./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3823014065 <...> Warning: Permanently added '10.128.0.39' (ED25519) to the list of known hosts. execve("./syz-executor3823014065", ["./syz-executor3823014065"], 0x7ffe615e29f0 /* 10 vars */) = 0 brk(NULL) = 0x5555555c2000 brk(0x5555555c2d00) = 0x5555555c2d00 arch_prctl(ARCH_SET_FS, 0x5555555c2380) = 0 set_tid_address(0x5555555c2650) = 5858 set_robust_list(0x5555555c2660, 24) = 0 rseq(0x5555555c2ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3823014065", 4096) = 28 getrandom("\xc0\x97\x14\x05\x41\x05\x17\x1d", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555555c2d00 brk(0x5555555e3d00) = 0x5555555e3d00 brk(0x5555555e4000) = 0x5555555e4000 mprotect(0x7fcc9352d000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555555c2650) = 5859 ./strace-static-x86_64: Process 5859 attached [pid 5858] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5859] set_robust_list(0x5555555c2660, 24./strace-static-x86_64: Process 5860 attached [pid 5858] <... clone resumed>, child_tidptr=0x5555555c2650) = 5860 [pid 5859] <... set_robust_list resumed>) = 0 [pid 5858] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5860] set_robust_list(0x5555555c2660, 24 [pid 5859] mkdir("./syzkaller.GmN8ts", 0700 [pid 5860] <... set_robust_list resumed>) = 0 [pid 5860] mkdir("./syzkaller.zE79gz", 0700 [pid 5859] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 5861 attached [pid 5858] <... clone resumed>, child_tidptr=0x5555555c2650) = 5861 [pid 5860] <... mkdir resumed>) = 0 [pid 5858] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5859] chmod("./syzkaller.GmN8ts", 0777 [pid 5861] set_robust_list(0x5555555c2660, 24 [pid 5860] chmod("./syzkaller.zE79gz", 0777 [pid 5861] <... set_robust_list resumed>) = 0 [pid 5861] mkdir("./syzkaller.boHNur", 0700 [pid 5860] <... chmod resumed>) = 0 ./strace-static-x86_64: Process 5862 attached [pid 5859] <... chmod resumed>) = 0 [pid 5860] chdir("./syzkaller.zE79gz" [pid 5858] <... clone resumed>, child_tidptr=0x5555555c2650) = 5862 [pid 5862] set_robust_list(0x5555555c2660, 24 [pid 5861] <... mkdir resumed>) = 0 [pid 5860] <... chdir resumed>) = 0 [pid 5859] chdir("./syzkaller.GmN8ts" [pid 5858] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5862] <... set_robust_list resumed>) = 0 [pid 5861] chmod("./syzkaller.boHNur", 0777 [pid 5859] <... chdir resumed>) = 0 [pid 5860] mkdir("./0", 0777 [pid 5859] mkdir("./0", 0777 [pid 5861] <... chmod resumed>) = 0 [pid 5862] mkdir("./syzkaller.1YrCom", 0700./strace-static-x86_64: Process 5863 attached ) = 0 [pid 5861] chdir("./syzkaller.boHNur" [pid 5858] <... clone resumed>, child_tidptr=0x5555555c2650) = 5863 [pid 5860] <... mkdir resumed>) = 0 [pid 5859] <... mkdir resumed>) = 0 [pid 5861] <... chdir resumed>) = 0 [pid 5863] set_robust_list(0x5555555c2660, 24 [pid 5859] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5858] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5863] <... set_robust_list resumed>) = 0 [pid 5862] chmod("./syzkaller.1YrCom", 0777 [pid 5861] mkdir("./0", 0777 [pid 5860] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5863] mkdir("./syzkaller.WnlSFv", 0700 [pid 5862] <... chmod resumed>) = 0 [pid 5859] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5864 attached [pid 5859] ioctl(3, LOOP_CLR_FD [pid 5860] <... openat resumed>) = 3 [pid 5859] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5863] <... mkdir resumed>) = 0 [pid 5862] chdir("./syzkaller.1YrCom" [pid 5861] <... mkdir resumed>) = 0 [pid 5858] <... clone resumed>, child_tidptr=0x5555555c2650) = 5864 [pid 5864] set_robust_list(0x5555555c2660, 24 [pid 5863] chmod("./syzkaller.WnlSFv", 0777 [pid 5860] ioctl(3, LOOP_CLR_FD [pid 5862] <... chdir resumed>) = 0 [pid 5859] close(3 [pid 5861] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5862] mkdir("./0", 0777 [pid 5860] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5864] <... set_robust_list resumed>) = 0 [pid 5863] <... chmod resumed>) = 0 [pid 5862] <... mkdir resumed>) = 0 [pid 5861] <... openat resumed>) = 3 [pid 5860] close(3 [pid 5859] <... close resumed>) = 0 [pid 5859] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5864] mkdir("./syzkaller.aq2Pht", 0700 [pid 5863] chdir("./syzkaller.WnlSFv" [pid 5862] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5861] ioctl(3, LOOP_CLR_FD [pid 5860] <... close resumed>) = 0 [pid 5861] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5860] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5861] close(3 [pid 5864] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 5867 attached ./strace-static-x86_64: Process 5866 attached [pid 5864] chmod("./syzkaller.aq2Pht", 0777 [pid 5863] <... chdir resumed>) = 0 [pid 5862] <... openat resumed>) = 3 [pid 5861] <... close resumed>) = 0 [pid 5859] <... clone resumed>, child_tidptr=0x5555555c2650) = 5866 [pid 5867] set_robust_list(0x5555555c2660, 24 [pid 5866] set_robust_list(0x5555555c2660, 24 [pid 5864] <... chmod resumed>) = 0 [pid 5863] mkdir("./0", 0777 [pid 5862] ioctl(3, LOOP_CLR_FD [pid 5861] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5860] <... clone resumed>, child_tidptr=0x5555555c2650) = 5867 [pid 5866] <... set_robust_list resumed>) = 0 [pid 5864] chdir("./syzkaller.aq2Pht" [pid 5863] <... mkdir resumed>) = 0 [pid 5862] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5864] <... chdir resumed>) = 0 [pid 5864] mkdir("./0", 0777 [pid 5862] close(3) = 0 ./strace-static-x86_64: Process 5868 attached [pid 5867] <... set_robust_list resumed>) = 0 [pid 5863] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5862] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5869 attached [pid 5867] chdir("./0" [pid 5866] chdir("./0" [pid 5864] <... mkdir resumed>) = 0 [pid 5867] <... chdir resumed>) = 0 [pid 5861] <... clone resumed>, child_tidptr=0x5555555c2650) = 5868 [pid 5866] <... chdir resumed>) = 0 [pid 5869] set_robust_list(0x5555555c2660, 24 [pid 5868] set_robust_list(0x5555555c2660, 24 [pid 5863] <... openat resumed>) = 3 [pid 5869] <... set_robust_list resumed>) = 0 [pid 5868] <... set_robust_list resumed>) = 0 [pid 5863] ioctl(3, LOOP_CLR_FD [pid 5869] chdir("./0" [pid 5868] chdir("./0" [pid 5863] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5868] <... chdir resumed>) = 0 [pid 5863] close(3 [pid 5869] <... chdir resumed>) = 0 [pid 5868] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5863] <... close resumed>) = 0 [pid 5869] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5868] <... prctl resumed>) = 0 [pid 5864] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5863] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5869] <... prctl resumed>) = 0 [pid 5868] setpgid(0, 0 [pid 5867] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5866] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5864] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5870 attached [pid 5869] setpgid(0, 0 [pid 5868] <... setpgid resumed>) = 0 [pid 5867] <... prctl resumed>) = 0 [pid 5866] <... prctl resumed>) = 0 [pid 5862] <... clone resumed>, child_tidptr=0x5555555c2650) = 5869 [pid 5869] <... setpgid resumed>) = 0 [pid 5868] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5864] ioctl(3, LOOP_CLR_FD [pid 5869] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5868] <... openat resumed>) = 3 [pid 5864] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5864] close(3) = 0 [pid 5863] <... clone resumed>, child_tidptr=0x5555555c2650) = 5870 [pid 5868] write(3, "1000", 4 [pid 5864] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5866] setpgid(0, 0 [pid 5870] set_robust_list(0x5555555c2660, 24 [pid 5869] write(3, "1000", 4 [pid 5868] <... write resumed>) = 4 [pid 5869] <... write resumed>) = 4 [pid 5868] close(3 [pid 5866] <... setpgid resumed>) = 0 [pid 5870] <... set_robust_list resumed>) = 0 [pid 5867] setpgid(0, 0 [pid 5869] close(3 [pid 5868] <... close resumed>) = 0 [pid 5869] <... close resumed>) = 0 [pid 5868] symlink("/dev/binderfs", "./binderfs" [pid 5867] <... setpgid resumed>) = 0 [pid 5866] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5870] chdir("./0" [pid 5869] symlink("/dev/binderfs", "./binderfs" [pid 5868] <... symlink resumed>) = 0 [pid 5870] <... chdir resumed>) = 0 [pid 5869] <... symlink resumed>) = 0 [pid 5867] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5866] <... openat resumed>) = 3 [pid 5870] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5867] <... openat resumed>) = 3 [pid 5866] write(3, "1000", 4./strace-static-x86_64: Process 5871 attached executing program executing program [pid 5870] <... prctl resumed>) = 0 [pid 5869] write(1, "executing program\n", 18 [pid 5868] write(1, "executing program\n", 18 [pid 5866] <... write resumed>) = 4 [pid 5871] set_robust_list(0x5555555c2660, 24 [pid 5870] setpgid(0, 0 [pid 5869] <... write resumed>) = 18 [pid 5868] <... write resumed>) = 18 [pid 5867] write(3, "1000", 4 [pid 5866] close(3 [pid 5864] <... clone resumed>, child_tidptr=0x5555555c2650) = 5871 [pid 5870] <... setpgid resumed>) = 0 [pid 5867] <... write resumed>) = 4 [pid 5866] <... close resumed>) = 0 [pid 5871] <... set_robust_list resumed>) = 0 [pid 5870] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5869] memfd_create("syzkaller", 0 [pid 5868] memfd_create("syzkaller", 0 [pid 5867] close(3 [pid 5866] symlink("/dev/binderfs", "./binderfs" [pid 5871] chdir("./0" [pid 5870] <... openat resumed>) = 3 [pid 5871] <... chdir resumed>) = 0 [pid 5871] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5869] <... memfd_create resumed>) = 3 [pid 5866] <... symlink resumed>) = 0 executing program [pid 5871] <... prctl resumed>) = 0 [pid 5870] write(3, "1000", 4 [pid 5868] <... memfd_create resumed>) = 3 [pid 5867] <... close resumed>) = 0 [pid 5866] write(1, "executing program\n", 18 [pid 5871] setpgid(0, 0 [pid 5870] <... write resumed>) = 4 [pid 5867] symlink("/dev/binderfs", "./binderfs" [pid 5866] <... write resumed>) = 18 [pid 5870] close(3 [pid 5871] <... setpgid resumed>) = 0 [pid 5869] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5868] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5871] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5869] <... mmap resumed>) = 0x7fcc8b000000 [pid 5868] <... mmap resumed>) = 0x7fcc8b000000 [pid 5867] <... symlink resumed>) = 0 [pid 5870] <... close resumed>) = 0 [pid 5866] memfd_create("syzkaller", 0 [pid 5870] symlink("/dev/binderfs", "./binderfs" [pid 5867] write(1, "executing program\n", 18executing program executing program [pid 5870] <... symlink resumed>) = 0 [pid 5867] <... write resumed>) = 18 [pid 5866] <... memfd_create resumed>) = 3 [pid 5870] write(1, "executing program\n", 18 [pid 5866] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5870] <... write resumed>) = 18 [pid 5867] memfd_create("syzkaller", 0 [pid 5866] <... mmap resumed>) = 0x7fcc8b000000 [pid 5871] <... openat resumed>) = 3 [pid 5871] write(3, "1000", 4) = 4 [pid 5867] <... memfd_create resumed>) = 3 [pid 5871] close(3 [pid 5870] memfd_create("syzkaller", 0 [pid 5871] <... close resumed>) = 0 [pid 5871] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5871] write(1, "executing program\n", 18 [pid 5867] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5870] <... memfd_create resumed>) = 3 [pid 5867] <... mmap resumed>) = 0x7fcc8b000000 [pid 5870] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5871] <... write resumed>) = 18 [pid 5871] memfd_create("syzkaller", 0 [pid 5870] <... mmap resumed>) = 0x7fcc8b000000 [pid 5871] <... memfd_create resumed>) = 3 [pid 5871] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fcc8b000000 [pid 5866] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5868] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5867] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5869] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5871] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5870] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5867] <... write resumed>) = 16777216 [pid 5866] <... write resumed>) = 16777216 [pid 5869] <... write resumed>) = 16777216 [pid 5868] <... write resumed>) = 16777216 [pid 5867] munmap(0x7fcc8b000000, 138412032 [pid 5866] munmap(0x7fcc8b000000, 138412032 [pid 5869] munmap(0x7fcc8b000000, 138412032 [pid 5871] <... write resumed>) = 16777216 [pid 5869] <... munmap resumed>) = 0 [pid 5868] munmap(0x7fcc8b000000, 138412032 [pid 5867] <... munmap resumed>) = 0 [pid 5866] <... munmap resumed>) = 0 [pid 5871] munmap(0x7fcc8b000000, 138412032 [pid 5870] <... write resumed>) = 16777216 [pid 5869] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5867] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5866] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5870] munmap(0x7fcc8b000000, 138412032 [pid 5869] <... openat resumed>) = 4 [pid 5868] <... munmap resumed>) = 0 [pid 5867] <... openat resumed>) = 4 [pid 5866] <... openat resumed>) = 4 [pid 5868] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5867] ioctl(4, LOOP_SET_FD, 3 [pid 5866] ioctl(4, LOOP_SET_FD, 3 [pid 5869] ioctl(4, LOOP_SET_FD, 3 [pid 5868] <... openat resumed>) = 4 [pid 5871] <... munmap resumed>) = 0 [pid 5871] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5869] <... ioctl resumed>) = 0 [pid 5871] <... openat resumed>) = 4 [pid 5870] <... munmap resumed>) = 0 [pid 5869] close(3 [pid 5868] ioctl(4, LOOP_SET_FD, 3 [pid 5867] <... ioctl resumed>) = 0 [pid 5866] <... ioctl resumed>) = 0 [pid 5871] ioctl(4, LOOP_SET_FD, 3 [pid 5869] <... close resumed>) = 0 [pid 5867] close(3 [pid 5869] close(4) = 0 [pid 5869] mkdir("./file0", 0777) = 0 [ 93.059956][ T5867] loop1: detected capacity change from 0 to 32768 [ 93.069477][ T5869] loop3: detected capacity change from 0 to 32768 [ 93.070159][ T5866] loop0: detected capacity change from 0 to 32768 [ 93.092287][ T5871] loop5: detected capacity change from 0 to 32768 [ 93.092353][ T5868] loop2: detected capacity change from 0 to 32768 [pid 5870] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5869] mount("/dev/loop3", "./file0", "jfs", MS_NOATIME, "grpquota,quota,nointegrity,iocharset=cp869,nodiscard,discard=0x0000000000000000,noquota" [pid 5866] close(3 [pid 5870] <... openat resumed>) = 4 [pid 5866] <... close resumed>) = 0 [pid 5870] ioctl(4, LOOP_SET_FD, 3 [pid 5866] close(4 [pid 5867] <... close resumed>) = 0 [pid 5866] <... close resumed>) = 0 [pid 5867] close(4 [pid 5866] mkdir("./file0", 0777 [pid 5867] <... close resumed>) = 0 [pid 5866] <... mkdir resumed>) = 0 [pid 5867] mkdir("./file0", 0777 [pid 5866] mount("/dev/loop0", "./file0", "jfs", MS_NOATIME, "grpquota,quota,nointegrity,iocharset=cp869,nodiscard,discard=0x0000000000000000,noquota" [pid 5867] <... mkdir resumed>) = 0 [pid 5871] <... ioctl resumed>) = 0 [pid 5870] <... ioctl resumed>) = 0 [pid 5869] <... mount resumed>) = 0 [pid 5868] <... ioctl resumed>) = 0 [pid 5867] mount("/dev/loop1", "./file0", "jfs", MS_NOATIME, "grpquota,quota,nointegrity,iocharset=cp869,nodiscard,discard=0x0000000000000000,noquota" [pid 5871] close(3) = 0 [pid 5871] close(4) = 0 [pid 5870] close(3 [pid 5871] mkdir("./file0", 0777 [pid 5868] close(3 [pid 5871] <... mkdir resumed>) = 0 [pid 5870] <... close resumed>) = 0 [pid 5869] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5871] mount("/dev/loop5", "./file0", "jfs", MS_NOATIME, "grpquota,quota,nointegrity,iocharset=cp869,nodiscard,discard=0x0000000000000000,noquota" [pid 5870] close(4 [pid 5868] <... close resumed>) = 0 [pid 5870] <... close resumed>) = 0 [pid 5869] <... openat resumed>) = 3 [pid 5870] mkdir("./file0", 0777) = 0 [pid 5869] chdir("./file0" [pid 5868] close(4 [pid 5869] <... chdir resumed>) = 0 [pid 5868] <... close resumed>) = 0 [pid 5869] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5868] mkdir("./file0", 0777 [pid 5870] mount("/dev/loop4", "./file0", "jfs", MS_NOATIME, "grpquota,quota,nointegrity,iocharset=cp869,nodiscard,discard=0x0000000000000000,noquota" [pid 5869] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5868] <... mkdir resumed>) = 0 [ 93.106809][ T5870] loop4: detected capacity change from 0 to 32768 [pid 5869] exit_group(0) = ? [pid 5868] mount("/dev/loop2", "./file0", "jfs", MS_NOATIME, "grpquota,quota,nointegrity,iocharset=cp869,nodiscard,discard=0x0000000000000000,noquota" [pid 5866] <... mount resumed>) = 0 [pid 5866] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5866] chdir("./file0") = 0 [pid 5866] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5866] exit_group(0 [pid 5869] +++ exited with 0 +++ [pid 5866] <... exit_group resumed>) = ? [pid 5862] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5869, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=24 /* 0.24 s */} --- [pid 5862] restart_syscall(<... resuming interrupted clone ...> [pid 5871] <... mount resumed>) = 0 [pid 5868] <... mount resumed>) = 0 [pid 5867] <... mount resumed>) = 0 [pid 5868] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5867] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5871] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5867] <... openat resumed>) = 3 [pid 5868] <... openat resumed>) = 3 [pid 5871] <... openat resumed>) = 3 [pid 5870] <... mount resumed>) = 0 [pid 5868] chdir("./file0" [pid 5867] chdir("./file0" [pid 5862] <... restart_syscall resumed>) = 0 [pid 5871] chdir("./file0" [pid 5870] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5868] <... chdir resumed>) = 0 [pid 5867] <... chdir resumed>) = 0 [pid 5866] +++ exited with 0 +++ [pid 5870] <... openat resumed>) = 3 [pid 5868] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5867] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5862] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5859] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5866, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=29 /* 0.29 s */} --- [pid 5870] chdir("./file0" [pid 5867] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5862] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5859] restart_syscall(<... resuming interrupted clone ...> [pid 5871] <... chdir resumed>) = 0 [pid 5870] <... chdir resumed>) = 0 [pid 5868] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5862] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5871] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5870] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5867] exit_group(0 [pid 5871] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5870] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5868] exit_group(0 [pid 5862] <... openat resumed>) = 3 [pid 5871] exit_group(0 [pid 5867] <... exit_group resumed>) = ? [pid 5862] newfstatat(3, "", [pid 5871] <... exit_group resumed>) = ? [pid 5870] exit_group(0 [pid 5862] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5870] <... exit_group resumed>) = ? [pid 5862] getdents64(3, [pid 5859] <... restart_syscall resumed>) = 0 [pid 5868] <... exit_group resumed>) = ? [pid 5862] <... getdents64 resumed>0x5555555c36f0 /* 4 entries */, 32768) = 112 [pid 5862] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5859] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5871] +++ exited with 0 +++ [pid 5870] +++ exited with 0 +++ [pid 5859] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5864] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5871, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=27 /* 0.27 s */} --- [pid 5859] <... openat resumed>) = 3 [pid 5864] restart_syscall(<... resuming interrupted clone ...> [pid 5859] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5863] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5870, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=23 /* 0.23 s */} --- [pid 5859] getdents64(3, 0x5555555c36f0 /* 4 entries */, 32768) = 112 [pid 5859] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5864] <... restart_syscall resumed>) = 0 [pid 5868] +++ exited with 0 +++ [pid 5861] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5868, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=23 /* 0.23 s */} --- [pid 5861] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5861] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5861] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5864] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5861] <... openat resumed>) = 3 [pid 5864] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5864] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5864] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5864] getdents64(3, 0x5555555c36f0 /* 4 entries */, 32768) = 112 [pid 5864] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5867] +++ exited with 0 +++ [pid 5860] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5867, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=25 /* 0.25 s */} --- [pid 5860] restart_syscall(<... resuming interrupted clone ...>) = 0 [ 93.211152][ T5862] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] SMP KASAN NOPTI [ 93.223290][ T5862] KASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037] [ 93.231704][ T5862] CPU: 0 UID: 0 PID: 5862 Comm: syz-executor382 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full) [ 93.243771][ T5862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 93.253826][ T5862] RIP: 0010:lmLogSync+0x22e/0x9d0 [ 93.258881][ T5862] Code: 9d b5 fe 4d 8d 7e f0 4c 89 f8 48 c1 e8 03 80 3c 18 00 74 08 4c 89 ff e8 b0 8a e2 fe 4d 8b 3f 49 83 c7 30 4c 89 f8 48 c1 e8 03 <80> 3c 18 00 74 08 4c 89 ff e8 94 8a e2 fe 49 8b 3f e8 6c 9d b5 fe [ 93.278495][ T5862] RSP: 0018:ffffc90003dcfa80 EFLAGS: 00010216 [ 93.284574][ T5862] RAX: 0000000000000006 RBX: dffffc0000000000 RCX: ffff888031b5da00 [ 93.292534][ T5862] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 93.300491][ T5862] RBP: ffffc90003dcfb88 R08: ffffc90003dcf9cf R09: ffffc90003dcf868 [ 93.308451][ T5862] R10: dffffc0000000000 R11: fffff520007b9f3a R12: ffff888026f38000 [ 93.316413][ T5862] R13: ffff888033ad0160 R14: ffff88814b383a38 R15: 0000000000000030 [ 93.324377][ T5862] FS: 00005555555c2380(0000) GS:ffff888125c2a000(0000) knlGS:0000000000000000 [ 93.333292][ T5862] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 93.339861][ T5862] CR2: 00007fffa114482c CR3: 000000002776a000 CR4: 0000000000350ef0 [ 93.347821][ T5862] Call Trace: [ 93.351087][ T5862] [ 93.354004][ T5862] ? __pfx___mutex_lock+0x10/0x10 [ 93.359036][ T5862] ? __pfx_lmLogSync+0x10/0x10 [ 93.363813][ T5862] ? __pfx_dquot_writeback_dquots+0x10/0x10 [ 93.369700][ T5862] ? __pfx___writeback_inodes_sb_nr+0x10/0x10 [ 93.375768][ T5862] jfs_syncpt+0x7b/0x90 [ 93.380015][ T5862] jfs_sync_fs+0x87/0xa0 [ 93.384248][ T5862] sync_filesystem+0x1cf/0x230 [ 93.389018][ T5862] generic_shutdown_super+0x6f/0x2c0 [ 93.394303][ T5862] kill_block_super+0x44/0x90 [ 93.398977][ T5862] deactivate_locked_super+0xbc/0x130 [ 93.404342][ T5862] cleanup_mnt+0x425/0x4c0 [ 93.408750][ T5862] ? srso_alias_return_thunk+0x5/0xfbef5 [ 93.414378][ T5862] ? lockdep_hardirqs_on+0x9c/0x150 [ 93.419571][ T5862] task_work_run+0x1d4/0x260 [ 93.424175][ T5862] ? __pfx_task_work_run+0x10/0x10 [ 93.429294][ T5862] ? srso_alias_return_thunk+0x5/0xfbef5 [ 93.434929][ T5862] ? path_umount+0x1ea/0xb70 [ 93.439522][ T5862] ptrace_notify+0x281/0x2c0 [ 93.444119][ T5862] ? __pfx_ptrace_notify+0x10/0x10 [ 93.449237][ T5862] ? srso_alias_return_thunk+0x5/0xfbef5 [ 93.454871][ T5862] ? __x64_sys_umount+0x122/0x160 [ 93.459902][ T5862] ? __pfx___x64_sys_umount+0x10/0x10 [ 93.465276][ T5862] ? rcu_is_watching+0x15/0xb0 [ 93.470039][ T5862] syscall_exit_work+0xc6/0x1d0 [ 93.474904][ T5862] do_syscall_64+0x2ad/0x3b0 [ 93.479496][ T5862] ? lockdep_hardirqs_on+0x9c/0x150 [ 93.484686][ T5862] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 93.490744][ T5862] ? srso_alias_return_thunk+0x5/0xfbef5 [ 93.496374][ T5862] ? exc_page_fault+0x9f/0xf0 [ 93.501043][ T5862] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 93.506933][ T5862] RIP: 0033:0x7fcc934b47b7 [ 93.511338][ T5862] Code: 07 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8 [ 93.530981][ T5862] RSP: 002b:00007fffa1144818 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6 [ 93.539422][ T5862] RAX: 0000000000000000 RBX: 00000000000167aa RCX: 00007fcc934b47b7 [ 93.547420][ T5862] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fffa11448d0 [ 93.555392][ T5862] RBP: 00007fffa11448d0 R08: 0000000000000000 R09: 0000000000000000 [ 93.563358][ T5862] R10: 00000000ffffffff R11: 0000000000000206 R12: 00007fffa1145940 [ 93.571329][ T5862] R13: 00005555555c36c0 R14: 431bde82d7b634db R15: 00007fffa1145960 [ 93.579356][ T5862] [ 93.582364][ T5862] Modules linked in: [ 93.586693][ T5862] ---[ end trace 0000000000000000 ]--- [ 93.605464][ T5862] RIP: 0010:lmLogSync+0x22e/0x9d0 [ 93.610580][ T5862] Code: 9d b5 fe 4d 8d 7e f0 4c 89 f8 48 c1 e8 03 80 3c 18 00 74 08 4c 89 ff e8 b0 8a e2 fe 4d 8b 3f 49 83 c7 30 4c 89 f8 48 c1 e8 03 <80> 3c 18 00 74 08 4c 89 ff e8 94 8a e2 fe 49 8b 3f e8 6c 9d b5 fe [ 93.640562][ T5862] RSP: 0018:ffffc90003dcfa80 EFLAGS: 00010216 [ 93.646811][ T5862] RAX: 0000000000000006 RBX: dffffc0000000000 RCX: ffff888031b5da00 [pid 5861] newfstatat(3, "", [pid 5860] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5861] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5863] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5861] getdents64(3, [pid 5863] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5861] <... getdents64 resumed>0x5555555c36f0 /* 4 entries */, 32768) = 112 [pid 5863] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5861] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5863] <... openat resumed>) = 3 [pid 5863] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5863] getdents64(3, 0x5555555c36f0 /* 4 entries */, 32768) = 112 [pid 5863] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5860] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5860] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 93.657833][ T5862] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [pid 5860] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5860] getdents64(3, 0x5555555c36f0 /* 4 entries */, 32768) = 112 [ 93.684635][ T5862] RBP: ffffc90003dcfb88 R08: ffffc90003dcf9cf R09: ffffc90003dcf868 [ 93.702031][ T5862] R10: dffffc0000000000 R11: fffff520007b9f3a R12: ffff888026f38000 [ 93.710569][ T5862] R13: ffff888033ad0160 R14: ffff88814b383a38 R15: 0000000000000030 [ 93.720350][ T5862] FS: 00005555555c2380(0000) GS:ffff888125d2a000(0000) knlGS:0000000000000000 [ 93.729530][ T5862] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 93.736703][ T5862] CR2: 00007fee4cb82000 CR3: 000000002776a000 CR4: 0000000000350ef0 [ 93.756025][ T5862] Kernel panic - not syncing: Fatal exception [ 93.762344][ T5862] Kernel Offset: disabled [ 93.766656][ T5862] Rebooting in 86400 seconds..