./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3240929942 <...> Warning: Permanently added '10.128.0.28' (ED25519) to the list of known hosts. execve("./syz-executor3240929942", ["./syz-executor3240929942"], 0x7ffec886c750 /* 10 vars */) = 0 brk(NULL) = 0x5555922f9000 brk(0x5555922f9d40) = 0x5555922f9d40 arch_prctl(ARCH_SET_FS, 0x5555922f93c0) = 0 set_tid_address(0x5555922f9690) = 5854 set_robust_list(0x5555922f96a0, 24) = 0 rseq(0x5555922f9ce0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3240929942", 4096) = 28 getrandom("\xa4\xa2\x8b\x51\xcf\xb8\x5d\x59", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555922f9d40 brk(0x55559231ad40) = 0x55559231ad40 brk(0x55559231b000) = 0x55559231b000 mprotect(0x7f6684978000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555922f9690) = 5855 ./strace-static-x86_64: Process 5855 attached [pid 5854] openat(AT_FDCWD, "/sys/kernel/debug/x86/nmi_longest_ns", O_WRONLY|O_CLOEXEC [pid 5855] set_robust_list(0x5555922f96a0, 24 [pid 5854] <... openat resumed>) = 3 [pid 5855] <... set_robust_list resumed>) = 0 [pid 5854] write(3, "10000000000", 11) = 11 [pid 5854] close(3) = 0 [pid 5854] openat(AT_FDCWD, "/proc/sys/kernel/hung_task_check_interval_secs", O_WRONLY|O_CLOEXEC) = 3 [pid 5854] write(3, "20", 2) = 2 [pid 5854] close(3) = 0 [pid 5854] openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_kallsyms", O_WRONLY|O_CLOEXEC) = 3 [pid 5854] write(3, "1", 1) = 1 [pid 5854] close(3) = 0 [pid 5854] openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_harden", O_WRONLY|O_CLOEXEC) = 3 [pid 5854] write(3, "0", 1) = 1 [pid 5854] close(3) = 0 [pid 5854] openat(AT_FDCWD, "/proc/sys/kernel/kptr_restrict", O_WRONLY|O_CLOEXEC) = 3 [pid 5854] write(3, "0", 1) = 1 [pid 5854] close(3) = 0 [pid 5854] openat(AT_FDCWD, "/proc/sys/kernel/softlockup_all_cpu_backtrace", O_WRONLY|O_CLOEXEC) = 3 [pid 5854] write(3, "1", 1) = 1 [pid 5854] close(3) = 0 [pid 5854] openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3 [pid 5854] write(3, "100", 3) = 3 [pid 5854] close(3) = 0 [pid 5854] openat(AT_FDCWD, "/proc/sys/vm/oom_dump_tasks", O_WRONLY|O_CLOEXEC) = 3 [pid 5854] write(3, "0", 1) = 1 [pid 5854] close(3) = 0 [pid 5854] openat(AT_FDCWD, "/proc/sys/debug/exception-trace", O_WRONLY|O_CLOEXEC) = 3 [pid 5854] write(3, "0", 1) = 1 [pid 5854] close(3) = 0 [pid 5854] openat(AT_FDCWD, "/proc/sys/kernel/printk", O_WRONLY|O_CLOEXEC) = 3 [pid 5854] write(3, "7 4 1 3", 7) = 7 [pid 5854] close(3) = 0 [pid 5854] openat(AT_FDCWD, "/proc/sys/kernel/keys/gc_delay", O_WRONLY|O_CLOEXEC) = 3 [pid 5854] write(3, "1", 1) = 1 [pid 5854] close(3) = 0 [pid 5854] openat(AT_FDCWD, "/proc/sys/vm/oom_kill_allocating_task", O_WRONLY|O_CLOEXEC) = 3 [pid 5854] write(3, "1", 1) = 1 [pid 5854] close(3) = 0 [pid 5854] openat(AT_FDCWD, "/proc/sys/kernel/ctrl-alt-del", O_WRONLY|O_CLOEXEC) = 3 [pid 5854] write(3, "0", 1) = 1 [pid 5854] close(3) = 0 [pid 5854] openat(AT_FDCWD, "/proc/sys/kernel/cad_pid", O_WRONLY|O_CLOEXEC) = 3 [pid 5854] write(3, "5855", 4) = 4 [pid 5854] close(3) = 0 [pid 5854] kill(5855, SIGKILL) = 0 [pid 5855] +++ killed by SIGKILL +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5855, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5856 attached , child_tidptr=0x5555922f9690) = 5856 [pid 5856] set_robust_list(0x5555922f96a0, 24) = 0 [pid 5854] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5856] mkdir("./syzkaller.1Quesm", 0700./strace-static-x86_64: Process 5857 attached [pid 5854] <... clone resumed>, child_tidptr=0x5555922f9690) = 5857 [pid 5857] set_robust_list(0x5555922f96a0, 24 [pid 5854] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5857] <... set_robust_list resumed>) = 0 [pid 5856] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 5858 attached [pid 5854] <... clone resumed>, child_tidptr=0x5555922f9690) = 5858 [pid 5858] set_robust_list(0x5555922f96a0, 24 [pid 5856] chmod("./syzkaller.1Quesm", 0777 [pid 5857] mkdir("./syzkaller.f3X3hs", 0700 [pid 5854] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5858] <... set_robust_list resumed>) = 0 [pid 5857] <... mkdir resumed>) = 0 [pid 5856] <... chmod resumed>) = 0 [pid 5857] chmod("./syzkaller.f3X3hs", 0777./strace-static-x86_64: Process 5859 attached [pid 5858] mkdir("./syzkaller.JGJA2j", 0700 [pid 5856] chdir("./syzkaller.1Quesm" [pid 5854] <... clone resumed>, child_tidptr=0x5555922f9690) = 5859 [pid 5859] set_robust_list(0x5555922f96a0, 24 [pid 5857] <... chmod resumed>) = 0 [pid 5856] <... chdir resumed>) = 0 [pid 5854] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5859] <... set_robust_list resumed>) = 0 [pid 5859] getrandom( [pid 5856] mkdir("./0", 0777 [pid 5857] chdir("./syzkaller.f3X3hs") = 0 [pid 5856] <... mkdir resumed>) = 0 [pid 5857] mkdir("./0", 0777 [pid 5859] <... getrandom resumed>"\x64\x85\xe4\x34\x6c\x3d\x1d\x51", 8, GRND_NONBLOCK) = 8 [pid 5858] <... mkdir resumed>) = 0 [pid 5857] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 5860 attached [pid 5859] mkdir("./syzkaller.whtO5Q", 0700 [pid 5854] <... clone resumed>, child_tidptr=0x5555922f9690) = 5860 [pid 5860] set_robust_list(0x5555922f96a0, 24 [pid 5859] <... mkdir resumed>) = 0 [pid 5858] chmod("./syzkaller.JGJA2j", 0777 [pid 5857] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5856] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5860] <... set_robust_list resumed>) = 0 [pid 5859] chmod("./syzkaller.whtO5Q", 0777 [pid 5860] mkdir("./syzkaller.OHNYeZ", 0700 [pid 5858] <... chmod resumed>) = 0 [pid 5857] <... openat resumed>) = 3 [pid 5856] <... openat resumed>) = 3 [pid 5860] <... mkdir resumed>) = 0 [pid 5859] <... chmod resumed>) = 0 [pid 5858] chdir("./syzkaller.JGJA2j" [pid 5857] ioctl(3, LOOP_CLR_FD [pid 5856] ioctl(3, LOOP_CLR_FD [pid 5857] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5858] <... chdir resumed>) = 0 [pid 5856] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5860] chmod("./syzkaller.OHNYeZ", 0777 [pid 5859] chdir("./syzkaller.whtO5Q" [pid 5858] mkdir("./0", 0777 [pid 5857] close(3 [pid 5856] close(3 [pid 5859] <... chdir resumed>) = 0 [pid 5859] mkdir("./0", 0777 [pid 5860] <... chmod resumed>) = 0 [pid 5859] <... mkdir resumed>) = 0 [pid 5858] <... mkdir resumed>) = 0 [pid 5857] <... close resumed>) = 0 [pid 5856] <... close resumed>) = 0 [pid 5860] chdir("./syzkaller.OHNYeZ") = 0 [pid 5860] mkdir("./0", 0777 [pid 5857] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5861 attached [pid 5860] <... mkdir resumed>) = 0 [pid 5859] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5858] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5859] <... openat resumed>) = 3 [pid 5858] <... openat resumed>) = 3 [pid 5856] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5861] set_robust_list(0x5555922f96a0, 24./strace-static-x86_64: Process 5862 attached ) = 0 [pid 5860] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5859] ioctl(3, LOOP_CLR_FD [pid 5861] chdir("./0" [pid 5860] <... openat resumed>) = 3 [pid 5858] ioctl(3, LOOP_CLR_FD [pid 5859] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5861] <... chdir resumed>) = 0 [pid 5861] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5859] close(3 [pid 5857] <... clone resumed>, child_tidptr=0x5555922f9690) = 5861 [pid 5862] set_robust_list(0x5555922f96a0, 24 [pid 5861] <... prctl resumed>) = 0 [pid 5859] <... close resumed>) = 0 [pid 5858] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5860] ioctl(3, LOOP_CLR_FD [pid 5858] close(3 [pid 5860] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5858] <... close resumed>) = 0 [pid 5856] <... clone resumed>, child_tidptr=0x5555922f9690) = 5862 [pid 5860] close(3 [pid 5858] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5863 attached [pid 5860] <... close resumed>) = 0 [pid 5860] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5863] set_robust_list(0x5555922f96a0, 24 [pid 5862] <... set_robust_list resumed>) = 0 [pid 5861] setpgid(0, 0 [pid 5859] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5865 attached ./strace-static-x86_64: Process 5866 attached [pid 5863] <... set_robust_list resumed>) = 0 [pid 5862] chdir("./0" [pid 5861] <... setpgid resumed>) = 0 [pid 5858] <... clone resumed>, child_tidptr=0x5555922f9690) = 5863 [pid 5865] set_robust_list(0x5555922f96a0, 24 [pid 5866] set_robust_list(0x5555922f96a0, 24 [pid 5863] chdir("./0" [pid 5862] <... chdir resumed>) = 0 [pid 5865] <... set_robust_list resumed>) = 0 [pid 5866] <... set_robust_list resumed>) = 0 [pid 5861] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5862] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5859] <... clone resumed>, child_tidptr=0x5555922f9690) = 5866 [pid 5865] chdir("./0" [pid 5866] chdir("./0" [pid 5862] <... prctl resumed>) = 0 [pid 5861] <... openat resumed>) = 3 [pid 5865] <... chdir resumed>) = 0 [pid 5866] <... chdir resumed>) = 0 [pid 5863] <... chdir resumed>) = 0 [pid 5862] setpgid(0, 0 [pid 5861] write(3, "1000", 4 [pid 5860] <... clone resumed>, child_tidptr=0x5555922f9690) = 5865 [pid 5865] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5866] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5863] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5862] <... setpgid resumed>) = 0 [pid 5861] <... write resumed>) = 4 [pid 5865] <... prctl resumed>) = 0 [pid 5866] <... prctl resumed>) = 0 [pid 5863] <... prctl resumed>) = 0 [pid 5862] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5861] close(3 [pid 5866] setpgid(0, 0 [pid 5863] setpgid(0, 0 [pid 5861] <... close resumed>) = 0 [pid 5866] <... setpgid resumed>) = 0 [pid 5865] setpgid(0, 0 [pid 5863] <... setpgid resumed>) = 0 [pid 5861] symlink("/dev/binderfs", "./binderfs" [pid 5866] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5863] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5862] <... openat resumed>) = 3 [pid 5861] <... symlink resumed>) = 0 [pid 5865] <... setpgid resumed>) = 0 [pid 5866] <... openat resumed>) = 3 [pid 5862] write(3, "1000", 4 [pid 5861] write(1, "executing program\n", 18 [pid 5865] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5866] write(3, "1000", 4 [pid 5863] write(3, "1000", 4executing program [pid 5862] <... write resumed>) = 4 [pid 5865] <... openat resumed>) = 3 [pid 5866] <... write resumed>) = 4 [pid 5863] <... write resumed>) = 4 [pid 5862] close(3 [pid 5861] <... write resumed>) = 18 [pid 5865] write(3, "1000", 4 [pid 5866] close(3 [pid 5863] close(3 [pid 5862] <... close resumed>) = 0 [pid 5861] futex(0x7f668497e6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5865] <... write resumed>) = 4 [pid 5866] <... close resumed>) = 0 [pid 5863] <... close resumed>) = 0 [pid 5862] symlink("/dev/binderfs", "./binderfs" [pid 5861] <... futex resumed>) = 0 [pid 5865] close(3 [pid 5866] symlink("/dev/binderfs", "./binderfs" [pid 5863] symlink("/dev/binderfs", "./binderfs" executing program [pid 5862] <... symlink resumed>) = 0 [pid 5861] rt_sigaction(SIGRT_1, {sa_handler=0x7f6684913220, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f66849043d0}, [pid 5865] <... close resumed>) = 0 [pid 5866] <... symlink resumed>) = 0 [pid 5863] <... symlink resumed>) = 0 [pid 5865] symlink("/dev/binderfs", "./binderfs" [pid 5863] write(1, "executing program\n", 18) = 18 [pid 5863] futex(0x7f668497e6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5863] rt_sigaction(SIGRT_1, {sa_handler=0x7f6684913220, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f66849043d0}, NULL, 8) = 0 [pid 5863] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5863] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f6684883000 executing program executing program [pid 5865] <... symlink resumed>) = 0 [pid 5866] write(1, "executing program\n", 18 [pid 5863] mprotect(0x7f6684884000, 131072, PROT_READ|PROT_WRITE [pid 5862] write(1, "executing program\n", 18 [pid 5861] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5866] <... write resumed>) = 18 [pid 5862] <... write resumed>) = 18 [pid 5861] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5862] futex(0x7f668497e6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5861] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5861] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5862] <... futex resumed>) = 0 [pid 5863] <... mprotect resumed>) = 0 [pid 5862] rt_sigaction(SIGRT_1, {sa_handler=0x7f6684913220, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f66849043d0}, [pid 5861] <... mmap resumed>) = 0x7f6684883000 [pid 5865] write(1, "executing program\n", 18executing program [pid 5866] futex(0x7f668497e6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5863] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5862] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5861] mprotect(0x7f6684884000, 131072, PROT_READ|PROT_WRITE [pid 5865] <... write resumed>) = 18 [pid 5866] <... futex resumed>) = 0 [pid 5862] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5861] <... mprotect resumed>) = 0 [pid 5865] futex(0x7f668497e6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5866] rt_sigaction(SIGRT_1, {sa_handler=0x7f6684913220, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f66849043d0}, [pid 5862] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5865] <... futex resumed>) = 0 [pid 5866] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5863] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5862] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5861] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5865] rt_sigaction(SIGRT_1, {sa_handler=0x7f6684913220, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f66849043d0}, [pid 5866] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5863] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f66848a3990, parent_tid=0x7f66848a3990, exit_signal=0, stack=0x7f6684883000, stack_size=0x20300, tls=0x7f66848a36c0} [pid 5862] <... mmap resumed>) = 0x7f6684883000 [pid 5861] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5865] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5866] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5865] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5862] mprotect(0x7f6684884000, 131072, PROT_READ|PROT_WRITE [pid 5866] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5865] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5861] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f66848a3990, parent_tid=0x7f66848a3990, exit_signal=0, stack=0x7f6684883000, stack_size=0x20300, tls=0x7f66848a36c0} [pid 5862] <... mprotect resumed>) = 0 [pid 5865] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5866] <... mmap resumed>) = 0x7f6684883000 ./strace-static-x86_64: Process 5870 attached ./strace-static-x86_64: Process 5869 attached [pid 5865] <... mmap resumed>) = 0x7f6684883000 [pid 5866] mprotect(0x7f6684884000, 131072, PROT_READ|PROT_WRITE [pid 5862] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5870] rseq(0x7f66848a3fe0, 0x20, 0, 0x53053053 [pid 5869] rseq(0x7f66848a3fe0, 0x20, 0, 0x53053053 [pid 5865] mprotect(0x7f6684884000, 131072, PROT_READ|PROT_WRITE [pid 5866] <... mprotect resumed>) = 0 [pid 5863] <... clone3 resumed> => {parent_tid=[5870]}, 88) = 5870 [pid 5862] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5861] <... clone3 resumed> => {parent_tid=[5869]}, 88) = 5869 [pid 5870] <... rseq resumed>) = 0 [pid 5870] set_robust_list(0x7f66848a39a0, 24 [pid 5863] rt_sigprocmask(SIG_SETMASK, [], [pid 5870] <... set_robust_list resumed>) = 0 [pid 5869] <... rseq resumed>) = 0 [pid 5866] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5863] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5870] rt_sigprocmask(SIG_SETMASK, [], [pid 5869] set_robust_list(0x7f66848a39a0, 24 [pid 5863] futex(0x7f668497e6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5870] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5869] <... set_robust_list resumed>) = 0 [pid 5865] <... mprotect resumed>) = 0 [pid 5866] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5863] <... futex resumed>) = 0 [pid 5870] memfd_create("syzkaller", 0 [pid 5869] rt_sigprocmask(SIG_SETMASK, [], [pid 5865] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5866] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f66848a3990, parent_tid=0x7f66848a3990, exit_signal=0, stack=0x7f6684883000, stack_size=0x20300, tls=0x7f66848a36c0} [pid 5863] futex(0x7f668497e6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5862] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f66848a3990, parent_tid=0x7f66848a3990, exit_signal=0, stack=0x7f6684883000, stack_size=0x20300, tls=0x7f66848a36c0} [pid 5861] rt_sigprocmask(SIG_SETMASK, [], [pid 5870] <... memfd_create resumed>) = 3 [pid 5869] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5861] <... rt_sigprocmask resumed>NULL, 8) = 0 ./strace-static-x86_64: Process 5872 attached ./strace-static-x86_64: Process 5871 attached [pid 5870] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5869] futex(0x7f668497e6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5865] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5866] <... clone3 resumed> => {parent_tid=[5871]}, 88) = 5871 [pid 5861] futex(0x7f668497e6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5872] rseq(0x7f66848a3fe0, 0x20, 0, 0x53053053 [pid 5871] rseq(0x7f66848a3fe0, 0x20, 0, 0x53053053 [pid 5870] <... mmap resumed>) = 0x7f667c400000 [pid 5869] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5865] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f66848a3990, parent_tid=0x7f66848a3990, exit_signal=0, stack=0x7f6684883000, stack_size=0x20300, tls=0x7f66848a36c0} [pid 5866] rt_sigprocmask(SIG_SETMASK, [], [pid 5862] <... clone3 resumed> => {parent_tid=[5872]}, 88) = 5872 [pid 5861] <... futex resumed>) = 0 ./strace-static-x86_64: Process 5873 attached [pid 5872] <... rseq resumed>) = 0 [pid 5871] <... rseq resumed>) = 0 [pid 5869] memfd_create("syzkaller", 0 [pid 5866] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5862] rt_sigprocmask(SIG_SETMASK, [], [pid 5861] futex(0x7f668497e6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5873] rseq(0x7f66848a3fe0, 0x20, 0, 0x53053053 [pid 5872] set_robust_list(0x7f66848a39a0, 24 [pid 5871] set_robust_list(0x7f66848a39a0, 24 [pid 5870] write(3, "\xb5\x84\x31\x7b\xb6\x84\x31\x7b\xb7\x84\x31\x7b\xb8\x84\x31\x7b\xb9\x84\x31\x7b\xba\x84\x31\x7b\xbb\x84\x31\x7b\xbc\x84\x31\x7b\xbd\x84\x31\x7b\xbe\x84\x31\x7b\xbf\x84\x31\x7b\xc0\x84\x31\x7b\xc1\x84\x31\x7b\xc2\x84\x31\x7b\xc3\x84\x31\x7b\xc4\x84\x31\x7b\xc5\x84\x31\x7b\xc6\x84\x31\x7b\xc7\x84\x31\x7b\xc8\x84\x31\x7b\xc9\x84\x31\x7b\xca\x84\x31\x7b\xcb\x84\x31\x7b\xcc\x84\x31\x7b\xcd\x84\x31\x7b"..., 65536 [pid 5869] <... memfd_create resumed>) = 3 [pid 5865] <... clone3 resumed> => {parent_tid=[5873]}, 88) = 5873 [pid 5866] futex(0x7f668497e6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5862] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5873] <... rseq resumed>) = 0 [pid 5872] <... set_robust_list resumed>) = 0 [pid 5871] <... set_robust_list resumed>) = 0 [pid 5870] <... write resumed>) = 65536 [pid 5869] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5865] rt_sigprocmask(SIG_SETMASK, [], [pid 5866] <... futex resumed>) = 0 [pid 5862] futex(0x7f668497e6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5873] set_robust_list(0x7f66848a39a0, 24 [pid 5872] rt_sigprocmask(SIG_SETMASK, [], [pid 5871] rt_sigprocmask(SIG_SETMASK, [], [pid 5869] <... mmap resumed>) = 0x7f667c400000 [pid 5866] futex(0x7f668497e6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5862] <... futex resumed>) = 0 [pid 5873] <... set_robust_list resumed>) = 0 [pid 5872] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5871] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5870] munmap(0x7f667c400000, 138412032 [pid 5865] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5862] futex(0x7f668497e6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5872] memfd_create("syzkaller", 0 [pid 5871] memfd_create("syzkaller", 0 [pid 5870] <... munmap resumed>) = 0 [pid 5865] futex(0x7f668497e6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5872] <... memfd_create resumed>) = 3 [pid 5872] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5869] write(3, "\xb5\x84\x31\x7b\xb6\x84\x31\x7b\xb7\x84\x31\x7b\xb8\x84\x31\x7b\xb9\x84\x31\x7b\xba\x84\x31\x7b\xbb\x84\x31\x7b\xbc\x84\x31\x7b\xbd\x84\x31\x7b\xbe\x84\x31\x7b\xbf\x84\x31\x7b\xc0\x84\x31\x7b\xc1\x84\x31\x7b\xc2\x84\x31\x7b\xc3\x84\x31\x7b\xc4\x84\x31\x7b\xc5\x84\x31\x7b\xc6\x84\x31\x7b\xc7\x84\x31\x7b\xc8\x84\x31\x7b\xc9\x84\x31\x7b\xca\x84\x31\x7b\xcb\x84\x31\x7b\xcc\x84\x31\x7b\xcd\x84\x31\x7b"..., 65536 [pid 5873] rt_sigprocmask(SIG_SETMASK, [], [pid 5865] <... futex resumed>) = 0 [pid 5872] <... mmap resumed>) = 0x7f667c400000 [pid 5873] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5865] futex(0x7f668497e6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5871] <... memfd_create resumed>) = 3 [pid 5871] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5873] memfd_create("syzkaller", 0 [pid 5870] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5871] <... mmap resumed>) = 0x7f667c400000 [pid 5873] <... memfd_create resumed>) = 3 [pid 5871] write(3, "\xb5\x84\x31\x7b\xb6\x84\x31\x7b\xb7\x84\x31\x7b\xb8\x84\x31\x7b\xb9\x84\x31\x7b\xba\x84\x31\x7b\xbb\x84\x31\x7b\xbc\x84\x31\x7b\xbd\x84\x31\x7b\xbe\x84\x31\x7b\xbf\x84\x31\x7b\xc0\x84\x31\x7b\xc1\x84\x31\x7b\xc2\x84\x31\x7b\xc3\x84\x31\x7b\xc4\x84\x31\x7b\xc5\x84\x31\x7b\xc6\x84\x31\x7b\xc7\x84\x31\x7b\xc8\x84\x31\x7b\xc9\x84\x31\x7b\xca\x84\x31\x7b\xcb\x84\x31\x7b\xcc\x84\x31\x7b\xcd\x84\x31\x7b"..., 65536 [pid 5870] <... openat resumed>) = 4 [pid 5869] <... write resumed>) = 65536 [pid 5873] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5870] ioctl(4, LOOP_SET_FD, 3 [pid 5873] <... mmap resumed>) = 0x7f667c400000 [pid 5871] <... write resumed>) = 65536 [pid 5873] write(3, "\xb5\x84\x31\x7b\xb6\x84\x31\x7b\xb7\x84\x31\x7b\xb8\x84\x31\x7b\xb9\x84\x31\x7b\xba\x84\x31\x7b\xbb\x84\x31\x7b\xbc\x84\x31\x7b\xbd\x84\x31\x7b\xbe\x84\x31\x7b\xbf\x84\x31\x7b\xc0\x84\x31\x7b\xc1\x84\x31\x7b\xc2\x84\x31\x7b\xc3\x84\x31\x7b\xc4\x84\x31\x7b\xc5\x84\x31\x7b\xc6\x84\x31\x7b\xc7\x84\x31\x7b\xc8\x84\x31\x7b\xc9\x84\x31\x7b\xca\x84\x31\x7b\xcb\x84\x31\x7b\xcc\x84\x31\x7b\xcd\x84\x31\x7b"..., 65536 [pid 5872] write(3, "\xb5\x84\x31\x7b\xb6\x84\x31\x7b\xb7\x84\x31\x7b\xb8\x84\x31\x7b\xb9\x84\x31\x7b\xba\x84\x31\x7b\xbb\x84\x31\x7b\xbc\x84\x31\x7b\xbd\x84\x31\x7b\xbe\x84\x31\x7b\xbf\x84\x31\x7b\xc0\x84\x31\x7b\xc1\x84\x31\x7b\xc2\x84\x31\x7b\xc3\x84\x31\x7b\xc4\x84\x31\x7b\xc5\x84\x31\x7b\xc6\x84\x31\x7b\xc7\x84\x31\x7b\xc8\x84\x31\x7b\xc9\x84\x31\x7b\xca\x84\x31\x7b\xcb\x84\x31\x7b\xcc\x84\x31\x7b\xcd\x84\x31\x7b"..., 65536 [pid 5870] <... ioctl resumed>) = 0 [pid 5869] munmap(0x7f667c400000, 138412032 [pid 5873] <... write resumed>) = 65536 [pid 5872] <... write resumed>) = 65536 [pid 5871] munmap(0x7f667c400000, 138412032 [pid 5870] close(3) = 0 [pid 5869] <... munmap resumed>) = 0 [pid 5873] munmap(0x7f667c400000, 138412032 [pid 5872] munmap(0x7f667c400000, 138412032 [pid 5871] <... munmap resumed>) = 0 [pid 5870] close(4 [pid 5873] <... munmap resumed>) = 0 [pid 5871] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5870] <... close resumed>) = 0 [pid 5872] <... munmap resumed>) = 0 [pid 5870] mkdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", 0777 [pid 5871] <... openat resumed>) = 4 [pid 5870] <... mkdir resumed>) = 0 [pid 5869] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5873] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5872] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5871] ioctl(4, LOOP_SET_FD, 3 [pid 5873] <... openat resumed>) = 4 [pid 5869] <... openat resumed>) = 4 [pid 5872] <... openat resumed>) = 4 [pid 5870] mount("/dev/loop2", "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", "sysv", MS_SILENT|MS_RELATIME|MS_STRICTATIME, "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f" [pid 5873] ioctl(4, LOOP_SET_FD, 3 [pid 5872] ioctl(4, LOOP_SET_FD, 3 [pid 5871] <... ioctl resumed>) = 0 [pid 5869] ioctl(4, LOOP_SET_FD, 3 [pid 5870] <... mount resumed>) = 0 [pid 5873] <... ioctl resumed>) = 0 [pid 5871] close(3 [pid 5869] <... ioctl resumed>) = 0 [pid 5873] close(3 [pid 5871] <... close resumed>) = 0 [pid 5869] close(3 [pid 5872] <... ioctl resumed>) = 0 [pid 5870] openat(AT_FDCWD, "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", O_RDONLY|O_DIRECTORY [pid 5871] close(4 [pid 5870] <... openat resumed>) = 3 [pid 5869] <... close resumed>) = 0 [pid 5872] close(3 [pid 5873] <... close resumed>) = 0 [pid 5871] <... close resumed>) = 0 [pid 5869] close(4 [pid 5870] chdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f" [pid 5872] <... close resumed>) = 0 [pid 5869] <... close resumed>) = 0 [pid 5873] close(4 [pid 5871] mkdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", 0777 [pid 5870] <... chdir resumed>) = 0 [pid 5870] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5873] <... close resumed>) = 0 [pid 5872] close(4 [pid 5871] <... mkdir resumed>) = 0 [pid 5870] futex(0x7f668497e6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5869] mkdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", 0777 [pid 5873] mkdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", 0777 [pid 5872] <... close resumed>) = 0 [pid 5871] mount("/dev/loop3", "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", "sysv", MS_SILENT|MS_RELATIME|MS_STRICTATIME, "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f" [pid 5870] <... futex resumed>) = 1 [pid 5869] <... mkdir resumed>) = 0 [pid 5863] <... futex resumed>) = 0 [pid 5870] futex(0x7f668497e6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5863] futex(0x7f668497e6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5870] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5863] <... futex resumed>) = 0 [pid 5870] open(".", O_RDONLY [pid 5863] futex(0x7f668497e6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5873] <... mkdir resumed>) = 0 [pid 5872] mkdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", 0777 [pid 5870] <... open resumed>) = 4 [pid 5869] mount("/dev/loop1", "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", "sysv", MS_SILENT|MS_RELATIME|MS_STRICTATIME, "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f" [pid 5872] <... mkdir resumed>) = 0 [pid 5871] <... mount resumed>) = 0 [pid 5870] futex(0x7f668497e6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5871] openat(AT_FDCWD, "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", O_RDONLY|O_DIRECTORY [pid 5870] <... futex resumed>) = 1 [pid 5863] <... futex resumed>) = 0 [pid 5871] <... openat resumed>) = 3 [pid 5870] rename("./file1", "./file0/file0" [pid 5863] futex(0x7f668497e6c8, FUTEX_WAKE_PRIVATE, 1000000 [ 165.889774][ T5870] loop2: detected capacity change from 0 to 128 [ 165.906696][ T5871] loop3: detected capacity change from 0 to 128 [ 165.919817][ T5873] loop4: detected capacity change from 0 to 128 [ 165.926814][ T5869] loop1: detected capacity change from 0 to 128 [ 165.933713][ T5872] loop0: detected capacity change from 0 to 128 [pid 5873] mount("/dev/loop4", "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", "sysv", MS_SILENT|MS_RELATIME|MS_STRICTATIME, "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f" [pid 5872] mount("/dev/loop0", "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", "sysv", MS_SILENT|MS_RELATIME|MS_STRICTATIME, "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f" [pid 5863] <... futex resumed>) = 0 [pid 5871] chdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f" [pid 5863] futex(0x7f668497e6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5871] <... chdir resumed>) = 0 [pid 5871] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5873] <... mount resumed>) = 0 [pid 5871] futex(0x7f668497e6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5869] <... mount resumed>) = 0 [pid 5873] openat(AT_FDCWD, "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", O_RDONLY|O_DIRECTORY) = 3 [pid 5873] chdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f") = 0 [pid 5869] openat(AT_FDCWD, "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", O_RDONLY|O_DIRECTORY [pid 5873] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5871] <... futex resumed>) = 1 [pid 5869] <... openat resumed>) = 3 [pid 5866] <... futex resumed>) = 0 [pid 5871] futex(0x7f668497e6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5873] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5866] futex(0x7f668497e6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5871] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5866] <... futex resumed>) = 0 [pid 5869] chdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f" [pid 5873] futex(0x7f668497e6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5869] <... chdir resumed>) = 0 [pid 5866] futex(0x7f668497e6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5873] <... futex resumed>) = 1 [pid 5869] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5865] <... futex resumed>) = 0 [pid 5873] futex(0x7f668497e6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5872] <... mount resumed>) = 0 [pid 5869] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5865] futex(0x7f668497e6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5872] openat(AT_FDCWD, "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", O_RDONLY|O_DIRECTORY [pid 5869] futex(0x7f668497e6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5873] <... futex resumed>) = 0 [pid 5865] <... futex resumed>) = 1 [pid 5873] open(".", O_RDONLY [pid 5872] <... openat resumed>) = 3 [pid 5869] <... futex resumed>) = 1 [pid 5865] futex(0x7f668497e6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5861] <... futex resumed>) = 0 [pid 5873] <... open resumed>) = 4 [pid 5872] chdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f" [pid 5869] futex(0x7f668497e6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5861] futex(0x7f668497e6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5873] futex(0x7f668497e6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5872] <... chdir resumed>) = 0 [pid 5869] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5861] <... futex resumed>) = 0 [pid 5873] <... futex resumed>) = 0 [pid 5872] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5869] open(".", O_RDONLY [pid 5861] futex(0x7f668497e6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5873] futex(0x7f668497e6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5865] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5869] <... open resumed>) = 4 [pid 5872] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5869] futex(0x7f668497e6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5872] futex(0x7f668497e6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5871] open(".", O_RDONLY) = 4 [pid 5871] futex(0x7f668497e6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5866] <... futex resumed>) = 0 [pid 5871] futex(0x7f668497e6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5866] futex(0x7f668497e6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5871] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5866] <... futex resumed>) = 0 [pid 5871] rename("./file1", "./file0/file0" [ 165.955997][ T5870] syz-executor324: attempt to access beyond end of device [ 165.955997][ T5870] loop2: rw=0, sector=6491536, nr_sectors = 2 limit=128 [ 165.973007][ T5870] Buffer I/O error on dev loop2, logical block 3245768, async page read [ 165.989008][ T5871] syz-executor324: attempt to access beyond end of device [ 165.989008][ T5871] loop3: rw=0, sector=6491536, nr_sectors = 2 limit=128 [pid 5866] futex(0x7f668497e6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5872] <... futex resumed>) = 1 [pid 5869] <... futex resumed>) = 1 [pid 5865] futex(0x7f668497e6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5862] <... futex resumed>) = 0 [pid 5861] <... futex resumed>) = 0 [pid 5873] <... futex resumed>) = 0 [pid 5872] futex(0x7f668497e6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5869] futex(0x7f668497e6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5865] <... futex resumed>) = 1 [pid 5862] futex(0x7f668497e6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5861] futex(0x7f668497e6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5873] rename("./file1", "./file0/file0" [pid 5872] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5869] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5865] futex(0x7f668497e6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5862] <... futex resumed>) = 0 [pid 5861] <... futex resumed>) = 0 [pid 5872] open(".", O_RDONLY [pid 5869] rename("./file1", "./file0/file0" [pid 5862] futex(0x7f668497e6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5861] futex(0x7f668497e6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5872] <... open resumed>) = 4 [pid 5863] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5863] futex(0x7f668497e6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5863] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f6684862000 [pid 5863] mprotect(0x7f6684863000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5863] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5863] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f6684882990, parent_tid=0x7f6684882990, exit_signal=0, stack=0x7f6684862000, stack_size=0x20300, tls=0x7f66848826c0} => {parent_tid=[5874]}, 88) = 5874 [pid 5863] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5863] futex(0x7f668497e6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5863] futex(0x7f668497e6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5872] futex(0x7f668497e6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5865] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5866] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5865] futex(0x7f668497e6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5872] <... futex resumed>) = 1 [pid 5872] futex(0x7f668497e6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5865] <... futex resumed>) = 0 ./strace-static-x86_64: Process 5874 attached [pid 5865] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5866] futex(0x7f668497e6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5874] rseq(0x7f6684882fe0, 0x20, 0, 0x53053053 [pid 5865] <... mmap resumed>) = 0x7f6684862000 [pid 5866] <... futex resumed>) = 0 [pid 5862] <... futex resumed>) = 0 [pid 5874] <... rseq resumed>) = 0 [pid 5866] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5874] set_robust_list(0x7f66848829a0, 24 [pid 5865] mprotect(0x7f6684863000, 131072, PROT_READ|PROT_WRITE [pid 5866] <... mmap resumed>) = 0x7f6684862000 [pid 5862] futex(0x7f668497e6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5874] <... set_robust_list resumed>) = 0 [pid 5866] mprotect(0x7f6684863000, 131072, PROT_READ|PROT_WRITE [pid 5872] <... futex resumed>) = 0 [pid 5862] <... futex resumed>) = 1 [ 166.005436][ T5873] syz-executor324: attempt to access beyond end of device [ 166.005436][ T5873] loop4: rw=0, sector=6491536, nr_sectors = 2 limit=128 [ 166.015118][ T5870] syz-executor324: attempt to access beyond end of device [ 166.015118][ T5870] loop2: rw=0, sector=17666806, nr_sectors = 2 limit=128 [ 166.020919][ T5869] syz-executor324: attempt to access beyond end of device [ 166.020919][ T5869] loop1: rw=0, sector=6491536, nr_sectors = 2 limit=128 [ 166.040907][ T5871] Buffer I/O error on dev loop3, logical block 3245768, async page read [pid 5872] rename("./file1", "./file0/file0" [pid 5865] <... mprotect resumed>) = 0 [pid 5862] futex(0x7f668497e6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5874] rt_sigprocmask(SIG_SETMASK, [], [pid 5866] <... mprotect resumed>) = 0 [pid 5874] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5866] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5874] fdatasync(4 [pid 5866] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5866] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f6684882990, parent_tid=0x7f6684882990, exit_signal=0, stack=0x7f6684862000, stack_size=0x20300, tls=0x7f66848826c0} => {parent_tid=[5876]}, 88) = 5876 [pid 5866] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 ./strace-static-x86_64: Process 5876 attached [pid 5866] futex(0x7f668497e6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5866] futex(0x7f668497e6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5876] rseq(0x7f6684882fe0, 0x20, 0, 0x53053053) = 0 [pid 5876] set_robust_list(0x7f66848829a0, 24) = 0 [pid 5876] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5876] fdatasync(4 [pid 5865] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5861] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 166.062840][ T5872] syz-executor324: attempt to access beyond end of device [ 166.062840][ T5872] loop0: rw=0, sector=6491536, nr_sectors = 2 limit=128 [ 166.075336][ T5870] Buffer I/O error on dev loop2, logical block 8833403, async page read [ 166.078855][ T5873] Buffer I/O error on dev loop4, logical block 3245768, async page read [ 166.088401][ T5871] syz-executor324: attempt to access beyond end of device [ 166.088401][ T5871] loop3: rw=0, sector=17666806, nr_sectors = 2 limit=128 [pid 5865] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5863] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5861] futex(0x7f668497e6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5865] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f6684882990, parent_tid=0x7f6684882990, exit_signal=0, stack=0x7f6684862000, stack_size=0x20300, tls=0x7f66848826c0} [pid 5866] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5862] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5861] <... futex resumed>) = 0 [pid 5862] futex(0x7f668497e6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5861] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0./strace-static-x86_64: Process 5877 attached [pid 5877] rseq(0x7f6684882fe0, 0x20, 0, 0x53053053) = 0 [pid 5877] set_robust_list(0x7f66848829a0, 24) = 0 [ 166.095735][ T5872] Buffer I/O error on dev loop0, logical block 3245768, async page read [ 166.114153][ T5870] syz-executor324: attempt to access beyond end of device [ 166.114153][ T5870] loop2: rw=0, sector=26539618, nr_sectors = 2 limit=128 [ 166.117601][ T5869] Buffer I/O error on dev loop1, logical block 3245768, async page read [ 166.132936][ T5871] Buffer I/O error on dev loop3, logical block 8833403, async page read [ 166.142920][ T5873] syz-executor324: attempt to access beyond end of device [ 166.142920][ T5873] loop4: rw=0, sector=17666806, nr_sectors = 2 limit=128 [pid 5877] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5865] <... clone3 resumed> => {parent_tid=[5877]}, 88) = 5877 [pid 5862] <... futex resumed>) = 0 [pid 5861] <... mmap resumed>) = 0x7f6684862000 [pid 5877] futex(0x7f668497e6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5865] rt_sigprocmask(SIG_SETMASK, [], [pid 5862] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5861] mprotect(0x7f6684863000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5865] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5862] <... mmap resumed>) = 0x7f6684862000 [pid 5862] mprotect(0x7f6684863000, 131072, PROT_READ|PROT_WRITE [pid 5861] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5865] futex(0x7f668497e6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5862] <... mprotect resumed>) = 0 [pid 5865] <... futex resumed>) = 1 [pid 5861] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5865] futex(0x7f668497e6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5862] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5861] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f6684882990, parent_tid=0x7f6684882990, exit_signal=0, stack=0x7f6684862000, stack_size=0x20300, tls=0x7f66848826c0} [pid 5877] <... futex resumed>) = 0 [pid 5877] fdatasync(4 [pid 5862] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5861] <... clone3 resumed> => {parent_tid=[5878]}, 88) = 5878 [pid 5862] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f6684882990, parent_tid=0x7f6684882990, exit_signal=0, stack=0x7f6684862000, stack_size=0x20300, tls=0x7f66848826c0} [pid 5861] rt_sigprocmask(SIG_SETMASK, [], ./strace-static-x86_64: Process 5878 attached [pid 5878] rseq(0x7f6684882fe0, 0x20, 0, 0x53053053) = 0 [pid 5878] set_robust_list(0x7f66848829a0, 24) = 0 [pid 5878] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5878] futex(0x7f668497e6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5861] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5861] futex(0x7f668497e6d8, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5879 attached [pid 5878] <... futex resumed>) = 0 [pid 5862] <... clone3 resumed> => {parent_tid=[5879]}, 88) = 5879 [pid 5861] <... futex resumed>) = 1 [pid 5879] rseq(0x7f6684882fe0, 0x20, 0, 0x53053053 [pid 5878] fdatasync(4 [pid 5862] rt_sigprocmask(SIG_SETMASK, [], [pid 5861] futex(0x7f668497e6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5879] <... rseq resumed>) = 0 [pid 5862] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5879] set_robust_list(0x7f66848829a0, 24 [pid 5862] futex(0x7f668497e6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5879] <... set_robust_list resumed>) = 0 [pid 5862] futex(0x7f668497e6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5879] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [ 166.150393][ T5870] Buffer I/O error on dev loop2, logical block 13269809, async page read [ 166.162049][ T5872] syz-executor324: attempt to access beyond end of device [ 166.162049][ T5872] loop0: rw=0, sector=17666806, nr_sectors = 2 limit=128 [ 166.184454][ T5869] Buffer I/O error on dev loop1, logical block 8833403, async page read [ 166.196612][ T5869] Buffer I/O error on dev loop1, logical block 13269809, async page read [pid 5879] fdatasync(4 [pid 5865] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5861] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5862] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5862] futex(0x7f668497e6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=0}) = -1 ETIMEDOUT (Connection timed out) [pid 5866] exit_group(0) = ? [pid 5863] exit_group(0) = ? [pid 5865] exit_group(0) = ? [pid 5861] exit_group(0) = ? [pid 5862] exit_group(0) = ? [pid 5857] kill(-5861, SIGKILL [pid 5856] kill(-5862, SIGKILL [pid 5857] <... kill resumed>) = 0 [pid 5856] <... kill resumed>) = 0 [pid 5857] kill(5861, SIGKILL) = 0 [pid 5856] kill(5862, SIGKILL) = 0 [pid 5859] kill(-5866, SIGKILL [pid 5858] kill(-5863, SIGKILL [pid 5859] <... kill resumed>) = 0 [pid 5858] <... kill resumed>) = 0 [pid 5859] kill(5866, SIGKILL [pid 5858] kill(5863, SIGKILL [pid 5859] <... kill resumed>) = 0 [pid 5858] <... kill resumed>) = 0 [pid 5860] kill(-5865, SIGKILL) = 0 [pid 5860] kill(5865, SIGKILL) = 0 [pid 5859] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5859] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5859] getdents64(3, 0x5555922fa730 /* 2 entries */, 32768) = 48 [pid 5859] getdents64(3, 0x5555922fa730 /* 0 entries */, 32768) = 0 [pid 5859] close(3) = 0 [pid 5856] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5858] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5856] newfstatat(3, "", [pid 5858] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5856] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5858] getdents64(3, 0x5555922fa730 /* 2 entries */, 32768) = 48 [pid 5856] getdents64(3, [pid 5858] getdents64(3, 0x5555922fa730 /* 0 entries */, 32768) = 0 [pid 5856] <... getdents64 resumed>0x5555922fa730 /* 2 entries */, 32768) = 48 [pid 5858] close(3 [pid 5856] getdents64(3, [pid 5858] <... close resumed>) = 0 [pid 5856] <... getdents64 resumed>0x5555922fa730 /* 0 entries */, 32768) = 0 [pid 5856] close(3) = 0 [pid 5857] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5857] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5857] getdents64(3, 0x5555922fa730 /* 2 entries */, 32768) = 48 [pid 5857] getdents64(3, 0x5555922fa730 /* 0 entries */, 32768) = 0 [pid 5857] close(3) = 0 [pid 5860] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5860] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5860] getdents64(3, 0x5555922fa730 /* 2 entries */, 32768) = 48 [pid 5860] getdents64(3, 0x5555922fa730 /* 0 entries */, 32768) = 0 [pid 5860] close(3) = 0 [ 329.053472][ T30] INFO: task syz-executor324:5878 blocked for more than 143 seconds. [ 329.061865][ T30] Not tainted 6.13.0-rc3-next-20241220-syzkaller #0 [ 329.103269][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 329.112027][ T30] task:syz-executor324 state:D stack:28912 pid:5878 tgid:5861 ppid:5857 flags:0x00004006 [ 329.163288][ T30] Call Trace: [ 329.166641][ T30] [ 329.169603][ T30] __schedule+0x189f/0x4c80 [ 329.203606][ T30] ? __pfx___schedule+0x10/0x10 [ 329.213496][ T30] ? __pfx_lock_release+0x10/0x10 [ 329.218591][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 329.263339][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 329.269758][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 329.313510][ T30] ? schedule+0x90/0x320 [ 329.317848][ T30] schedule+0x14b/0x320 [ 329.322052][ T30] schedule_preempt_disabled+0x13/0x30 [ 329.363310][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 329.369117][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 329.413272][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 329.419523][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 329.463360][ T30] down_write+0x1d7/0x220 [ 329.467779][ T30] ? __pfx_down_write+0x10/0x10 [ 329.472658][ T30] ? ptrace_notify+0x279/0x380 [ 329.513275][ T30] ? __fget_files+0x2a/0x410 [ 329.517952][ T30] __generic_file_fsync+0x97/0x1a0 [ 329.523097][ T30] generic_file_fsync+0x70/0xf0 [ 329.583340][ T30] ? __pfx_generic_file_fsync+0x10/0x10 [ 329.588973][ T30] __x64_sys_fdatasync+0xb6/0x110 [ 329.623331][ T30] do_syscall_64+0xf3/0x230 [ 329.627908][ T30] ? clear_bhb_loop+0x35/0x90 [ 329.632617][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 329.683354][ T30] RIP: 0033:0x7f66848ece09 [ 329.687878][ T30] RSP: 002b:00007f6684882218 EFLAGS: 00000246 ORIG_RAX: 000000000000004b [ 329.743336][ T30] RAX: ffffffffffffffda RBX: 00007f668497e6d8 RCX: 00007f66848ece09 [ 329.751392][ T30] RDX: 00007f66848ece09 RSI: 0000000000000000 RDI: 0000000000000004 [ 329.803326][ T30] RBP: 00007f668497e6d0 R08: 0000000000000000 R09: 0000000000000000 [ 329.811382][ T30] R10: 00007ffebef38b97 R11: 0000000000000246 R12: 00007f6684941160 [ 329.873257][ T30] R13: 0030656c69662f30 R14: 2f30656c69662f2e R15: 0031656c69662f2e [ 329.881318][ T30] [ 329.913300][ T30] INFO: task syz-executor324:5879 blocked for more than 144 seconds. [ 329.921441][ T30] Not tainted 6.13.0-rc3-next-20241220-syzkaller #0 [ 329.973310][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 329.982045][ T30] task:syz-executor324 state:D stack:29200 pid:5879 tgid:5862 ppid:5856 flags:0x00004006 [ 330.043322][ T30] Call Trace: [ 330.046670][ T30] [ 330.049645][ T30] __schedule+0x189f/0x4c80 [ 330.093274][ T30] ? __pfx___schedule+0x10/0x10 [ 330.098210][ T30] ? __pfx_lock_release+0x10/0x10 [ 330.133256][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 330.139324][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 330.193257][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 330.198461][ T30] ? schedule+0x90/0x320 [ 330.202740][ T30] schedule+0x14b/0x320 [ 330.243328][ T30] schedule_preempt_disabled+0x13/0x30 [ 330.248870][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 330.293284][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 330.299291][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 330.343331][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 330.348460][ T30] down_write+0x1d7/0x220 [ 330.352813][ T30] ? __pfx_down_write+0x10/0x10 [ 330.383325][ T30] ? ptrace_notify+0x279/0x380 [ 330.388171][ T30] ? __fget_files+0x2a/0x410 [ 330.392791][ T30] __generic_file_fsync+0x97/0x1a0 [ 330.433278][ T30] generic_file_fsync+0x70/0xf0 [ 330.438219][ T30] ? __pfx_generic_file_fsync+0x10/0x10 [ 330.473257][ T30] __x64_sys_fdatasync+0xb6/0x110 [ 330.478362][ T30] do_syscall_64+0xf3/0x230 [ 330.482892][ T30] ? clear_bhb_loop+0x35/0x90 [ 330.523362][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 330.529355][ T30] RIP: 0033:0x7f66848ece09 [ 330.553308][ T30] RSP: 002b:00007f6684882218 EFLAGS: 00000246 ORIG_RAX: 000000000000004b [ 330.561821][ T30] RAX: ffffffffffffffda RBX: 00007f668497e6d8 RCX: 00007f66848ece09 [ 330.623694][ T30] RDX: 00007f66848c63c6 RSI: 0000000000000000 RDI: 0000000000000004 [ 330.631755][ T30] RBP: 00007f668497e6d0 R08: 00007ffebef38b97 R09: 0000000000000000 [ 330.703279][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6684941160 [ 330.711355][ T30] R13: 0030656c69662f30 R14: 2f30656c69662f2e R15: 0031656c69662f2e [ 330.753304][ T30] [ 330.773289][ T30] INFO: task syz-executor324:5874 blocked for more than 145 seconds. [ 330.781427][ T30] Not tainted 6.13.0-rc3-next-20241220-syzkaller #0 [ 330.833281][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 330.842023][ T30] task:syz-executor324 state:D stack:28632 pid:5874 tgid:5863 ppid:5858 flags:0x00004006 [ 330.903259][ T30] Call Trace: [ 330.906641][ T30] [ 330.909593][ T30] __schedule+0x189f/0x4c80 [ 330.953311][ T30] ? __pfx___schedule+0x10/0x10 [ 330.958254][ T30] ? __pfx_lock_release+0x10/0x10 [ 331.003279][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 331.009355][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 331.053335][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 331.058629][ T30] ? schedule+0x90/0x320 [ 331.062903][ T30] schedule+0x14b/0x320 [ 331.103279][ T30] schedule_preempt_disabled+0x13/0x30 [ 331.108821][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 331.153260][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 331.159257][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 331.203330][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 331.208452][ T30] down_write+0x1d7/0x220 [ 331.212813][ T30] ? __pfx_down_write+0x10/0x10 [ 331.253284][ T30] ? ptrace_notify+0x279/0x380 [ 331.258146][ T30] ? __fget_files+0x2a/0x410 [ 331.262775][ T30] __generic_file_fsync+0x97/0x1a0 [ 331.313337][ T30] generic_file_fsync+0x70/0xf0 [ 331.318285][ T30] ? __pfx_generic_file_fsync+0x10/0x10 [ 331.363340][ T30] __x64_sys_fdatasync+0xb6/0x110 [ 331.368463][ T30] do_syscall_64+0xf3/0x230 [ 331.372999][ T30] ? clear_bhb_loop+0x35/0x90 [ 331.413519][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 331.419593][ T30] RIP: 0033:0x7f66848ece09 [ 331.453287][ T30] RSP: 002b:00007f6684882218 EFLAGS: 00000246 ORIG_RAX: 000000000000004b [ 331.461798][ T30] RAX: ffffffffffffffda RBX: 00007f668497e6d8 RCX: 00007f66848ece09 [ 331.533688][ T30] RDX: 00007f66848c63c6 RSI: 0000000000000000 RDI: 0000000000000004 [ 331.541733][ T30] RBP: 00007f668497e6d0 R08: 00007ffebef38b97 R09: 0000000000000000 [ 331.603256][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6684941160 [ 331.611300][ T30] R13: 0030656c69662f30 R14: 2f30656c69662f2e R15: 0031656c69662f2e [ 331.683357][ T30] [ 331.686493][ T30] INFO: task syz-executor324:5876 blocked for more than 145 seconds. [ 331.713256][ T30] Not tainted 6.13.0-rc3-next-20241220-syzkaller #0 [ 331.720446][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 331.753260][ T30] task:syz-executor324 state:D stack:29200 pid:5876 tgid:5866 ppid:5859 flags:0x00004006 [ 331.803258][ T30] Call Trace: [ 331.806607][ T30] [ 331.809562][ T30] __schedule+0x189f/0x4c80 [ 331.853287][ T30] ? __pfx___schedule+0x10/0x10 [ 331.858226][ T30] ? __pfx_lock_release+0x10/0x10 [ 331.883259][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 331.889326][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 331.933255][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 331.938459][ T30] ? schedule+0x90/0x320 [ 331.942731][ T30] schedule+0x14b/0x320 [ 331.983282][ T30] schedule_preempt_disabled+0x13/0x30 [ 331.988824][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 332.033257][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 332.039255][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 332.073257][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 332.078514][ T30] down_write+0x1d7/0x220 [ 332.082967][ T30] ? __pfx_down_write+0x10/0x10 [ 332.123312][ T30] ? ptrace_notify+0x279/0x380 [ 332.128158][ T30] ? __fget_files+0x2a/0x410 [ 332.132775][ T30] __generic_file_fsync+0x97/0x1a0 [ 332.183287][ T30] generic_file_fsync+0x70/0xf0 [ 332.188224][ T30] ? __pfx_generic_file_fsync+0x10/0x10 [ 332.223273][ T30] __x64_sys_fdatasync+0xb6/0x110 [ 332.228376][ T30] do_syscall_64+0xf3/0x230 [ 332.232904][ T30] ? clear_bhb_loop+0x35/0x90 [ 332.283281][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 332.289257][ T30] RIP: 0033:0x7f66848ece09 [ 332.323297][ T30] RSP: 002b:00007f6684882218 EFLAGS: 00000246 ORIG_RAX: 000000000000004b [ 332.332329][ T30] RAX: ffffffffffffffda RBX: 00007f668497e6d8 RCX: 00007f66848ece09 [ 332.393323][ T30] RDX: 00007f66848c63c6 RSI: 0000000000000000 RDI: 0000000000000004 [ 332.401399][ T30] RBP: 00007f668497e6d0 R08: 00007ffebef38b97 R09: 0000000000000000 [ 332.463270][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6684941160 [ 332.471332][ T30] R13: 0030656c69662f30 R14: 2f30656c69662f2e R15: 0031656c69662f2e [ 332.523294][ T30] [ 332.543274][ T30] INFO: task syz-executor324:5877 blocked for more than 146 seconds. [ 332.551413][ T30] Not tainted 6.13.0-rc3-next-20241220-syzkaller #0 [ 332.593257][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 332.602009][ T30] task:syz-executor324 state:D stack:28912 pid:5877 tgid:5865 ppid:5860 flags:0x00004006 [ 332.673253][ T30] Call Trace: [ 332.676604][ T30] [ 332.679558][ T30] __schedule+0x189f/0x4c80 [ 332.723315][ T30] ? __pfx___schedule+0x10/0x10 [ 332.728262][ T30] ? __pfx_lock_release+0x10/0x10 [ 332.773281][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 332.779361][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 332.813273][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 332.818475][ T30] ? schedule+0x90/0x320 [ 332.822747][ T30] schedule+0x14b/0x320 [ 332.863284][ T30] schedule_preempt_disabled+0x13/0x30 [ 332.868825][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 332.923278][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 332.929279][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 332.963264][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 332.968390][ T30] down_write+0x1d7/0x220 [ 332.972750][ T30] ? __pfx_down_write+0x10/0x10 [ 333.013257][ T30] ? ptrace_notify+0x279/0x380 [ 333.018100][ T30] ? __fget_files+0x2a/0x410 [ 333.022720][ T30] __generic_file_fsync+0x97/0x1a0 [ 333.083290][ T30] generic_file_fsync+0x70/0xf0 [ 333.088235][ T30] ? __pfx_generic_file_fsync+0x10/0x10 [ 333.123263][ T30] __x64_sys_fdatasync+0xb6/0x110 [ 333.128370][ T30] do_syscall_64+0xf3/0x230 [ 333.132906][ T30] ? clear_bhb_loop+0x35/0x90 [ 333.173261][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 333.179248][ T30] RIP: 0033:0x7f66848ece09 [ 333.213326][ T30] RSP: 002b:00007f6684882218 EFLAGS: 00000246 ORIG_RAX: 000000000000004b [ 333.221823][ T30] RAX: ffffffffffffffda RBX: 00007f668497e6d8 RCX: 00007f66848ece09 [ 333.293320][ T30] RDX: 00007f66848ece09 RSI: 0000000000000000 RDI: 0000000000000004 [ 333.301366][ T30] RBP: 00007f668497e6d0 R08: 0000000000000000 R09: 0000000000000000 [ 333.343268][ T30] R10: 00007ffebef38b97 R11: 0000000000000246 R12: 00007f6684941160 [ 333.351747][ T30] R13: 0030656c69662f30 R14: 2f30656c69662f2e R15: 0031656c69662f2e [ 333.423267][ T30] [ 333.426414][ T30] [ 333.426414][ T30] Showing all locks held in the system: [ 333.463276][ T30] 1 lock held by khungtaskd/30: [ 333.468188][ T30] #0: ffffffff8e937da0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x55/0x2a0 [ 333.523272][ T30] 1 lock held by kswapd0/89: [ 333.527931][ T30] 1 lock held by kswapd1/90: [ 333.532576][ T30] 2 locks held by getty/5589: [ 333.583270][ T30] #0: ffff88814d95d0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 333.593173][ T30] #1: ffffc90002fde2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x6a6/0x1e00 [ 333.663281][ T30] 1 lock held by syz-executor324/5869: [ 333.668827][ T30] 1 lock held by syz-executor324/5878: [ 333.703337][ T30] #0: ffff88807ba6c180 (&type->i_mutex_dir_key#6){++++}-{4:4}, at: __generic_file_fsync+0x97/0x1a0 [ 333.753257][ T30] 1 lock held by syz-executor324/5872: [ 333.758783][ T30] 1 lock held by syz-executor324/5879: [ 333.793283][ T30] #0: ffff88807ba6cc00 (&type->i_mutex_dir_key#6){++++}-{4:4}, at: __generic_file_fsync+0x97/0x1a0 [ 333.843287][ T30] 1 lock held by syz-executor324/5870: [ 333.848822][ T30] 1 lock held by syz-executor324/5874: [ 333.883258][ T30] #0: ffff88807ba64180 (&type->i_mutex_dir_key#6){++++}-{4:4}, at: __generic_file_fsync+0x97/0x1a0 [ 333.933260][ T30] 2 locks held by syz-executor324/5871: [ 333.938888][ T30] 1 lock held by syz-executor324/5876: [ 333.973264][ T30] #0: ffff88807ba646c0 (&type->i_mutex_dir_key#6){++++}-{4:4}, at: __generic_file_fsync+0x97/0x1a0 [ 334.023245][ T30] 5 locks held by syz-executor324/5873: [ 334.028859][ T30] 1 lock held by syz-executor324/5877: [ 334.063268][ T30] #0: ffff88807ba6c6c0 (&type->i_mutex_dir_key#6){++++}-{4:4}, at: __generic_file_fsync+0x97/0x1a0 [ 334.113276][ T30] [ 334.115664][ T30] ============================================= [ 334.115664][ T30] [ 334.153297][ T30] NMI backtrace for cpu 1 [ 334.153326][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc3-next-20241220-syzkaller #0 [ 334.153353][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 334.153363][ T30] Call Trace: [ 334.153369][ T30] [ 334.153377][ T30] dump_stack_lvl+0x241/0x360 [ 334.153406][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 334.153424][ T30] ? __pfx__printk+0x10/0x10 [ 334.153459][ T30] nmi_cpu_backtrace+0x49c/0x4d0 [ 334.153487][ T30] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 334.153507][ T30] ? _printk+0xd5/0x120 [ 334.153528][ T30] ? __pfx__printk+0x10/0x10 [ 334.153551][ T30] ? __wake_up_klogd+0xcc/0x110 [ 334.153572][ T30] ? __pfx__printk+0x10/0x10 [ 334.153596][ T30] ? __rcu_read_unlock+0xa1/0x110 [ 334.153619][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 334.153640][ T30] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 334.153678][ T30] watchdog+0xff6/0x1040 [ 334.153701][ T30] ? watchdog+0x1ea/0x1040 [ 334.153726][ T30] ? __pfx_watchdog+0x10/0x10 [ 334.153746][ T30] kthread+0x7a9/0x920 [ 334.153766][ T30] ? __pfx_kthread+0x10/0x10 [ 334.153789][ T30] ? __pfx_watchdog+0x10/0x10 [ 334.153833][ T30] ? __pfx_kthread+0x10/0x10 [ 334.153854][ T30] ? __pfx_kthread+0x10/0x10 [ 334.153932][ T30] ? __pfx_kthread+0x10/0x10 [ 334.153957][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 334.153980][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 334.154002][ T30] ? __pfx_kthread+0x10/0x10 [ 334.154024][ T30] ret_from_fork+0x4b/0x80 [ 334.154043][ T30] ? __pfx_kthread+0x10/0x10 [ 334.154064][ T30] ret_from_fork_asm+0x1a/0x30 [ 334.154094][ T30] [ 334.154102][ T30] Sending NMI from CPU 1 to CPUs 0: [ 334.323164][ C0] NMI backtrace for cpu 0 [ 334.323180][ C0] CPU: 0 UID: 0 PID: 5871 Comm: syz-executor324 Not tainted 6.13.0-rc3-next-20241220-syzkaller #0 [ 334.323202][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 334.323211][ C0] RIP: 0010:__sanitizer_cov_trace_const_cmp4+0x2f/0x90 [ 334.323238][ C0] Code: 8b 04 24 65 48 8b 14 25 c0 d6 03 00 65 8b 05 50 ae 44 7e 25 00 01 ff 00 74 10 3d 00 01 00 00 75 5b 83 ba 24 16 00 00 00 74 52 <8b> 82 00 16 00 00 83 f8 03 75 47 48 8b 8a 08 16 00 00 44 8b 8a 04 [ 334.323250][ C0] RSP: 0018:ffffc900041ced78 EFLAGS: 00000246 [ 334.323266][ C0] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffff888078ef9e00 [ 334.323277][ C0] RDX: ffff888078ef9e00 RSI: 0000000000000001 RDI: 0000000000000000 [ 334.323288][ C0] RBP: ffffc900041cee80 R08: ffffffff81f7ce68 R09: 1ffffffff285af08 [ 334.323300][ C0] R10: dffffc0000000000 R11: fffffbfff285af09 R12: 0000000000000000 [ 334.323311][ C0] R13: dffffc0000000000 R14: ffffc900041cedd8 R15: ffffc900041cedc0 [ 334.323324][ C0] FS: 00007f66848a36c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 334.323338][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 334.323350][ C0] CR2: 00007efd57688580 CR3: 000000002506c000 CR4: 00000000003526f0 [ 334.323365][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 334.323375][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 334.323385][ C0] Call Trace: [ 334.323391][ C0] [ 334.323397][ C0] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 334.323418][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 334.323441][ C0] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 334.323460][ C0] ? nmi_handle+0x2a/0x5a0 [ 334.323488][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 334.323507][ C0] ? nmi_handle+0x14f/0x5a0 [ 334.323528][ C0] ? nmi_handle+0x2a/0x5a0 [ 334.323550][ C0] ? __sanitizer_cov_trace_const_cmp4+0x2f/0x90 [ 334.323569][ C0] ? default_do_nmi+0x63/0x160 [ 334.323588][ C0] ? exc_nmi+0x123/0x1f0 [ 334.323606][ C0] ? end_repeat_nmi+0xf/0x53 [ 334.323630][ C0] ? filemap_get_entry+0x158/0x3b0 [ 334.323648][ C0] ? __sanitizer_cov_trace_const_cmp4+0x2f/0x90 [ 334.323668][ C0] ? __sanitizer_cov_trace_const_cmp4+0x2f/0x90 [ 334.323689][ C0] ? __sanitizer_cov_trace_const_cmp4+0x2f/0x90 [ 334.323709][ C0] [ 334.323714][ C0] [ 334.323719][ C0] filemap_get_entry+0x158/0x3b0 [ 334.323736][ C0] ? filemap_get_entry+0x123/0x3b0 [ 334.323753][ C0] ? __pfx_filemap_get_entry+0x10/0x10 [ 334.323775][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 334.323797][ C0] __filemap_get_folio+0x72/0x940 [ 334.323818][ C0] __find_get_block+0x287/0x1140 [ 334.323841][ C0] ? __pfx___might_resched+0x10/0x10 [ 334.323868][ C0] ? __pfx_folio_mark_accessed+0x10/0x10 [ 334.323887][ C0] ? __pfx___find_get_block+0x10/0x10 [ 334.323911][ C0] ? folio_contains+0x201/0x2a0 [ 334.323929][ C0] ? __asan_memset+0x23/0x50 [ 334.323949][ C0] ? folio_unlock+0x10e/0x170 [ 334.323965][ C0] bdev_getblk+0x33/0x670 [ 334.323980][ C0] ? sysv_find_entry+0x16c/0x590 [ 334.324001][ C0] ? sysv_inode_by_name+0x98/0x2a0 [ 334.324025][ C0] __bread_gfp+0x86/0x400 [ 334.324041][ C0] get_branch+0x2c3/0x6e0 [ 334.324066][ C0] get_block+0x180/0x16d0 [ 334.324091][ C0] ? create_empty_buffers+0x471/0x530 [ 334.324107][ C0] ? __pfx_lock_release+0x10/0x10 [ 334.324126][ C0] ? do_raw_spin_lock+0x14f/0x370 [ 334.324143][ C0] ? __pfx_get_block+0x10/0x10 [ 334.324170][ C0] ? zero_user_segments+0x2b4/0x320 [ 334.324190][ C0] block_read_full_folio+0x3ee/0xae0 [ 334.324211][ C0] ? __pfx_get_block+0x10/0x10 [ 334.324230][ C0] ? __pfx_block_read_full_folio+0x10/0x10 [ 334.324254][ C0] filemap_read_folio+0x148/0x3b0 [ 334.324273][ C0] ? __pfx_sysv_read_folio+0x10/0x10 [ 334.324293][ C0] ? __pfx_filemap_read_folio+0x10/0x10 [ 334.324312][ C0] ? __filemap_get_folio+0x848/0x940 [ 334.324332][ C0] do_read_cache_folio+0x373/0x5b0 [ 334.324352][ C0] ? __pfx_sysv_read_folio+0x10/0x10 [ 334.324372][ C0] ? do_read_cache_folio+0x4f1/0x5b0 [ 334.324392][ C0] sysv_find_entry+0x16c/0x590 [ 334.324418][ C0] sysv_inode_by_name+0x98/0x2a0 [ 334.324439][ C0] ? __pfx_sysv_inode_by_name+0x10/0x10 [ 334.324464][ C0] sysv_lookup+0x6b/0xe0 [ 334.324485][ C0] __lookup_slow+0x28c/0x3f0 [ 334.324504][ C0] ? __pfx___lookup_slow+0x10/0x10 [ 334.324525][ C0] ? try_to_unlazy+0x35c/0x5b0 [ 334.324545][ C0] lookup_slow+0x53/0x70 [ 334.324563][ C0] link_path_walk+0x99b/0xea0 [ 334.324585][ C0] __filename_parentat+0x2a7/0x740 [ 334.324602][ C0] ? kernel_text_address+0xa7/0xe0 [ 334.324629][ C0] ? __pfx___filename_parentat+0x10/0x10 [ 334.324658][ C0] ? __lock_acquire+0x1397/0x2100 [ 334.324682][ C0] do_renameat2+0x3b8/0x13f0 [ 334.324712][ C0] ? __virt_addr_valid+0x183/0x530 [ 334.324737][ C0] ? __pfx_do_renameat2+0x10/0x10 [ 334.324763][ C0] ? __virt_addr_valid+0x183/0x530 [ 334.324783][ C0] ? __virt_addr_valid+0x45f/0x530 [ 334.324805][ C0] ? __phys_addr_symbol+0x2f/0x70 [ 334.324829][ C0] ? strncpy_from_user+0x152/0x270 [ 334.324854][ C0] ? getname_flags+0x1e3/0x540 [ 334.324875][ C0] __x64_sys_rename+0x82/0x90 [ 334.324898][ C0] do_syscall_64+0xf3/0x230 [ 334.324912][ C0] ? clear_bhb_loop+0x35/0x90 [ 334.324934][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 334.324955][ C0] RIP: 0033:0x7f66848ece09 [ 334.324970][ C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 334.324983][ C0] RSP: 002b:00007f66848a3218 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 334.324998][ C0] RAX: ffffffffffffffda RBX: 00007f668497e6c8 RCX: 00007f66848ece09 [ 334.325011][ C0] RDX: ffffffffffffffb0 RSI: 0000000020000000 RDI: 0000000020000040 [ 334.325022][ C0] RBP: 00007f668497e6c0 R08: 0000000000000000 R09: 0000000000000000 [ 334.325032][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6684941160 [ 334.325042][ C0] R13: 0030656c69662f30 R14: 2f30656c69662f2e R15: 0031656c69662f2e [ 334.325062][ C0] [ 334.833415][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 334.833436][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc3-next-20241220-syzkaller #0 [ 334.833459][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 334.833470][ T30] Call Trace: [ 334.833477][ T30] [ 334.833485][ T30] dump_stack_lvl+0x241/0x360 [ 334.833513][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 334.833532][ T30] ? __pfx__printk+0x10/0x10 [ 334.833554][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 334.833584][ T30] ? vscnprintf+0x5d/0x90 [ 334.833608][ T30] panic+0x349/0x880 [ 334.833633][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 334.833655][ T30] ? __pfx_panic+0x10/0x10 [ 334.833678][ T30] ? tick_nohz_tick_stopped+0x82/0xb0 [ 334.833697][ T30] ? __irq_work_queue_local+0x137/0x410 [ 334.833720][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 334.833766][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 334.833788][ T30] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 334.833811][ T30] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 334.833835][ T30] watchdog+0x1035/0x1040 [ 334.833857][ T30] ? watchdog+0x1ea/0x1040 [ 334.833882][ T30] ? __pfx_watchdog+0x10/0x10 [ 334.833903][ T30] kthread+0x7a9/0x920 [ 334.833924][ T30] ? __pfx_kthread+0x10/0x10 [ 334.833948][ T30] ? __pfx_watchdog+0x10/0x10 [ 334.833970][ T30] ? __pfx_kthread+0x10/0x10 [ 334.833990][ T30] ? __pfx_kthread+0x10/0x10 [ 334.834015][ T30] ? __pfx_kthread+0x10/0x10 [ 334.834035][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 334.834057][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 334.834085][ T30] ? __pfx_kthread+0x10/0x10 [ 334.834109][ T30] ret_from_fork+0x4b/0x80 [ 334.834129][ T30] ? __pfx_kthread+0x10/0x10 [ 334.834150][ T30] ret_from_fork_asm+0x1a/0x30 [ 334.834181][ T30] [ 335.097246][ T30] Kernel Offset: disabled [ 335.101568][ T30] Rebooting in 86400 seconds..