [pid 6240] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5031] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6238] close(3 [pid 5031] close(3 [pid 6238] <... close resumed>) = 0 [pid 5031] <... close resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6253 attached [pid 6253] set_robust_list(0x55555654e6a0, 24 [pid 5031] <... clone resumed>, child_tidptr=0x55555654e690) = 143 [pid 6253] <... set_robust_list resumed>) = 0 [pid 6253] chdir("./47") = 0 [pid 6253] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6253] setpgid(0, 0) = 0 [pid 6253] symlink("/syzcgroup/unified/syz4", "./cgroup") = 0 [pid 6253] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu") = 0 [pid 6238] close(4 [pid 6253] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 6238] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6253] <... symlink resumed>) = 0 [pid 6253] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6238] close(5 [pid 6253] <... openat resumed>) = 3 [pid 6238] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6253] write(3, "1000", 4 [pid 6238] close(6 [pid 6253] <... write resumed>) = 4 [pid 6238] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6253] close(3 [pid 6238] close(7 [pid 6253] <... close resumed>) = 0 [pid 6238] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6253] symlink("/dev/binderfs", "./binderfs" [pid 6238] close(8 [pid 6253] <... symlink resumed>) = 0 [pid 6238] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6253] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6238] close(9 [pid 6253] <... futex resumed>) = 0 [pid 6238] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6253] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6238] close(10 [pid 6253] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6238] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6253] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6238] close(11 [pid 6253] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6238] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6253] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6238] close(12 [pid 6253] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 6238] <... close resumed>) = -1 EBADF (Bad file descriptor) ./strace-static-x86_64: Process 6254 attached [pid 6238] close(13 [pid 6254] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6253] <... clone3 resumed> => {parent_tid=[144]}, 88) = 144 [pid 6238] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6254] <... rseq resumed>) = 0 [pid 6253] rt_sigprocmask(SIG_SETMASK, [], [pid 6238] close(14 [pid 6254] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6253] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6238] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6254] <... set_robust_list resumed>) = 0 [pid 6253] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6238] close(15 [pid 6236] <... ioctl resumed>) = 0 [pid 6254] rt_sigprocmask(SIG_SETMASK, [], [pid 6253] <... futex resumed>) = 0 [pid 6238] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6254] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6253] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6238] close(16 [pid 6254] memfd_create("syzkaller", 0 [pid 6238] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6254] <... memfd_create resumed>) = 3 [pid 6254] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6238] close(17 [pid 6254] <... mmap resumed>) = 0x7f4f650a0000 [pid 6238] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6238] close(18) = -1 EBADF (Bad file descriptor) [pid 6238] close(19) = -1 EBADF (Bad file descriptor) [pid 6238] close(20) = -1 EBADF (Bad file descriptor) [pid 6238] close(21) = -1 EBADF (Bad file descriptor) [pid 6238] close(22) = -1 EBADF (Bad file descriptor) [pid 6238] close(23) = -1 EBADF (Bad file descriptor) [pid 6238] close(24) = -1 EBADF (Bad file descriptor) [pid 6238] close(25) = -1 EBADF (Bad file descriptor) [pid 6238] close(26) = -1 EBADF (Bad file descriptor) [pid 6236] close(4 [pid 6238] close(27 [pid 6236] <... close resumed>) = 0 [pid 6238] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6236] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6238] close(28 [pid 6236] <... futex resumed>) = 0 [pid 6238] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6238] close(29 [pid 6236] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6234] close(3 [pid 6238] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 6234] <... close resumed>) = 0 [pid 6238] write(1, "write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory\nwrite to /proc/sys/ne"..., 156write to /proc/sys/net/core/bpf_jit_kallsyms failed: No such file or directory write to /proc/sys/net/core/bpf_jit_harden failed: No such file or directory [pid 6234] close(4 [pid 5030] kill(-135, SIGKILL [pid 6251] <... futex resumed>) = ? [pid 6238] <... write resumed>) = 156 [pid 6236] <... futex resumed>) = ? [pid 6234] <... close resumed>) = ? [pid 5030] <... kill resumed>) = 0 [pid 6251] +++ killed by SIGKILL +++ [pid 6238] exit_group(0 [pid 6236] +++ killed by SIGKILL +++ [pid 6250] <... futex resumed>) = ? [pid 6240] <... futex resumed>) = ? [pid 6238] <... exit_group resumed>) = ? [pid 6234] +++ killed by SIGKILL +++ [pid 5030] kill(135, SIGKILL [pid 6250] +++ exited with 0 +++ [pid 5030] <... kill resumed>) = 0 [pid 5030] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=135, si_uid=0, si_status=SIGKILL, si_utime=3 /* 0.03 s */, si_stime=63 /* 0.63 s */} --- [pid 5030] umount2("./46", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5030] openat(AT_FDCWD, "./46", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 6240] +++ exited with 0 +++ [pid 6238] +++ exited with 0 +++ [pid 5030] newfstatat(3, "", [pid 5032] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=141, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=59 /* 0.59 s */} --- [pid 5032] restart_syscall(<... resuming interrupted clone ...> [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] <... restart_syscall resumed>) = 0 [pid 5030] getdents64(3, [pid 5032] umount2("./47", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "./47", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] umount2("./46/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... openat resumed>) = 3 [pid 5032] newfstatat(3, "", [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] getdents64(3, [pid 5030] newfstatat(AT_FDCWD, "./46/cgroup.cpu", [pid 6239] <... ioctl resumed>) = 0 [pid 5032] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6239] close(4 [pid 5032] umount2("./47/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] unlink("./46/cgroup.cpu" [pid 6239] <... close resumed>) = 0 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... unlink resumed>) = 0 [pid 6239] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] newfstatat(AT_FDCWD, "./47/cgroup.cpu", [pid 5030] umount2("./46/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6239] <... futex resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6239] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5032] unlink("./47/cgroup.cpu" [pid 5030] newfstatat(AT_FDCWD, "./46/binderfs", [pid 6237] close(3 [pid 5032] <... unlink resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6237] <... close resumed>) = 0 [pid 5032] umount2("./47/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] unlink("./46/binderfs" [pid 6237] close(4 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... unlink resumed>) = 0 [pid 6237] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] newfstatat(AT_FDCWD, "./47/binderfs", [pid 5030] umount2("./46/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6237] close(5 [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6237] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] unlink("./47/binderfs" [pid 5030] newfstatat(AT_FDCWD, "./46/file0", [pid 6237] close(6 [pid 5032] <... unlink resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6237] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./47/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] umount2("./46/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6237] close(7 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6237] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] newfstatat(AT_FDCWD, "./47/file0", [pid 5030] openat(AT_FDCWD, "./46/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6237] close(8 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... openat resumed>) = 4 [pid 6237] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5032] umount2("./47/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] newfstatat(4, "", [pid 6237] close(9 [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6237] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5034] kill(-143, SIGKILL [pid 5032] openat(AT_FDCWD, "./47/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5030] getdents64(4, [pid 6249] <... futex resumed>) = ? [pid 6239] <... futex resumed>) = ? [pid 5034] <... kill resumed>) = 0 [pid 5032] <... openat resumed>) = 4 [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6249] +++ killed by SIGKILL +++ [pid 6239] +++ killed by SIGKILL +++ [pid 6237] +++ killed by SIGKILL +++ [pid 5034] kill(143, SIGKILL [pid 5032] newfstatat(4, "", [pid 5030] getdents64(4, [pid 5034] <... kill resumed>) = 0 [pid 5032] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5030] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5034] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=143, si_uid=0, si_status=SIGKILL, si_utime=5 /* 0.05 s */, si_stime=68 /* 0.68 s */} --- [pid 5032] getdents64(4, [pid 5030] close(4 [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5030] <... close resumed>) = 0 [pid 5032] getdents64(4, [pid 5030] rmdir("./46/file0" [pid 5034] umount2("./47", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] close(4 [pid 5030] umount2("./46/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] openat(AT_FDCWD, "./47", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... close resumed>) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... openat resumed>) = 3 [pid 5032] rmdir("./47/file0" [pid 5030] newfstatat(AT_FDCWD, "./46/cgroup", [pid 5034] newfstatat(3, "", [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] umount2("./47/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] unlink("./46/cgroup" [pid 5034] getdents64(3, [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... unlink resumed>) = 0 [pid 5034] <... getdents64 resumed>0x555556550860 /* 7 entries */, 32768) = 208 [pid 5032] newfstatat(AT_FDCWD, "./47/cgroup", [pid 5030] umount2("./46/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5034] umount2("./47/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] unlink("./47/cgroup" [pid 5030] newfstatat(AT_FDCWD, "./46/cgroup.net", [pid 5034] newfstatat(AT_FDCWD, "./47/cgroup.cpu", [pid 5032] <... unlink resumed>) = 0 [pid 5030] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] umount2("./47/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5030] unlink("./46/cgroup.net" [pid 5034] unlink("./47/cgroup.cpu" [pid 5032] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5030] <... unlink resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5032] newfstatat(AT_FDCWD, "./47/cgroup.net", [pid 5030] getdents64(3, [pid 5034] umount2("./47/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5030] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] unlink("./47/cgroup.net" [pid 5030] close(3 [pid 5034] newfstatat(AT_FDCWD, "./47/binderfs", [pid 5032] <... unlink resumed>) = 0 [pid 5030] <... close resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] getdents64(3, [pid 5030] rmdir("./46" [pid 5034] unlink("./47/binderfs" [pid 5032] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 5030] <... rmdir resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5032] close(3 [pid 5030] mkdir("./47", 0777 [pid 5034] umount2("./47/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... close resumed>) = 0 [pid 5030] <... mkdir resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] rmdir("./47" [pid 5030] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5034] newfstatat(AT_FDCWD, "./47/file0", [pid 5032] <... rmdir resumed>) = 0 [pid 5030] <... openat resumed>) = 3 [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5032] mkdir("./48", 0777 [pid 5030] ioctl(3, LOOP_CLR_FD [pid 5034] umount2("./47/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 5032] <... mkdir resumed>) = 0 [pid 5030] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5032] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5030] close(3 [pid 5034] openat(AT_FDCWD, "./47/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5032] <... openat resumed>) = 3 [pid 5030] <... close resumed>) = 0 [pid 5034] <... openat resumed>) = 4 [pid 5032] ioctl(3, LOOP_CLR_FD [pid 5030] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6255 attached [pid 5034] newfstatat(4, "", [pid 5032] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5034] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5032] close(3 [pid 5030] <... clone resumed>, child_tidptr=0x55555654e690) = 138 [pid 6255] set_robust_list(0x55555654e6a0, 24 [pid 5034] getdents64(4, [pid 5032] <... close resumed>) = 0 [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 5032] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6256 attached [pid 6255] <... set_robust_list resumed>) = 0 [pid 5034] getdents64(4, [pid 6256] set_robust_list(0x55555654e6a0, 24 [pid 6255] chdir("./47" [pid 5034] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 5032] <... clone resumed>, child_tidptr=0x55555654e690) = 144 [pid 6256] <... set_robust_list resumed>) = 0 [pid 5034] close(4 [pid 6256] chdir("./48" [pid 5034] <... close resumed>) = 0 [pid 6256] <... chdir resumed>) = 0 [pid 5034] rmdir("./47/file0" [pid 6256] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] <... rmdir resumed>) = 0 [pid 6256] <... prctl resumed>) = 0 [pid 5034] umount2("./47/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6256] setpgid(0, 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6256] <... setpgid resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./47/cgroup", [pid 6256] symlink("/syzcgroup/unified/syz1", "./cgroup" [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6256] <... symlink resumed>) = 0 [pid 5034] unlink("./47/cgroup" [pid 6256] symlink("/syzcgroup/cpu/syz1", "./cgroup.cpu" [pid 6255] <... chdir resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 6256] <... symlink resumed>) = 0 [pid 6255] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5034] umount2("./47/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6256] symlink("/syzcgroup/net/syz1", "./cgroup.net" [pid 6255] <... prctl resumed>) = 0 [pid 5034] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6256] <... symlink resumed>) = 0 [pid 5034] newfstatat(AT_FDCWD, "./47/cgroup.net", [pid 6255] setpgid(0, 0 [pid 6256] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 6255] <... setpgid resumed>) = 0 [pid 5034] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6256] <... openat resumed>) = 3 [pid 6255] symlink("/syzcgroup/unified/syz3", "./cgroup" [pid 5034] unlink("./47/cgroup.net" [pid 6256] write(3, "1000", 4 [pid 6255] <... symlink resumed>) = 0 [pid 5034] <... unlink resumed>) = 0 [pid 5029] <... umount2 resumed>) = 0 [pid 6256] <... write resumed>) = 4 [pid 5034] getdents64(3, [pid 6256] close(3 [pid 5034] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6256] <... close resumed>) = 0 [pid 5034] close(3 [pid 6256] symlink("/dev/binderfs", "./binderfs" [pid 5034] <... close resumed>) = 0 [pid 6256] <... symlink resumed>) = 0 [pid 5034] rmdir("./47" [pid 6256] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5034] <... rmdir resumed>) = 0 [pid 6256] <... futex resumed>) = 0 [pid 5034] mkdir("./48", 0777 [pid 6256] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6255] symlink("/syzcgroup/cpu/syz3", "./cgroup.cpu" [pid 5034] <... mkdir resumed>) = 0 [pid 6256] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 5034] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6256] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 6255] <... symlink resumed>) = 0 [pid 5034] <... openat resumed>) = 3 [pid 6256] <... mprotect resumed>) = 0 [pid 6255] symlink("/syzcgroup/net/syz3", "./cgroup.net" [pid 5034] ioctl(3, LOOP_CLR_FD [pid 5029] umount2("./46/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6256] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6255] <... symlink resumed>) = 0 [pid 5034] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 6256] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6255] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5034] close(3 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6256] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 6255] <... openat resumed>) = 3 [pid 5034] <... close resumed>) = 0 [pid 5029] newfstatat(AT_FDCWD, "./46/file0", ./strace-static-x86_64: Process 6257 attached [pid 6255] write(3, "1000", 4 [pid 5034] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6258 attached [pid 6257] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6256] <... clone3 resumed> => {parent_tid=[145]}, 88) = 145 [pid 6255] <... write resumed>) = 4 [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6258] set_robust_list(0x55555654e6a0, 24 [pid 6257] <... rseq resumed>) = 0 [pid 6256] rt_sigprocmask(SIG_SETMASK, [], [pid 6255] close(3 [pid 5034] <... clone resumed>, child_tidptr=0x55555654e690) = 146 [pid 5029] umount2("./46/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6258] <... set_robust_list resumed>) = 0 [pid 6257] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6256] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6255] <... close resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6258] chdir("./48" [pid 6257] <... set_robust_list resumed>) = 0 [pid 6256] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6255] symlink("/dev/binderfs", "./binderfs" [pid 5029] openat(AT_FDCWD, "./46/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 6258] <... chdir resumed>) = 0 [pid 6257] rt_sigprocmask(SIG_SETMASK, [], [pid 6256] <... futex resumed>) = 0 [pid 6255] <... symlink resumed>) = 0 [pid 6257] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6256] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6258] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 6257] memfd_create("syzkaller", 0 [pid 6255] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 5029] <... openat resumed>) = 4 [pid 6258] <... prctl resumed>) = 0 [pid 6257] <... memfd_create resumed>) = 3 [pid 6258] setpgid(0, 0 [pid 6257] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6255] <... futex resumed>) = 0 [pid 5029] newfstatat(4, "", [pid 6258] <... setpgid resumed>) = 0 [pid 6257] <... mmap resumed>) = 0x7f4f650a0000 [pid 6255] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6258] symlink("/syzcgroup/unified/syz5", "./cgroup" [pid 5029] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 6255] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6258] <... symlink resumed>) = 0 [pid 6255] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5029] getdents64(4, [pid 6258] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu" [pid 6255] <... mprotect resumed>) = 0 [pid 6258] <... symlink resumed>) = 0 [pid 6255] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 2 entries */, 32768) = 48 [pid 6258] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 6255] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5029] getdents64(4, [pid 6258] <... symlink resumed>) = 0 [pid 6255] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5029] <... getdents64 resumed>0x5555565588a0 /* 0 entries */, 32768) = 0 [pid 6258] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5029] close(4./strace-static-x86_64: Process 6259 attached [pid 6259] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6255] <... clone3 resumed> => {parent_tid=[139]}, 88) = 139 [pid 5029] <... close resumed>) = 0 [pid 6258] <... openat resumed>) = 3 [pid 6255] rt_sigprocmask(SIG_SETMASK, [], [pid 5029] rmdir("./46/file0" [pid 6259] <... rseq resumed>) = 0 [pid 5029] <... rmdir resumed>) = 0 [pid 6259] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6258] write(3, "1000", 4 [pid 6255] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5029] umount2("./46/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6259] <... set_robust_list resumed>) = 0 [pid 6258] <... write resumed>) = 4 [pid 6255] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6259] rt_sigprocmask(SIG_SETMASK, [], [pid 6255] <... futex resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6259] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6258] close(3 [pid 6255] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5029] newfstatat(AT_FDCWD, "./46/cgroup", [pid 6259] memfd_create("syzkaller", 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6258] <... close resumed>) = 0 [pid 6259] <... memfd_create resumed>) = 3 [pid 6258] symlink("/dev/binderfs", "./binderfs" [pid 5029] unlink("./46/cgroup") = 0 [pid 5029] umount2("./46/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 6259] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 6258] <... symlink resumed>) = 0 [pid 5029] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 6258] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 6259] <... mmap resumed>) = 0x7f4f650a0000 [pid 5029] newfstatat(AT_FDCWD, "./46/cgroup.net", [pid 6258] <... futex resumed>) = 0 [pid 6258] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5029] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 6258] <... mmap resumed>) = 0x7f4f6d4a0000 [pid 6258] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE [pid 5029] unlink("./46/cgroup.net" [pid 6258] <... mprotect resumed>) = 0 [pid 6258] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5029] <... unlink resumed>) = 0 [pid 5029] getdents64(3, [pid 6258] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5029] <... getdents64 resumed>0x555556550860 /* 0 entries */, 32768) = 0 [pid 6258] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0} [pid 5029] close(3./strace-static-x86_64: Process 6260 attached [pid 6258] <... clone3 resumed> => {parent_tid=[147]}, 88) = 147 [pid 5029] <... close resumed>) = 0 [pid 6260] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6258] rt_sigprocmask(SIG_SETMASK, [], [pid 5029] rmdir("./46" [pid 6260] <... rseq resumed>) = 0 [pid 6258] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6258] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6260] set_robust_list(0x7f4f6d4c09a0, 24 [pid 5029] <... rmdir resumed>) = 0 [pid 6260] <... set_robust_list resumed>) = 0 [pid 6258] <... futex resumed>) = 0 [pid 5029] mkdir("./47", 0777 [pid 6260] rt_sigprocmask(SIG_SETMASK, [], [pid 6258] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6260] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5029] <... mkdir resumed>) = 0 [pid 6260] memfd_create("syzkaller", 0 [pid 5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6260] <... memfd_create resumed>) = 3 [pid 6260] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5029] <... openat resumed>) = 3 [pid 6260] <... mmap resumed>) = 0x7f4f650a0000 [pid 5029] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5029] close(3) = 0 [pid 5029] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6261 attached [pid 6261] set_robust_list(0x55555654e6a0, 24) = 0 [pid 5029] <... clone resumed>, child_tidptr=0x55555654e690) = 146 [pid 6261] chdir("./47") = 0 [pid 6261] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6261] setpgid(0, 0) = 0 [pid 6261] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0 [pid 6261] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0 [pid 6261] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0 [pid 6261] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6261] write(3, "1000", 4) = 4 [pid 6261] close(3) = 0 [pid 6261] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6261] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6261] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6d4a0000 [pid 6261] mprotect(0x7f4f6d4a1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6261] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6261] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6d4c0990, parent_tid=0x7f4f6d4c0990, exit_signal=0, stack=0x7f4f6d4a0000, stack_size=0x20300, tls=0x7f4f6d4c06c0}./strace-static-x86_64: Process 6262 attached [pid 6262] rseq(0x7f4f6d4c0fe0, 0x20, 0, 0x53053053 [pid 6261] <... clone3 resumed> => {parent_tid=[147]}, 88) = 147 [pid 6262] <... rseq resumed>) = 0 [pid 6261] rt_sigprocmask(SIG_SETMASK, [], [pid 6262] set_robust_list(0x7f4f6d4c09a0, 24 [pid 6261] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6262] <... set_robust_list resumed>) = 0 [pid 6261] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6262] rt_sigprocmask(SIG_SETMASK, [], [pid 6261] <... futex resumed>) = 0 [pid 6262] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6261] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6262] memfd_create("syzkaller", 0) = 3 [pid 6262] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4f650a0000 [pid 6248] <... write resumed>) = 16777216 [pid 6248] munmap(0x7f4f650a0000, 16777216) = 0 [pid 6248] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 6248] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6248] close(3) = 0 [pid 6248] mkdir("./file0", 0777) = 0 [ 338.802708][ T6248] loop2: detected capacity change from 0 to 32768 [ 338.846445][ T6248] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 338.854914][ T6248] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [pid 6248] mount("/dev/loop2", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [ 338.889230][ T6248] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 338.928196][ T917] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 338.937663][ T917] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 339.125291][ T917] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 187ms [ 339.160673][ T917] gfs2: fsid=syz:syz.0: jid=0: Done [pid 6254] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6257] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6248] <... mount resumed>) = 0 [pid 6248] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6248] chdir("./file0") = 0 [pid 6248] ioctl(4, LOOP_CLR_FD) = 0 [pid 6248] close(4 [pid 6262] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6260] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6259] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 6248] <... close resumed>) = 0 [pid 6248] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6247] <... futex resumed>) = 0 [pid 6247] futex(0x7f4f6dda46e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 339.203095][ T6248] gfs2: fsid=syz:syz.0: first mount done, others may mount [pid 6248] openat(AT_FDCWD, "./file0", O_RDONLY [ 339.254697][ T6248] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 339.291080][ T6248] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 339.291080][ T6248] inode = 12 2341 [pid 6247] futex(0x7f4f6dda46ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 6247] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6247] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4f6607f000 [pid 6247] mprotect(0x7f4f66080000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6247] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6247] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4f6609f990, parent_tid=0x7f4f6609f990, exit_signal=0, stack=0x7f4f6607f000, stack_size=0x20300, tls=0x7f4f6609f6c0}./strace-static-x86_64: Process 6264 attached [pid 6264] rseq(0x7f4f6609ffe0, 0x20, 0, 0x53053053 [pid 6247] <... clone3 resumed> => {parent_tid=[147]}, 88) = 147 [pid 6264] <... rseq resumed>) = 0 [pid 6247] rt_sigprocmask(SIG_SETMASK, [], [pid 6264] set_robust_list(0x7f4f6609f9a0, 24 [pid 6247] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6264] <... set_robust_list resumed>) = 0 [pid 6247] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6264] rt_sigprocmask(SIG_SETMASK, [], [pid 6247] <... futex resumed>) = 0 [pid 6264] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6247] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6264] ioctl(0, VFAT_IOCTL_READDIR_SHORT, 0) = -1 ENOTTY (Inappropriate ioctl for device) [pid 6264] futex(0x7f4f6dda46fc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6247] <... futex resumed>) = 0 [ 339.291080][ T6248] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [pid 6264] openat(AT_FDCWD, "./cgroup.cpu/syz1", O_RDWR|O_PATH [pid 6247] futex(0x7f4f6dda46f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 339.346884][ T6264] gfs2: fsid=syz:syz.0: gfs2_dirent_offset: wrong block type 1577058308 [ 339.355295][ T6264] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 339.355295][ T6264] inode = 12 2341 [ 339.355295][ T6264] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 339.381123][ T6248] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:4 m:20 p:1 [ 339.433892][ T6248] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6248 [syz-executor676] __gfs2_lookup+0x83/0x280 [pid 6247] futex(0x7f4f6dda46fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [ 339.496153][ T6248] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6264 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 339.546907][ T6248] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 339.616432][ T6264] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:4 m:20 p:1 [ 339.617093][ T6248] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 339.694119][ T6248] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 339.728171][ T6264] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:6248 [syz-executor676] __gfs2_lookup+0x83/0x280 [ 339.748376][ T6248] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 339.787708][ T6248] gfs2: fsid=syz:syz.0: File system withdrawn [ 339.815565][ T6248] CPU: 0 PID: 6248 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 339.826163][ T6248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 339.836249][ T6248] Call Trace: [ 339.839544][ T6248] [ 339.842500][ T6248] dump_stack_lvl+0x136/0x150 [ 339.847345][ T6248] gfs2_withdraw+0xb33/0x1060 [ 339.852077][ T6248] ? gfs2_consist_inode_i+0x104/0x150 [ 339.857490][ T6248] gfs2_dirent_scan+0x32a/0x3d0 [ 339.862397][ T6248] ? gfs2_dirent_prev+0x210/0x210 [ 339.867474][ T6248] ? gfs2_dirent_prev+0x210/0x210 [ 339.872560][ T6248] gfs2_dirent_search+0x47d/0x580 [ 339.877638][ T6248] ? get_first_leaf+0x190/0x190 [ 339.882539][ T6248] ? gfs2_permission+0x256/0x3e0 [ 339.887538][ T6248] gfs2_dir_search+0x8d/0x2d0 [ 339.892277][ T6248] ? gfs2_dir_read+0x14e0/0x14e0 [ 339.897260][ T6248] gfs2_lookupi+0x481/0x640 [ 339.901892][ T6248] ? gfs2_lookup_by_inum+0x100/0x100 [ 339.907214][ T6248] ? __gfs2_lookup+0x83/0x280 [ 339.911926][ T6248] ? d_alloc_parallel+0x693/0x1530 [ 339.917102][ T6248] __gfs2_lookup+0x83/0x280 [ 339.921637][ T6248] ? gfs2_lookupi+0x640/0x640 [ 339.926344][ T6248] ? __d_lookup_rcu+0x4e0/0x4e0 [ 339.931227][ T6248] ? __d_lookup+0x289/0x4c0 [ 339.935768][ T6248] gfs2_atomic_open+0xde/0x250 [ 339.940568][ T6248] ? __gfs2_lookup+0x280/0x280 [ 339.945365][ T6248] lookup_open.isra.0+0xce2/0x1400 [ 339.950531][ T6248] ? link_path_walk.part.0+0xd60/0xd60 [ 339.956029][ T6248] ? lookup_fast+0x14e/0x520 [ 339.960667][ T6248] path_openat+0x969/0x2710 [ 339.965227][ T6248] ? path_lookupat+0x840/0x840 [ 339.970023][ T6248] do_filp_open+0x1ba/0x410 [ 339.974556][ T6248] ? may_open_dev+0xf0/0xf0 [ 339.979092][ T6248] ? find_held_lock+0x2d/0x110 [ 339.983911][ T6248] ? do_raw_spin_lock+0x124/0x2b0 [ 339.988975][ T6248] ? spin_bug+0x1c0/0x1c0 [ 339.993334][ T6248] ? _raw_spin_unlock+0x28/0x40 [ 339.998296][ T6248] ? alloc_fd+0x2e4/0x750 [ 340.002661][ T6248] do_sys_openat2+0x160/0x1c0 [ 340.007382][ T6248] ? build_open_flags+0x720/0x720 [ 340.012502][ T6248] ? ptrace_notify+0xfe/0x140 [ 340.017231][ T6248] ? lock_downgrade+0x690/0x690 [ 340.022113][ T6248] __x64_sys_openat+0x143/0x1f0 [ 340.027006][ T6248] ? __ia32_sys_open+0x1c0/0x1c0 [ 340.032068][ T6248] ? _raw_spin_unlock_irq+0x23/0x50 [ 340.037304][ T6248] ? lockdep_hardirqs_on+0x7d/0x100 [ 340.042540][ T6248] ? _raw_spin_unlock_irq+0x2e/0x50 [ 340.047779][ T6248] ? ptrace_notify+0xfe/0x140 [ 340.052506][ T6248] do_syscall_64+0x39/0xb0 [ 340.056944][ T6248] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 340.062975][ T6248] RIP: 0033:0x7f4f6dd107f9 [ 340.067417][ T6248] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 340.087051][ T6248] RSP: 002b:00007f4f6d4c0228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 340.095494][ T6248] RAX: ffffffffffffffda RBX: 00007f4f6dda46e8 RCX: 00007f4f6dd107f9 [ 340.103487][ T6248] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 00000000ffffff9c [ 340.111482][ T6248] RBP: 00007f4f6dda46e0 R08: 00007f4f6d4c06c0 R09: 00007f4f6d4c06c0 [ 340.119487][ T6248] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46ec [ 340.127478][ T6248] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 340.135477][ T6248] [pid 6248] <... openat resumed>) = -1 EIO (Input/output error) [pid 6248] futex(0x7f4f6dda46ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6248] futex(0x7f4f6dda46e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6254] <... write resumed>) = 16777216 [pid 6254] munmap(0x7f4f650a0000, 16777216) = 0 [pid 6254] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 6254] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6254] close(3) = 0 [pid 6254] mkdir("./file0", 0777 [pid 6262] <... write resumed>) = 16777216 [pid 6254] <... mkdir resumed>) = 0 [pid 6254] mount("/dev/loop4", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6262] munmap(0x7f4f650a0000, 16777216 [pid 6257] <... write resumed>) = 16777216 [ 340.443183][ T6254] loop4: detected capacity change from 0 to 32768 [ 340.481818][ T6254] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 340.497820][ T6254] CPU: 1 PID: 6254 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 340.508316][ T6254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 340.518404][ T6254] Call Trace: [ 340.521698][ T6254] [ 340.524644][ T6254] dump_stack_lvl+0x136/0x150 [ 340.529376][ T6254] sysfs_warn_dup+0x80/0xa0 [ 340.533944][ T6254] sysfs_create_dir_ns+0x237/0x290 [ 340.539088][ T6254] ? sysfs_create_mount_point+0xb0/0xb0 [ 340.544668][ T6254] ? spin_bug+0x1c0/0x1c0 [ 340.549034][ T6254] ? do_raw_spin_unlock+0x175/0x230 [ 340.554268][ T6254] kobject_add_internal+0x2c9/0x9c0 [ 340.559513][ T6254] ? kfree+0x11/0x150 [ 340.563591][ T6254] kobject_init_and_add+0x101/0x170 [ 340.568830][ T6254] ? kobject_create_and_add+0xf0/0xf0 [ 340.574241][ T6254] ? lockdep_init_map_type+0x21e/0x810 [ 340.579743][ T6254] ? lockdep_hardirqs_on+0x7d/0x100 [ 340.584978][ T6254] ? lockdep_init_map_type+0x21e/0x810 [ 340.590494][ T6254] gfs2_sys_fs_add+0x1d5/0x450 [ 340.595323][ T6254] ? recover_store+0x170/0x170 [ 340.600137][ T6254] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 340.605904][ T6254] gfs2_fill_super+0x1312/0x2aa0 [ 340.610877][ T6254] ? gfs2_reconfigure+0xf90/0xf90 [ 340.615941][ T6254] ? snprintf+0xbf/0x100 [ 340.620238][ T6254] ? vsprintf+0x30/0x30 [ 340.624433][ T6254] ? wait_for_completion_io_timeout+0x20/0x20 [ 340.630544][ T6254] ? set_blocksize+0x2d8/0x370 [ 340.635368][ T6254] get_tree_bdev+0x43e/0x7d0 [ 340.640000][ T6254] ? gfs2_reconfigure+0xf90/0xf90 [ 340.645051][ T6254] gfs2_get_tree+0x4e/0x270 [ 340.649587][ T6254] vfs_get_tree+0x8d/0x350 [ 340.654034][ T6254] path_mount+0x136e/0x1e70 [ 340.658566][ T6254] ? putname+0x102/0x140 [ 340.662830][ T6254] ? lockdep_hardirqs_on+0x7d/0x100 [ 340.668061][ T6254] ? finish_automount+0xa30/0xa30 [ 340.673124][ T6254] ? putname+0x102/0x140 [ 340.677408][ T6254] __x64_sys_mount+0x283/0x300 [ 340.682215][ T6254] ? copy_mnt_ns+0xb30/0xb30 [ 340.686840][ T6254] ? lockdep_hardirqs_on+0x7d/0x100 [ 340.692101][ T6254] ? _raw_spin_unlock_irq+0x2e/0x50 [ 340.697338][ T6254] ? ptrace_notify+0xfe/0x140 [ 340.702061][ T6254] do_syscall_64+0x39/0xb0 [ 340.706500][ T6254] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 340.712436][ T6254] RIP: 0033:0x7f4f6dd11c5a [ 340.716903][ T6254] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 340.736590][ T6254] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 340.745028][ T6254] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 340.753036][ T6254] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 340.761040][ T6254] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 340.769039][ T6254] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 340.777036][ T6254] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 340.785038][ T6254] [ 340.788598][ T6264] general protection fault, probably for non-canonical address 0xf2c0f5303dde4f64: 0000 [#1] PREEMPT SMP KASAN [ 340.800363][ T6264] KASAN: maybe wild-memory-access in range [0x9607c981eef27b20-0x9607c981eef27b27] [ 340.809716][ T6264] CPU: 1 PID: 6264 Comm: syz-executor676 Not tainted 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 340.820152][ T6264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 340.830222][ T6264] RIP: 0010:gfs2_dump_glock+0xd3f/0x1ca0 [ 340.835892][ T6264] Code: e8 26 cf 8a 06 31 ff 89 c3 89 c6 e8 1b b5 ef fd 85 db 58 0f 85 7c 08 00 00 e8 ed b8 ef fd 4d 8d 74 24 20 4c 89 f0 48 c1 e8 03 <42> 0f b6 04 38 84 c0 74 08 3c 01 0f 8e 2a 0b 00 00 41 0f b7 6c 24 [ 340.855635][ T6264] RSP: 0018:ffffc9000628f158 EFLAGS: 00010a02 [ 340.861719][ T6264] RAX: 12c0f9303dde4f64 RBX: 0000000000000001 RCX: 0000000000000000 [ 340.869709][ T6264] RDX: ffff888018b5e1c0 RSI: ffffffff839449a3 RDI: 0000000000000001 [ 340.877728][ T6264] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 340.885736][ T6264] R10: 0000000000000001 R11: 0000000000000001 R12: 9607c981eef27b00 [ 340.893738][ T6264] R13: ffffffff8ab83d00 R14: 9607c981eef27b20 R15: dffffc0000000000 [ 340.901735][ T6264] FS: 00007f4f6609f6c0(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 340.910691][ T6264] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 340.917297][ T6264] CR2: 00007f4f6609fd58 CR3: 000000007988b000 CR4: 00000000003506e0 [ 340.925291][ T6264] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 340.933283][ T6264] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 340.941271][ T6264] Call Trace: [ 340.944577][ T6264] [ 340.947625][ T6264] ? die_addr+0x3c/0xa0 [ 340.951844][ T6264] ? exc_general_protection+0x129/0x230 [ 340.957434][ T6264] ? asm_exc_general_protection+0x26/0x30 [ 340.963194][ T6264] ? gfs2_dump_glock+0xd33/0x1ca0 [ 340.968258][ T6264] ? gfs2_dump_glock+0xd3f/0x1ca0 [ 340.973316][ T6264] ? gfs2_dump_glock+0xd33/0x1ca0 [ 340.978377][ T6264] ? __gfs2_lookup+0x83/0x280 [ 340.983082][ T6264] ? gfs2_gl_hash_clear+0x270/0x270 [ 340.988309][ T6264] ? __wake_up_klogd.part.0+0x99/0xf0 [ 340.993711][ T6264] ? vprintk_emit+0x125/0x600 [ 340.998418][ T6264] ? vprintk+0x8c/0xa0 [ 341.002515][ T6264] ? _printk+0xbf/0xf0 [ 341.006611][ T6264] ? syslog_print_all+0x3a0/0x3a0 [ 341.011673][ T6264] ? _printk+0xbf/0xf0 [ 341.015770][ T6264] ? syslog_print_all+0x3a0/0x3a0 [ 341.020844][ T6264] gfs2_consist_inode_i+0x104/0x150 [ 341.026068][ T6264] gfs2_dirent_scan+0x32a/0x3d0 [ 341.030972][ T6264] ? gfs2_dirent_prev+0x210/0x210 [ 341.036122][ T6264] ? gfs2_dirent_prev+0x210/0x210 [ 341.041182][ T6264] gfs2_dirent_search+0x47d/0x580 [ 341.046270][ T6264] ? get_first_leaf+0x190/0x190 [ 341.051158][ T6264] ? gfs2_permission+0x256/0x3e0 [ 341.056122][ T6264] gfs2_dir_search+0x8d/0x2d0 [ 341.060838][ T6264] ? gfs2_dir_read+0x14e0/0x14e0 [ 341.065807][ T6264] gfs2_lookupi+0x481/0x640 [ 341.070338][ T6264] ? gfs2_lookup_by_inum+0x100/0x100 [ 341.075656][ T6264] ? __gfs2_lookup+0x83/0x280 [ 341.080377][ T6264] __gfs2_lookup+0x83/0x280 [ 341.084904][ T6264] ? gfs2_lookupi+0x640/0x640 [ 341.089605][ T6264] ? lockdep_init_map_type+0x21e/0x810 [ 341.095095][ T6264] ? avc_has_perm_noaudit+0x10b/0x3a0 [ 341.100518][ T6264] ? lockdep_init_map_type+0x21e/0x810 [ 341.106008][ T6264] __lookup_slow+0x24c/0x460 [ 341.110649][ T6264] ? lookup_one_qstr_excl+0x180/0x180 [ 341.116056][ T6264] ? lookup_fast+0x14e/0x520 [ 341.120671][ T6264] walk_component+0x33f/0x5a0 [ 341.125377][ T6264] link_path_walk.part.0+0x74e/0xd60 [ 341.130691][ T6264] ? walk_component+0x5a0/0x5a0 [ 341.135577][ T6264] path_lookupat+0xb7/0x840 [ 341.140114][ T6264] path_openat+0x1710/0x2710 [ 341.144735][ T6264] ? path_lookupat+0x840/0x840 [ 341.149526][ T6264] ? find_held_lock+0x2d/0x110 [ 341.154346][ T6264] do_filp_open+0x1ba/0x410 [ 341.158874][ T6264] ? may_open_dev+0xf0/0xf0 [ 341.163413][ T6264] ? find_held_lock+0x2d/0x110 [ 341.168213][ T6264] ? do_raw_spin_lock+0x124/0x2b0 [ 341.173268][ T6264] ? spin_bug+0x1c0/0x1c0 [ 341.177629][ T6264] ? _raw_spin_unlock+0x28/0x40 [ 341.182512][ T6264] ? alloc_fd+0x2e4/0x750 [ 341.186878][ T6264] do_sys_openat2+0x160/0x1c0 [ 341.191606][ T6264] ? build_open_flags+0x720/0x720 [ 341.196666][ T6264] ? ptrace_notify+0xfe/0x140 [ 341.201476][ T6264] ? lock_downgrade+0x690/0x690 [ 341.206361][ T6264] __x64_sys_openat+0x143/0x1f0 [ 341.211289][ T6264] ? __ia32_sys_open+0x1c0/0x1c0 [ 341.216266][ T6264] ? _raw_spin_unlock_irq+0x23/0x50 [ 341.221498][ T6264] ? lockdep_hardirqs_on+0x7d/0x100 [ 341.226728][ T6264] ? _raw_spin_unlock_irq+0x2e/0x50 [ 341.231963][ T6264] ? ptrace_notify+0xfe/0x140 [ 341.236679][ T6264] do_syscall_64+0x39/0xb0 [ 341.241121][ T6264] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 341.247056][ T6264] RIP: 0033:0x7f4f6dd107f9 [ 341.251488][ T6264] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 341.271119][ T6264] RSP: 002b:00007f4f6609f228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 341.279557][ T6264] RAX: ffffffffffffffda RBX: 00007f4f6dda46f8 RCX: 00007f4f6dd107f9 [ 341.287547][ T6264] RDX: 0000000000200002 RSI: 00000000200001c0 RDI: ffffffffffffff9c [pid 6257] munmap(0x7f4f650a0000, 16777216 [pid 6260] <... write resumed>) = 16777216 [pid 6259] <... write resumed>) = 16777216 [pid 6260] munmap(0x7f4f650a0000, 16777216 [ 341.295538][ T6264] RBP: 00007f4f6dda46f0 R08: 00007f4f6609f6c0 R09: 00007f4f6609f6c0 [ 341.303526][ T6264] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4f6dda46fc [ 341.311515][ T6264] R13: 0030656c69662f2e R14: 00007f4f6dd5d740 R15: 00007fffaa0db528 [ 341.319529][ T6264] [ 341.322562][ T6264] Modules linked in: [pid 6259] munmap(0x7f4f650a0000, 16777216 [pid 6262] <... munmap resumed>) = 0 [pid 6257] <... munmap resumed>) = 0 [pid 6262] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 6257] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 6262] <... openat resumed>) = 4 [pid 6257] <... openat resumed>) = 4 [pid 6262] ioctl(4, LOOP_SET_FD, 3 [pid 6257] ioctl(4, LOOP_SET_FD, 3 [pid 6262] <... ioctl resumed>) = 0 [ 341.391771][ T6254] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 341.406365][ T6254] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 341.414206][ T6264] ---[ end trace 0000000000000000 ]--- [ 341.420179][ T6264] RIP: 0010:gfs2_dump_glock+0xd3f/0x1ca0 [ 341.426938][ T6262] loop0: detected capacity change from 0 to 32768 [ 341.433613][ T6257] loop1: detected capacity change from 0 to 32768 [pid 6262] close(3 [pid 6257] <... ioctl resumed>) = 0 [pid 6262] <... close resumed>) = 0 [pid 6257] close(3 [pid 6260] <... munmap resumed>) = 0 [pid 6260] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 6262] mkdir("./file0", 0777 [pid 6257] <... close resumed>) = 0 [pid 6260] <... openat resumed>) = 4 [pid 6260] ioctl(4, LOOP_SET_FD, 3 [pid 6262] <... mkdir resumed>) = 0 [pid 6257] mkdir("./file0", 0777 [pid 6259] <... munmap resumed>) = 0 [pid 6259] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [ 341.444099][ T6264] Code: e8 26 cf 8a 06 31 ff 89 c3 89 c6 e8 1b b5 ef fd 85 db 58 0f 85 7c 08 00 00 e8 ed b8 ef fd 4d 8d 74 24 20 4c 89 f0 48 c1 e8 03 <42> 0f b6 04 38 84 c0 74 08 3c 01 0f 8e 2a 0b 00 00 41 0f b7 6c 24 [ 341.464157][ T6264] RSP: 0018:ffffc9000628f158 EFLAGS: 00010a02 [ 341.470944][ T6264] RAX: 12c0f9303dde4f64 RBX: 0000000000000001 RCX: 0000000000000000 [ 341.474491][ T6260] loop5: detected capacity change from 0 to 32768 [ 341.480925][ T6264] RDX: ffff888018b5e1c0 RSI: ffffffff839449a3 RDI: 0000000000000001 [pid 6259] ioctl(4, LOOP_SET_FD, 3 [pid 6262] mount("/dev/loop0", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6257] <... mkdir resumed>) = 0 [pid 6260] <... ioctl resumed>) = 0 [pid 6260] close(3) = 0 [pid 6260] mkdir("./file0", 0777) = 0 [pid 6260] mount("/dev/loop5", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6259] <... ioctl resumed>) = 0 [pid 6259] close(3 [pid 6257] mount("/dev/loop1", "./file0", "gfs2", MS_RDONLY|MS_SYNCHRONOUS|MS_POSIXACL, "" [pid 6259] <... close resumed>) = 0 [ 341.493337][ T6259] loop3: detected capacity change from 0 to 32768 [ 341.495673][ T6264] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 341.510685][ T6264] R10: 0000000000000001 R11: 0000000000000001 R12: 9607c981eef27b00 [ 341.511463][ T6257] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 341.518934][ T6260] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [pid 6259] mkdir("./file0", 0777) = 0 [ 341.526724][ T6257] CPU: 1 PID: 6257 Comm: syz-executor676 Tainted: G D 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 341.545663][ T6257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 341.555754][ T6257] Call Trace: [ 341.557132][ T6264] R13: ffffffff8ab83d00 R14: 9607c981eef27b20 R15: dffffc0000000000 [ 341.559041][ T6257] [ 341.569985][ T6257] dump_stack_lvl+0x136/0x150 [ 341.574721][ T6257] sysfs_warn_dup+0x80/0xa0 [ 341.577717][ T6262] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 341.579252][ T6257] sysfs_create_dir_ns+0x237/0x290 [ 341.591787][ T6257] ? sysfs_create_mount_point+0xb0/0xb0 [ 341.597389][ T6257] ? spin_bug+0x1c0/0x1c0 [ 341.601770][ T6257] ? do_raw_spin_unlock+0x175/0x230 [ 341.607013][ T6257] kobject_add_internal+0x2c9/0x9c0 [ 341.612256][ T6257] ? kfree+0x11/0x150 [ 341.616286][ T6257] kobject_init_and_add+0x101/0x170 [ 341.621521][ T6257] ? kobject_create_and_add+0xf0/0xf0 [ 341.626921][ T6257] ? lockdep_init_map_type+0x21e/0x810 [ 341.632408][ T6257] ? lockdep_init_map_type+0x21e/0x810 [ 341.637900][ T6257] gfs2_sys_fs_add+0x1d5/0x450 [ 341.642711][ T6257] ? recover_store+0x170/0x170 [ 341.647507][ T6257] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 341.653275][ T6257] gfs2_fill_super+0x1312/0x2aa0 [ 341.658247][ T6257] ? gfs2_reconfigure+0xf90/0xf90 [ 341.663303][ T6257] ? snprintf+0xbf/0x100 [ 341.667572][ T6257] ? vsprintf+0x30/0x30 [ 341.671777][ T6257] ? wait_for_completion_io_timeout+0x20/0x20 [ 341.677885][ T6257] ? set_blocksize+0x2d8/0x370 [ 341.682673][ T6257] get_tree_bdev+0x43e/0x7d0 [ 341.687408][ T6257] ? gfs2_reconfigure+0xf90/0xf90 [ 341.692459][ T6257] gfs2_get_tree+0x4e/0x270 [ 341.696986][ T6257] vfs_get_tree+0x8d/0x350 [ 341.701431][ T6257] path_mount+0x136e/0x1e70 [ 341.705962][ T6257] ? trace_irq_enable.constprop.0+0xd0/0x100 [ 341.712016][ T6257] ? finish_automount+0xa30/0xa30 [ 341.717070][ T6257] ? putname+0x102/0x140 [ 341.721389][ T6257] __x64_sys_mount+0x283/0x300 [ 341.726202][ T6257] ? copy_mnt_ns+0xb30/0xb30 [ 341.730936][ T6257] ? _raw_spin_unlock_irq+0x2e/0x50 [ 341.736169][ T6257] ? ptrace_notify+0xfe/0x140 [ 341.740896][ T6257] do_syscall_64+0x39/0xb0 [ 341.745338][ T6257] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 341.751279][ T6257] RIP: 0033:0x7f4f6dd11c5a [ 341.755707][ T6257] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 341.775355][ T6257] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 341.783905][ T6257] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 341.791898][ T6257] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 341.799887][ T6257] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 341.807878][ T6257] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 341.815869][ T6257] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 341.823861][ T6257] [ 341.827341][ T6264] FS: 00007f4f6609f6c0(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 341.833389][ T6259] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 341.843130][ T6262] CPU: 1 PID: 6262 Comm: syz-executor676 Tainted: G D 6.5.0-rc1-syzkaller-00006-g3f01e9fed845 #0 [ 341.855727][ T6262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023 [ 341.865819][ T6262] Call Trace: [ 341.869122][ T6262] [ 341.872069][ T6262] dump_stack_lvl+0x136/0x150 [ 341.876795][ T6262] sysfs_warn_dup+0x80/0xa0 [ 341.877673][ T6264] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 341.881315][ T6262] sysfs_create_dir_ns+0x237/0x290 [ 341.888735][ T6257] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 341.892993][ T6262] ? sysfs_create_mount_point+0xb0/0xb0 [ 341.912568][ T6262] ? spin_bug+0x1c0/0x1c0 [ 341.916987][ T6262] ? do_raw_spin_unlock+0x175/0x230 [ 341.918762][ T6264] CR2: 00007f4f6d4c1000 CR3: 000000007988b000 CR4: 00000000003506e0 [ 341.922218][ T6262] kobject_add_internal+0x2c9/0x9c0 [ 341.922258][ T6262] ? kfree+0x11/0x150 [ 341.935665][ T6257] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 341.939389][ T6262] kobject_init_and_add+0x101/0x170 [ 341.939429][ T6262] ? kobject_create_and_add+0xf0/0xf0 [ 341.939463][ T6262] ? lockdep_init_map_type+0x21e/0x810 [ 341.939502][ T6262] ? lockdep_init_map_type+0x21e/0x810 [ 341.964721][ T6264] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 341.967459][ T6262] gfs2_sys_fs_add+0x1d5/0x450 [ 341.967497][ T6262] ? recover_store+0x170/0x170 [ 341.967528][ T6262] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 341.967575][ T6262] gfs2_fill_super+0x1312/0x2aa0 [ 341.967613][ T6262] ? gfs2_reconfigure+0xf90/0xf90 [ 341.967647][ T6262] ? snprintf+0xbf/0x100 [ 341.967684][ T6262] ? vsprintf+0x30/0x30 [ 341.983141][ T6264] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 341.985200][ T6262] ? wait_for_completion_io_timeout+0x20/0x20 [ 342.001064][ T6264] Kernel panic - not syncing: Fatal exception [ 342.005133][ T6262] ? set_blocksize+0x2d8/0x370 [ 342.009313][ T6262] get_tree_bdev+0x43e/0x7d0 [ 342.017310][ T6262] ? gfs2_reconfigure+0xf90/0xf90 [ 342.023399][ T6262] gfs2_get_tree+0x4e/0x270 [ 342.029477][ T6262] vfs_get_tree+0x8d/0x350 [ 342.034250][ T6262] path_mount+0x136e/0x1e70 [ 342.038854][ T6262] ? trace_irq_enable.constprop.0+0xd0/0x100 [ 342.043917][ T6262] ? finish_automount+0xa30/0xa30 [ 342.048440][ T6262] ? putname+0x102/0x140 [ 342.052893][ T6262] __x64_sys_mount+0x283/0x300 [ 342.057412][ T6262] ? copy_mnt_ns+0xb30/0xb30 [ 342.063409][ T6262] ? _raw_spin_unlock_irq+0x2e/0x50 [ 342.068459][ T6262] ? ptrace_notify+0xfe/0x140 [ 342.072729][ T6262] do_syscall_64+0x39/0xb0 [ 342.077518][ T6262] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 342.082146][ T6262] RIP: 0033:0x7f4f6dd11c5a [ 342.087346][ T6262] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 1e 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 342.092038][ T6262] RSP: 002b:00007f4f6d4c00a8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 342.102335][ T6262] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f4f6dd11c5a [ 342.106752][ T6262] RDX: 00000000200124c0 RSI: 0000000020000080 RDI: 00007f4f6d4c00b0 [ 342.126357][ T6262] RBP: 00007f4f6d4c00b0 R08: 00007f4f6d4c00f0 R09: 0000000000012557 [ 342.134771][ T6262] R10: 0000000000010011 R11: 0000000000000282 R12: 00007f4f6d4c00f0 [ 342.142748][ T6262] R13: 0000000000000003 R14: 0000000001000000 R15: 00007fffaa0db528 [ 342.150724][ T6262] [ 342.159009][ T6264] Kernel Offset: disabled [ 342.182696][ T6264] Rebooting in 86400 seconds..