./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4278158892 <...> Warning: Permanently added '10.128.10.20' (ED25519) to the list of known hosts. execve("./syz-executor4278158892", ["./syz-executor4278158892"], 0x7ffeae635470 /* 10 vars */) = 0 brk(NULL) = 0x55558a2c7000 brk(0x55558a2c7d00) = 0x55558a2c7d00 arch_prctl(ARCH_SET_FS, 0x55558a2c7380) = 0 set_tid_address(0x55558a2c7650) = 5081 set_robust_list(0x55558a2c7660, 24) = 0 rseq(0x55558a2c7ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor4278158892", 4096) = 28 getrandom("\x98\xe8\x94\xf3\x28\x98\xf3\x87", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55558a2c7d00 brk(0x55558a2e8d00) = 0x55558a2e8d00 brk(0x55558a2e9000) = 0x55558a2e9000 mprotect(0x7f70db163000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 mkdir("./syzkaller.dP8DJY", 0700) = 0 chmod("./syzkaller.dP8DJY", 0777) = 0 chdir("./syzkaller.dP8DJY") = 0 mkdir("./0", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5083 attached [pid 5083] set_robust_list(0x55558a2c7660, 24 [pid 5081] <... clone resumed>, child_tidptr=0x55558a2c7650) = 5083 [pid 5083] <... set_robust_list resumed>) = 0 [pid 5083] chdir("./0") = 0 [pid 5083] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5083] setpgid(0, 0) = 0 [pid 5083] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5083] write(3, "1000", 4) = 4 [pid 5083] close(3) = 0 [pid 5083] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5083] write(1, "executing program\n", 18) = 18 [pid 5083] memfd_create("syzkaller", 0) = 3 [pid 5083] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5083] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5083] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5083] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5083] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5083] close(3) = 0 [pid 5083] close(4) = 0 [pid 5083] mkdir("./file0", 0777) = 0 syzkaller login: [ 58.223767][ T5083] loop0: detected capacity change from 0 to 32768 [ 58.299964][ T5083] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 58.314089][ T5083] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 58.334195][ T5083] bcachefs (loop0): alloc_read... done [ 58.340412][ T5083] bcachefs (loop0): stripes_read... done [pid 5083] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5083] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5083] chdir("./file0") = 0 [pid 5083] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5083] ioctl(4, LOOP_CLR_FD) = 0 [pid 5083] close(4) = 0 [pid 5083] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [pid 5083] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5083] exit_group(0) = ? [ 58.346097][ T5083] bcachefs (loop0): snapshots_read... done [ 58.355006][ T5083] bcachefs (loop0): journal_replay... done [ 58.360961][ T5083] bcachefs (loop0): resume_logged_ops... done [ 58.367277][ T5083] bcachefs (loop0): going read-write [ 58.377275][ T5083] bcachefs (loop0): done starting filesystem [pid 5083] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5083, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=25 /* 0.25 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 [ 58.441049][ T783] bcachefs (loop0): going read-only [ 58.446351][ T783] bcachefs (loop0): finished waiting for writes to stop [ 58.454207][ T5083] syz-executor427 (5083) used greatest stack depth: 18208 bytes left [ 58.464513][ T783] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 58.473883][ T783] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 58.484194][ T783] bcachefs (loop0): unshutdown complete, journal seq 10 umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 58.492200][ T783] bcachefs (loop0): done going read-only, filesystem not clean unlink("./0/binderfs") = 0 [ 58.558966][ T5081] bcachefs (loop0): shutting down [ 58.577445][ T5081] bcachefs (loop0): shutdown complete umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./0/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./0/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./0") = 0 mkdir("./1", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5094 attached , child_tidptr=0x55558a2c7650) = 5094 [pid 5094] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5094] chdir("./1") = 0 [pid 5094] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5094] setpgid(0, 0) = 0 [pid 5094] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5094] write(3, "1000", 4) = 4 [pid 5094] close(3) = 0 [pid 5094] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5094] write(1, "executing program\n", 18executing program ) = 18 [pid 5094] memfd_create("syzkaller", 0) = 3 [pid 5094] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5094] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5094] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5094] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5094] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5094] close(3) = 0 [pid 5094] close(4) = 0 [pid 5094] mkdir("./file0", 0777) = 0 [ 59.071866][ T5094] loop0: detected capacity change from 0 to 32768 [ 59.133451][ T5094] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 59.147447][ T5094] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 59.165636][ T5094] bcachefs (loop0): alloc_read... done [ 59.171501][ T5094] bcachefs (loop0): stripes_read... done [ 59.177217][ T5094] bcachefs (loop0): snapshots_read... done [pid 5094] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5094] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5094] chdir("./file0") = 0 [pid 5094] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5094] ioctl(4, LOOP_CLR_FD) = 0 [pid 5094] close(4) = 0 [pid 5094] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [ 59.184697][ T5094] bcachefs (loop0): journal_replay... done [ 59.190697][ T5094] bcachefs (loop0): resume_logged_ops... done [ 59.196849][ T5094] bcachefs (loop0): going read-write [ 59.204439][ T5094] bcachefs (loop0): done starting filesystem [pid 5094] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5094] exit_group(0) = ? [pid 5094] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5094, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=22 /* 0.22 s */} --- umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./1/binderfs") = 0 [ 59.284316][ T9] bcachefs (loop0): going read-only [ 59.291761][ T9] bcachefs (loop0): finished waiting for writes to stop [ 59.301849][ T9] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 59.311899][ T9] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 59.322157][ T9] bcachefs (loop0): unshutdown complete, journal seq 10 [ 59.330142][ T9] bcachefs (loop0): done going read-only, filesystem not clean [ 59.338822][ T5081] bcachefs (loop0): shutting down [ 59.353818][ T5081] bcachefs (loop0): shutdown complete umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./1/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./1/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./1") = 0 mkdir("./2", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558a2c7650) = 5105 ./strace-static-x86_64: Process 5105 attached [pid 5105] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5105] chdir("./2") = 0 [pid 5105] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5105] setpgid(0, 0) = 0 [pid 5105] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5105] write(3, "1000", 4) = 4 [pid 5105] close(3) = 0 [pid 5105] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5105] write(1, "executing program\n", 18executing program ) = 18 [pid 5105] memfd_create("syzkaller", 0) = 3 [pid 5105] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5105] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5105] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5105] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5105] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5105] close(3) = 0 [pid 5105] close(4) = 0 [pid 5105] mkdir("./file0", 0777) = 0 [ 59.883062][ T5105] loop0: detected capacity change from 0 to 32768 [ 59.945252][ T5105] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 59.959095][ T5105] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 59.976558][ T5105] bcachefs (loop0): alloc_read... done [ 59.982460][ T5105] bcachefs (loop0): stripes_read... done [ 59.988227][ T5105] bcachefs (loop0): snapshots_read... done [pid 5105] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5105] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5105] chdir("./file0") = 0 [pid 5105] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5105] ioctl(4, LOOP_CLR_FD) = 0 [pid 5105] close(4) = 0 [pid 5105] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [ 59.995918][ T5105] bcachefs (loop0): journal_replay... done [ 60.001845][ T5105] bcachefs (loop0): resume_logged_ops... done [ 60.008003][ T5105] bcachefs (loop0): going read-write [ 60.015604][ T5105] bcachefs (loop0): done starting filesystem [pid 5105] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5105] exit_group(0) = ? [pid 5105] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5105, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=20 /* 0.20 s */} --- umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./2/binderfs") = 0 [ 60.086753][ T1791] bcachefs (loop0): going read-only [ 60.092087][ T1791] bcachefs (loop0): finished waiting for writes to stop [ 60.099752][ T1791] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 60.108660][ T1791] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 60.118327][ T1791] bcachefs (loop0): unshutdown complete, journal seq 10 [ 60.126035][ T1791] bcachefs (loop0): done going read-only, filesystem not clean [ 60.163734][ T5081] bcachefs (loop0): shutting down [ 60.180323][ T5081] bcachefs (loop0): shutdown complete umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./2/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./2/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./2") = 0 mkdir("./3", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558a2c7650) = 5116 ./strace-static-x86_64: Process 5116 attached [pid 5116] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5116] chdir("./3") = 0 [pid 5116] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5116] setpgid(0, 0) = 0 [pid 5116] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5116] write(3, "1000", 4) = 4 [pid 5116] close(3) = 0 [pid 5116] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5116] write(1, "executing program\n", 18executing program ) = 18 [pid 5116] memfd_create("syzkaller", 0) = 3 [pid 5116] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5116] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5116] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5116] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5116] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5116] close(3) = 0 [pid 5116] close(4) = 0 [pid 5116] mkdir("./file0", 0777) = 0 [ 60.683208][ T5116] loop0: detected capacity change from 0 to 32768 [ 60.743706][ T5116] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 60.757604][ T5116] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 60.775435][ T5116] bcachefs (loop0): alloc_read... done [ 60.781157][ T5116] bcachefs (loop0): stripes_read... done [ 60.786843][ T5116] bcachefs (loop0): snapshots_read... done [pid 5116] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5116] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5116] chdir("./file0") = 0 [pid 5116] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5116] ioctl(4, LOOP_CLR_FD) = 0 [pid 5116] close(4) = 0 [ 60.794536][ T5116] bcachefs (loop0): journal_replay... done [ 60.800524][ T5116] bcachefs (loop0): resume_logged_ops... done [ 60.806805][ T5116] bcachefs (loop0): going read-write [ 60.813916][ T5116] bcachefs (loop0): done starting filesystem [pid 5116] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [pid 5116] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5116] exit_group(0) = ? [pid 5116] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5116, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=22 /* 0.22 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./3/binderfs") = 0 [ 60.883188][ T1791] bcachefs (loop0): going read-only [ 60.888416][ T1791] bcachefs (loop0): finished waiting for writes to stop [ 60.896073][ T1791] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 60.904984][ T1791] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 60.914894][ T1791] bcachefs (loop0): unshutdown complete, journal seq 10 [ 60.922428][ T1791] bcachefs (loop0): done going read-only, filesystem not clean [ 60.941646][ T5081] bcachefs (loop0): shutting down [ 60.957367][ T5081] bcachefs (loop0): shutdown complete umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./3/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./3/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./3") = 0 mkdir("./4", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5127 attached [pid 5127] set_robust_list(0x55558a2c7660, 24 [pid 5081] <... clone resumed>, child_tidptr=0x55558a2c7650) = 5127 [pid 5127] <... set_robust_list resumed>) = 0 [pid 5127] chdir("./4") = 0 [pid 5127] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5127] setpgid(0, 0) = 0 [pid 5127] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5127] write(3, "1000", 4) = 4 [pid 5127] close(3) = 0 [pid 5127] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5127] write(1, "executing program\n", 18executing program ) = 18 [pid 5127] memfd_create("syzkaller", 0) = 3 [pid 5127] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5127] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5127] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5127] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5127] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5127] close(3) = 0 [pid 5127] close(4) = 0 [pid 5127] mkdir("./file0", 0777) = 0 [ 61.489502][ T5127] loop0: detected capacity change from 0 to 32768 [ 61.553075][ T5127] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 61.567350][ T5127] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 61.584518][ T5127] bcachefs (loop0): alloc_read... done [ 61.590192][ T5127] bcachefs (loop0): stripes_read... done [ 61.595885][ T5127] bcachefs (loop0): snapshots_read... done [pid 5127] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5127] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5127] chdir("./file0") = 0 [pid 5127] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5127] ioctl(4, LOOP_CLR_FD) = 0 [pid 5127] close(4) = 0 [pid 5127] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [pid 5127] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5127] exit_group(0) = ? [ 61.603237][ T5127] bcachefs (loop0): journal_replay... done [ 61.609150][ T5127] bcachefs (loop0): resume_logged_ops... done [ 61.615297][ T5127] bcachefs (loop0): going read-write [ 61.622307][ T5127] bcachefs (loop0): done starting filesystem [pid 5127] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5127, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=21 /* 0.21 s */} --- umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./4/binderfs") = 0 [ 61.667375][ T9] bcachefs (loop0): going read-only [ 61.672669][ T9] bcachefs (loop0): finished waiting for writes to stop [ 61.680518][ T9] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 61.689746][ T9] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 61.699571][ T9] bcachefs (loop0): unshutdown complete, journal seq 10 [ 61.707013][ T9] bcachefs (loop0): done going read-only, filesystem not clean [ 61.742810][ T5081] bcachefs (loop0): shutting down [ 61.758669][ T5081] bcachefs (loop0): shutdown complete umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./4/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./4/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./4") = 0 mkdir("./5", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5138 attached , child_tidptr=0x55558a2c7650) = 5138 [pid 5138] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5138] chdir("./5") = 0 [pid 5138] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5138] setpgid(0, 0) = 0 [pid 5138] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5138] write(3, "1000", 4) = 4 [pid 5138] close(3) = 0 [pid 5138] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5138] write(1, "executing program\n", 18executing program ) = 18 [pid 5138] memfd_create("syzkaller", 0) = 3 [pid 5138] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5138] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5138] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5138] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5138] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5138] close(3) = 0 [pid 5138] close(4) = 0 [pid 5138] mkdir("./file0", 0777) = 0 [ 62.292543][ T5138] loop0: detected capacity change from 0 to 32768 [ 62.349167][ T5138] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 62.362971][ T5138] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 62.382192][ T5138] bcachefs (loop0): alloc_read... done [ 62.387735][ T5138] bcachefs (loop0): stripes_read... done [ 62.393499][ T5138] bcachefs (loop0): snapshots_read... done [pid 5138] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5138] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5138] chdir("./file0") = 0 [pid 5138] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5138] ioctl(4, LOOP_CLR_FD) = 0 [ 62.401223][ T5138] bcachefs (loop0): journal_replay... done [ 62.407067][ T5138] bcachefs (loop0): resume_logged_ops... done [ 62.413369][ T5138] bcachefs (loop0): going read-write [ 62.420388][ T5138] bcachefs (loop0): done starting filesystem [pid 5138] close(4) = 0 [pid 5138] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [pid 5138] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5138] exit_group(0) = ? [pid 5138] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5138, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=21 /* 0.21 s */} --- umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./5/binderfs") = 0 [ 62.493802][ T9] bcachefs (loop0): going read-only [ 62.499204][ T9] bcachefs (loop0): finished waiting for writes to stop [ 62.507426][ T9] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 62.516635][ T9] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 62.526781][ T9] bcachefs (loop0): unshutdown complete, journal seq 10 [ 62.534597][ T9] bcachefs (loop0): done going read-only, filesystem not clean [ 62.566506][ T5081] bcachefs (loop0): shutting down [ 62.582883][ T5081] bcachefs (loop0): shutdown complete umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./5/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./5/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./5") = 0 mkdir("./6", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558a2c7650) = 5150 ./strace-static-x86_64: Process 5150 attached [pid 5150] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5150] chdir("./6") = 0 [pid 5150] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5150] setpgid(0, 0) = 0 [pid 5150] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5150] write(3, "1000", 4) = 4 [pid 5150] close(3) = 0 [pid 5150] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5150] write(1, "executing program\n", 18executing program ) = 18 [pid 5150] memfd_create("syzkaller", 0) = 3 [pid 5150] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5150] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5150] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5150] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5150] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5150] close(3) = 0 [pid 5150] close(4) = 0 [pid 5150] mkdir("./file0", 0777) = 0 [ 63.128211][ T5150] loop0: detected capacity change from 0 to 32768 [ 63.201788][ T5150] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 63.215759][ T5150] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 63.232657][ T5150] bcachefs (loop0): alloc_read... done [ 63.238255][ T5150] bcachefs (loop0): stripes_read... done [ 63.244205][ T5150] bcachefs (loop0): snapshots_read... done [pid 5150] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5150] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5150] chdir("./file0") = 0 [pid 5150] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5150] ioctl(4, LOOP_CLR_FD) = 0 [pid 5150] close(4) = 0 [pid 5150] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [pid 5150] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5150] exit_group(0) = ? [ 63.251891][ T5150] bcachefs (loop0): journal_replay... done [ 63.257738][ T5150] bcachefs (loop0): resume_logged_ops... done [ 63.264000][ T5150] bcachefs (loop0): going read-write [ 63.271487][ T5150] bcachefs (loop0): done starting filesystem [pid 5150] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5150, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=25 /* 0.25 s */} --- umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 63.327813][ T1791] bcachefs (loop0): going read-only [ 63.329039][ T5150] syz-executor427 (5150) used greatest stack depth: 17368 bytes left [ 63.333239][ T1791] bcachefs (loop0): finished waiting for writes to stop [ 63.348490][ T1791] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 63.357469][ T1791] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 63.367799][ T1791] bcachefs (loop0): unshutdown complete, journal seq 10 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./6/binderfs") = 0 [ 63.375769][ T1791] bcachefs (loop0): done going read-only, filesystem not clean [ 63.400323][ T5081] bcachefs (loop0): shutting down [ 63.415170][ T5081] bcachefs (loop0): shutdown complete umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./6/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./6/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./6") = 0 mkdir("./7", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5161 attached , child_tidptr=0x55558a2c7650) = 5161 [pid 5161] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5161] chdir("./7") = 0 [pid 5161] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5161] setpgid(0, 0) = 0 [pid 5161] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5161] write(3, "1000", 4) = 4 [pid 5161] close(3) = 0 [pid 5161] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5161] write(1, "executing program\n", 18) = 18 [pid 5161] memfd_create("syzkaller", 0) = 3 [pid 5161] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5161] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5161] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5161] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5161] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5161] close(3) = 0 [pid 5161] close(4) = 0 [pid 5161] mkdir("./file0", 0777) = 0 [ 63.903033][ T5161] loop0: detected capacity change from 0 to 32768 [ 63.966588][ T5161] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 63.980403][ T5161] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 63.997138][ T5161] bcachefs (loop0): alloc_read... done [ 64.002815][ T5161] bcachefs (loop0): stripes_read... done [ 64.008522][ T5161] bcachefs (loop0): snapshots_read... done [pid 5161] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5161] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5161] chdir("./file0") = 0 [pid 5161] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5161] ioctl(4, LOOP_CLR_FD) = 0 [pid 5161] close(4) = 0 [ 64.015917][ T5161] bcachefs (loop0): journal_replay... done [ 64.021857][ T5161] bcachefs (loop0): resume_logged_ops... done [ 64.028034][ T5161] bcachefs (loop0): going read-write [ 64.035028][ T5161] bcachefs (loop0): done starting filesystem [pid 5161] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [pid 5161] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5161] exit_group(0) = ? [pid 5161] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5161, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=23 /* 0.23 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 64.106852][ T1791] bcachefs (loop0): going read-only [ 64.112142][ T1791] bcachefs (loop0): finished waiting for writes to stop [ 64.119655][ T1791] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 64.128475][ T1791] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 64.138523][ T1791] bcachefs (loop0): unshutdown complete, journal seq 10 [ 64.146077][ T1791] bcachefs (loop0): done going read-only, filesystem not clean unlink("./7/binderfs") = 0 [ 64.190716][ T5081] bcachefs (loop0): shutting down [ 64.206557][ T5081] bcachefs (loop0): shutdown complete umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./7/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./7/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./7/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./7") = 0 mkdir("./8", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558a2c7650) = 5173 ./strace-static-x86_64: Process 5173 attached [pid 5173] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5173] chdir("./8") = 0 [pid 5173] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5173] setpgid(0, 0) = 0 [pid 5173] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5173] write(3, "1000", 4) = 4 [pid 5173] close(3) = 0 [pid 5173] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5173] write(1, "executing program\n", 18executing program ) = 18 [pid 5173] memfd_create("syzkaller", 0) = 3 [pid 5173] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5173] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5173] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5173] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5173] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5173] close(3) = 0 [pid 5173] close(4) = 0 [pid 5173] mkdir("./file0", 0777) = 0 [ 64.669898][ T5173] loop0: detected capacity change from 0 to 32768 [ 64.734193][ T5173] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 64.748029][ T5173] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 64.765408][ T5173] bcachefs (loop0): alloc_read... done [ 64.771170][ T5173] bcachefs (loop0): stripes_read... done [ 64.776962][ T5173] bcachefs (loop0): snapshots_read... done [pid 5173] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5173] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5173] chdir("./file0") = 0 [pid 5173] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5173] ioctl(4, LOOP_CLR_FD) = 0 [pid 5173] close(4) = 0 [pid 5173] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [pid 5173] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5173] exit_group(0) = ? [ 64.784487][ T5173] bcachefs (loop0): journal_replay... done [ 64.790411][ T5173] bcachefs (loop0): resume_logged_ops... done [ 64.796562][ T5173] bcachefs (loop0): going read-write [ 64.804266][ T5173] bcachefs (loop0): done starting filesystem [pid 5173] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5173, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=22 /* 0.22 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./8/binderfs") = 0 [ 64.861045][ T1791] bcachefs (loop0): going read-only [ 64.866350][ T1791] bcachefs (loop0): finished waiting for writes to stop [ 64.874039][ T1791] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 64.882956][ T1791] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 64.892889][ T1791] bcachefs (loop0): unshutdown complete, journal seq 10 [ 64.900859][ T1791] bcachefs (loop0): done going read-only, filesystem not clean [ 64.927615][ T5081] bcachefs (loop0): shutting down [ 64.942390][ T5081] bcachefs (loop0): shutdown complete umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./8/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./8/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./8/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./8") = 0 mkdir("./9", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5184 attached , child_tidptr=0x55558a2c7650) = 5184 [pid 5184] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5184] chdir("./9") = 0 [pid 5184] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5184] setpgid(0, 0) = 0 [pid 5184] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5184] write(3, "1000", 4) = 4 [pid 5184] close(3) = 0 [pid 5184] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5184] write(1, "executing program\n", 18executing program ) = 18 [pid 5184] memfd_create("syzkaller", 0) = 3 [pid 5184] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5184] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5184] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5184] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5184] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5184] close(3) = 0 [pid 5184] close(4) = 0 [pid 5184] mkdir("./file0", 0777) = 0 [ 65.443116][ T5184] loop0: detected capacity change from 0 to 32768 [ 65.507367][ T5184] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 65.521252][ T5184] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 65.539030][ T5184] bcachefs (loop0): alloc_read... done [ 65.544544][ T5184] bcachefs (loop0): stripes_read... done [ 65.550289][ T5184] bcachefs (loop0): snapshots_read... done [pid 5184] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5184] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5184] chdir("./file0") = 0 [pid 5184] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5184] ioctl(4, LOOP_CLR_FD) = 0 [pid 5184] close(4) = 0 [pid 5184] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [ 65.557496][ T5184] bcachefs (loop0): journal_replay... done [ 65.563399][ T5184] bcachefs (loop0): resume_logged_ops... done [ 65.569615][ T5184] bcachefs (loop0): going read-write [ 65.576487][ T5184] bcachefs (loop0): done starting filesystem [pid 5184] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5184] exit_group(0) = ? [pid 5184] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5184, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=18 /* 0.18 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 65.628886][ T1791] bcachefs (loop0): going read-only [ 65.634132][ T1791] bcachefs (loop0): finished waiting for writes to stop [ 65.642414][ T1791] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 65.651408][ T1791] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 65.661210][ T1791] bcachefs (loop0): unshutdown complete, journal seq 10 [ 65.668830][ T1791] bcachefs (loop0): done going read-only, filesystem not clean unlink("./9/binderfs") = 0 [ 65.714504][ T5081] bcachefs (loop0): shutting down [ 65.730172][ T5081] bcachefs (loop0): shutdown complete umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./9/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./9/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./9/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./9") = 0 mkdir("./10", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5195 attached , child_tidptr=0x55558a2c7650) = 5195 [pid 5195] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5195] chdir("./10") = 0 [pid 5195] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5195] setpgid(0, 0) = 0 [pid 5195] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5195] write(3, "1000", 4) = 4 [pid 5195] close(3) = 0 [pid 5195] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5195] write(1, "executing program\n", 18executing program ) = 18 [pid 5195] memfd_create("syzkaller", 0) = 3 [pid 5195] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5195] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5195] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5195] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5195] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5195] close(3) = 0 [pid 5195] close(4) = 0 [pid 5195] mkdir("./file0", 0777) = 0 [ 66.200687][ T5195] loop0: detected capacity change from 0 to 32768 [ 66.265425][ T5195] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 66.279363][ T5195] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 66.296364][ T5195] bcachefs (loop0): alloc_read... done [ 66.302119][ T5195] bcachefs (loop0): stripes_read... done [ 66.307819][ T5195] bcachefs (loop0): snapshots_read... done [pid 5195] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5195] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5195] chdir("./file0") = 0 [pid 5195] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5195] ioctl(4, LOOP_CLR_FD) = 0 [pid 5195] close(4) = 0 [pid 5195] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [ 66.315321][ T5195] bcachefs (loop0): journal_replay... done [ 66.321267][ T5195] bcachefs (loop0): resume_logged_ops... done [ 66.327415][ T5195] bcachefs (loop0): going read-write [ 66.334794][ T5195] bcachefs (loop0): done starting filesystem [pid 5195] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5195] exit_group(0) = ? [pid 5195] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5195, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=21 /* 0.21 s */} --- umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 66.391605][ T1791] bcachefs (loop0): going read-only [ 66.396840][ T1791] bcachefs (loop0): finished waiting for writes to stop [ 66.404654][ T1791] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 66.413600][ T1791] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 66.423339][ T1791] bcachefs (loop0): unshutdown complete, journal seq 10 [ 66.431137][ T1791] bcachefs (loop0): done going read-only, filesystem not clean unlink("./10/binderfs") = 0 [ 66.476569][ T5081] bcachefs (loop0): shutting down [ 66.491179][ T5081] bcachefs (loop0): shutdown complete umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./10/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./10/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./10/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./10") = 0 mkdir("./11", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558a2c7650) = 5206 ./strace-static-x86_64: Process 5206 attached [pid 5206] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5206] chdir("./11") = 0 [pid 5206] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5206] setpgid(0, 0) = 0 [pid 5206] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5206] write(3, "1000", 4) = 4 [pid 5206] close(3) = 0 [pid 5206] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5206] write(1, "executing program\n", 18executing program ) = 18 [pid 5206] memfd_create("syzkaller", 0) = 3 [pid 5206] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5206] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5206] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5206] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5206] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5206] close(3) = 0 [pid 5206] close(4) = 0 [pid 5206] mkdir("./file0", 0777) = 0 [ 67.024825][ T5206] loop0: detected capacity change from 0 to 32768 [ 67.081212][ T5206] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 67.094990][ T5206] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 67.112529][ T5206] bcachefs (loop0): alloc_read... done [ 67.118079][ T5206] bcachefs (loop0): stripes_read... done [ 67.124069][ T5206] bcachefs (loop0): snapshots_read... done [pid 5206] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5206] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5206] chdir("./file0") = 0 [pid 5206] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5206] ioctl(4, LOOP_CLR_FD) = 0 [ 67.131701][ T5206] bcachefs (loop0): journal_replay... done [ 67.137553][ T5206] bcachefs (loop0): resume_logged_ops... done [ 67.143779][ T5206] bcachefs (loop0): going read-write [ 67.151084][ T5206] bcachefs (loop0): done starting filesystem [pid 5206] close(4) = 0 [pid 5206] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [pid 5206] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5206] exit_group(0) = ? [pid 5206] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5206, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=25 /* 0.25 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./11/binderfs") = 0 [ 67.226137][ T1791] bcachefs (loop0): going read-only [ 67.231555][ T1791] bcachefs (loop0): finished waiting for writes to stop [ 67.239197][ T1791] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 67.248064][ T1791] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 67.258204][ T1791] bcachefs (loop0): unshutdown complete, journal seq 10 [ 67.265943][ T1791] bcachefs (loop0): done going read-only, filesystem not clean [ 67.276605][ T5081] bcachefs (loop0): shutting down [ 67.292899][ T5081] bcachefs (loop0): shutdown complete umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./11/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./11/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./11/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./11") = 0 mkdir("./12", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558a2c7650) = 5217 ./strace-static-x86_64: Process 5217 attached [pid 5217] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5217] chdir("./12") = 0 [pid 5217] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5217] setpgid(0, 0) = 0 [pid 5217] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5217] write(3, "1000", 4) = 4 [pid 5217] close(3) = 0 [pid 5217] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5217] write(1, "executing program\n", 18executing program ) = 18 [pid 5217] memfd_create("syzkaller", 0) = 3 [pid 5217] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5217] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5217] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5217] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5217] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5217] close(3) = 0 [pid 5217] close(4) = 0 [pid 5217] mkdir("./file0", 0777) = 0 [ 67.849455][ T5217] loop0: detected capacity change from 0 to 32768 [ 67.909814][ T5217] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 67.923716][ T5217] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 67.941730][ T5217] bcachefs (loop0): alloc_read... done [ 67.947255][ T5217] bcachefs (loop0): stripes_read... done [ 67.953256][ T5217] bcachefs (loop0): snapshots_read... done [pid 5217] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5217] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5217] chdir("./file0") = 0 [pid 5217] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5217] ioctl(4, LOOP_CLR_FD) = 0 [pid 5217] close(4) = 0 [pid 5217] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [pid 5217] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5217] exit_group(0) = ? [ 67.960592][ T5217] bcachefs (loop0): journal_replay... done [ 67.966435][ T5217] bcachefs (loop0): resume_logged_ops... done [ 67.972631][ T5217] bcachefs (loop0): going read-write [ 67.980264][ T5217] bcachefs (loop0): done starting filesystem [pid 5217] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5217, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=22 /* 0.22 s */} --- umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./12/binderfs") = 0 [ 68.030981][ T9] bcachefs (loop0): going read-only [ 68.036233][ T9] bcachefs (loop0): finished waiting for writes to stop [ 68.045748][ T9] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 68.054926][ T9] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 68.064897][ T9] bcachefs (loop0): unshutdown complete, journal seq 10 [ 68.072632][ T9] bcachefs (loop0): done going read-only, filesystem not clean [ 68.099093][ T5081] bcachefs (loop0): shutting down [ 68.113984][ T5081] bcachefs (loop0): shutdown complete umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./12/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./12/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./12/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./12") = 0 mkdir("./13", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5228 attached [pid 5228] set_robust_list(0x55558a2c7660, 24 [pid 5081] <... clone resumed>, child_tidptr=0x55558a2c7650) = 5228 [pid 5228] <... set_robust_list resumed>) = 0 [pid 5228] chdir("./13") = 0 [pid 5228] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5228] setpgid(0, 0) = 0 [pid 5228] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5228] write(3, "1000", 4) = 4 [pid 5228] close(3) = 0 [pid 5228] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5228] write(1, "executing program\n", 18) = 18 [pid 5228] memfd_create("syzkaller", 0) = 3 [pid 5228] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5228] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5228] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5228] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5228] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5228] close(3) = 0 [pid 5228] close(4) = 0 [pid 5228] mkdir("./file0", 0777) = 0 [ 68.682241][ T5228] loop0: detected capacity change from 0 to 32768 [ 68.746520][ T5228] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 68.760672][ T5228] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 68.777913][ T5228] bcachefs (loop0): alloc_read... done [ 68.783720][ T5228] bcachefs (loop0): stripes_read... done [ 68.789500][ T5228] bcachefs (loop0): snapshots_read... done [pid 5228] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5228] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5228] chdir("./file0") = 0 [pid 5228] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5228] ioctl(4, LOOP_CLR_FD) = 0 [pid 5228] close(4) = 0 [pid 5228] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [ 68.797047][ T5228] bcachefs (loop0): journal_replay... done [ 68.802989][ T5228] bcachefs (loop0): resume_logged_ops... done [ 68.809179][ T5228] bcachefs (loop0): going read-write [ 68.816399][ T5228] bcachefs (loop0): done starting filesystem [pid 5228] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5228] exit_group(0) = ? [pid 5228] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5228, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=20 /* 0.20 s */} --- umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./13/binderfs") = 0 [ 68.880021][ T1791] bcachefs (loop0): going read-only [ 68.885251][ T1791] bcachefs (loop0): finished waiting for writes to stop [ 68.892811][ T1791] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 68.901735][ T1791] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 68.912645][ T1791] bcachefs (loop0): unshutdown complete, journal seq 10 [ 68.920975][ T1791] bcachefs (loop0): done going read-only, filesystem not clean [ 68.930167][ T5081] bcachefs (loop0): shutting down [ 68.945225][ T5081] bcachefs (loop0): shutdown complete umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./13/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./13/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./13/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./13") = 0 mkdir("./14", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5239 attached , child_tidptr=0x55558a2c7650) = 5239 [pid 5239] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5239] chdir("./14") = 0 [pid 5239] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5239] setpgid(0, 0) = 0 [pid 5239] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5239] write(3, "1000", 4) = 4 [pid 5239] close(3) = 0 [pid 5239] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5239] write(1, "executing program\n", 18executing program ) = 18 [pid 5239] memfd_create("syzkaller", 0) = 3 [pid 5239] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5239] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5239] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5239] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5239] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5239] close(3) = 0 [pid 5239] close(4) = 0 [pid 5239] mkdir("./file0", 0777) = 0 [ 69.505015][ T5239] loop0: detected capacity change from 0 to 32768 [ 69.559101][ T5239] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 69.573131][ T5239] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 69.590376][ T5239] bcachefs (loop0): alloc_read... done [ 69.595906][ T5239] bcachefs (loop0): stripes_read... done [ 69.601878][ T5239] bcachefs (loop0): snapshots_read... done [pid 5239] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5239] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5239] chdir("./file0") = 0 [pid 5239] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5239] ioctl(4, LOOP_CLR_FD) = 0 [pid 5239] close(4) = 0 [pid 5239] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [ 69.609482][ T5239] bcachefs (loop0): journal_replay... done [ 69.615332][ T5239] bcachefs (loop0): resume_logged_ops... done [ 69.621541][ T5239] bcachefs (loop0): going read-write [ 69.628929][ T5239] bcachefs (loop0): done starting filesystem [pid 5239] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5239] exit_group(0) = ? [pid 5239] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5239, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=21 /* 0.21 s */} --- umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./14/binderfs") = 0 [ 69.691791][ T5149] bcachefs (loop0): going read-only [ 69.697055][ T5149] bcachefs (loop0): finished waiting for writes to stop [ 69.704629][ T5149] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 69.713549][ T5149] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 69.723922][ T5149] bcachefs (loop0): unshutdown complete, journal seq 10 [ 69.725310][ T5081] bcachefs (loop0): shutting down [ 69.731835][ T5149] bcachefs (loop0): done going read-only, filesystem not clean [ 69.753762][ T5081] bcachefs (loop0): shutdown complete umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./14/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./14/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./14/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./14") = 0 mkdir("./15", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558a2c7650) = 5250 ./strace-static-x86_64: Process 5250 attached [pid 5250] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5250] chdir("./15") = 0 [pid 5250] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5250] setpgid(0, 0) = 0 [pid 5250] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5250] write(3, "1000", 4) = 4 [pid 5250] close(3) = 0 [pid 5250] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5250] write(1, "executing program\n", 18executing program ) = 18 [pid 5250] memfd_create("syzkaller", 0) = 3 [pid 5250] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5250] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5250] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5250] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5250] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5250] close(3) = 0 [pid 5250] close(4) = 0 [pid 5250] mkdir("./file0", 0777) = 0 [ 70.283468][ T5250] loop0: detected capacity change from 0 to 32768 [ 70.364566][ T5250] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 70.378834][ T5250] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 70.396108][ T5250] bcachefs (loop0): alloc_read... done [ 70.401746][ T5250] bcachefs (loop0): stripes_read... done [ 70.407426][ T5250] bcachefs (loop0): snapshots_read... done [pid 5250] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5250] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5250] chdir("./file0") = 0 [pid 5250] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5250] ioctl(4, LOOP_CLR_FD) = 0 [pid 5250] close(4) = 0 [pid 5250] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [ 70.415354][ T5250] bcachefs (loop0): journal_replay... done [ 70.421279][ T5250] bcachefs (loop0): resume_logged_ops... done [ 70.427597][ T5250] bcachefs (loop0): going read-write [ 70.434811][ T5250] bcachefs (loop0): done starting filesystem [pid 5250] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5250] exit_group(0) = ? [pid 5250] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5250, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=22 /* 0.22 s */} --- umount2("./15", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./15/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./15/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./15/binderfs") = 0 [ 70.491928][ T5149] bcachefs (loop0): going read-only [ 70.497190][ T5149] bcachefs (loop0): finished waiting for writes to stop [ 70.505366][ T5149] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 70.514315][ T5149] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 70.524072][ T5149] bcachefs (loop0): unshutdown complete, journal seq 10 [ 70.531775][ T5149] bcachefs (loop0): done going read-only, filesystem not clean [ 70.548513][ T5081] bcachefs (loop0): shutting down [ 70.564682][ T5081] bcachefs (loop0): shutdown complete umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./15/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./15/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./15/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./15") = 0 mkdir("./16", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558a2c7650) = 5261 ./strace-static-x86_64: Process 5261 attached [pid 5261] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5261] chdir("./16") = 0 [pid 5261] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5261] setpgid(0, 0) = 0 [pid 5261] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5261] write(3, "1000", 4) = 4 [pid 5261] close(3) = 0 [pid 5261] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5261] write(1, "executing program\n", 18) = 18 [pid 5261] memfd_create("syzkaller", 0) = 3 [pid 5261] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5261] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5261] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5261] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5261] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5261] close(3) = 0 [pid 5261] close(4) = 0 [pid 5261] mkdir("./file0", 0777) = 0 [ 71.076478][ T5261] loop0: detected capacity change from 0 to 32768 [ 71.135785][ T5261] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 71.149627][ T5261] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 71.166633][ T5261] bcachefs (loop0): alloc_read... done [ 71.172581][ T5261] bcachefs (loop0): stripes_read... done [ 71.178374][ T5261] bcachefs (loop0): snapshots_read... done [pid 5261] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5261] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5261] chdir("./file0") = 0 [pid 5261] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5261] ioctl(4, LOOP_CLR_FD) = 0 [pid 5261] close(4) = 0 [pid 5261] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [pid 5261] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5261] exit_group(0) = ? [ 71.185955][ T5261] bcachefs (loop0): journal_replay... done [ 71.191918][ T5261] bcachefs (loop0): resume_logged_ops... done [ 71.198115][ T5261] bcachefs (loop0): going read-write [ 71.205145][ T5261] bcachefs (loop0): done starting filesystem [pid 5261] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5261, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=19 /* 0.19 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./16", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./16/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./16/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 71.250013][ T5149] bcachefs (loop0): going read-only [ 71.255260][ T5149] bcachefs (loop0): finished waiting for writes to stop [ 71.262916][ T5149] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 71.271856][ T5149] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 71.281794][ T5149] bcachefs (loop0): unshutdown complete, journal seq 10 [ 71.289357][ T5149] bcachefs (loop0): done going read-only, filesystem not clean unlink("./16/binderfs") = 0 [ 71.335656][ T5081] bcachefs (loop0): shutting down [ 71.351238][ T5081] bcachefs (loop0): shutdown complete umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./16/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./16/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./16/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./16") = 0 mkdir("./17", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5272 attached , child_tidptr=0x55558a2c7650) = 5272 [pid 5272] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5272] chdir("./17") = 0 [pid 5272] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5272] setpgid(0, 0) = 0 [pid 5272] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5272] write(3, "1000", 4) = 4 [pid 5272] close(3) = 0 [pid 5272] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5272] write(1, "executing program\n", 18executing program ) = 18 [pid 5272] memfd_create("syzkaller", 0) = 3 [pid 5272] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5272] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5272] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5272] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5272] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5272] close(3) = 0 [pid 5272] close(4) = 0 [pid 5272] mkdir("./file0", 0777) = 0 [ 71.855768][ T5272] loop0: detected capacity change from 0 to 32768 [ 71.912641][ T5272] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 71.926642][ T5272] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 71.943823][ T5272] bcachefs (loop0): alloc_read... done [ 71.949751][ T5272] bcachefs (loop0): stripes_read... done [ 71.955437][ T5272] bcachefs (loop0): snapshots_read... done [pid 5272] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5272] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5272] chdir("./file0") = 0 [pid 5272] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [ 71.962809][ T5272] bcachefs (loop0): journal_replay... done [ 71.968801][ T5272] bcachefs (loop0): resume_logged_ops... done [ 71.975028][ T5272] bcachefs (loop0): going read-write [ 71.982089][ T5272] bcachefs (loop0): done starting filesystem [pid 5272] ioctl(4, LOOP_CLR_FD) = 0 [pid 5272] close(4) = 0 [pid 5272] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [pid 5272] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5272] exit_group(0) = ? [pid 5272] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5272, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=20 /* 0.20 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./17", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./17/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./17/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 72.063366][ T8] bcachefs (loop0): going read-only [ 72.069164][ T8] bcachefs (loop0): finished waiting for writes to stop [ 72.076825][ T8] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 72.085978][ T8] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 72.096284][ T8] bcachefs (loop0): unshutdown complete, journal seq 10 [ 72.104131][ T8] bcachefs (loop0): done going read-only, filesystem not clean unlink("./17/binderfs") = 0 [ 72.148419][ T5081] bcachefs (loop0): shutting down [ 72.164504][ T5081] bcachefs (loop0): shutdown complete umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./17/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./17/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./17/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./17") = 0 mkdir("./18", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5283 attached [pid 5283] set_robust_list(0x55558a2c7660, 24 [pid 5081] <... clone resumed>, child_tidptr=0x55558a2c7650) = 5283 [pid 5283] <... set_robust_list resumed>) = 0 [pid 5283] chdir("./18") = 0 [pid 5283] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5283] setpgid(0, 0) = 0 [pid 5283] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5283] write(3, "1000", 4) = 4 [pid 5283] close(3) = 0 [pid 5283] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5283] write(1, "executing program\n", 18executing program ) = 18 [pid 5283] memfd_create("syzkaller", 0) = 3 [pid 5283] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5283] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5283] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5283] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5283] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5283] close(3) = 0 [pid 5283] close(4) = 0 [pid 5283] mkdir("./file0", 0777) = 0 [ 72.691730][ T5283] loop0: detected capacity change from 0 to 32768 [ 72.745077][ T5283] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 72.758942][ T5283] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 72.776192][ T5283] bcachefs (loop0): alloc_read... done [ 72.782678][ T5283] bcachefs (loop0): stripes_read... done [ 72.788373][ T5283] bcachefs (loop0): snapshots_read... done [pid 5283] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5283] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5283] chdir("./file0") = 0 [pid 5283] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5283] ioctl(4, LOOP_CLR_FD) = 0 [pid 5283] close(4) = 0 [pid 5283] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [ 72.796076][ T5283] bcachefs (loop0): journal_replay... done [ 72.801994][ T5283] bcachefs (loop0): resume_logged_ops... done [ 72.808245][ T5283] bcachefs (loop0): going read-write [ 72.815704][ T5283] bcachefs (loop0): done starting filesystem [pid 5283] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5283] exit_group(0) = ? [pid 5283] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5283, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=25 /* 0.25 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./18", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./18/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./18/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./18/binderfs") = 0 [ 72.896863][ T8] bcachefs (loop0): going read-only [ 72.902433][ T8] bcachefs (loop0): finished waiting for writes to stop [ 72.910512][ T8] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 72.919579][ T8] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 72.929967][ T8] bcachefs (loop0): unshutdown complete, journal seq 10 [ 72.930532][ T5081] bcachefs (loop0): shutting down [ 72.937754][ T8] bcachefs (loop0): done going read-only, filesystem not clean [ 72.959384][ T5081] bcachefs (loop0): shutdown complete umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./18/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./18/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./18/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./18") = 0 mkdir("./19", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5294 attached [pid 5294] set_robust_list(0x55558a2c7660, 24 [pid 5081] <... clone resumed>, child_tidptr=0x55558a2c7650) = 5294 [pid 5294] <... set_robust_list resumed>) = 0 [pid 5294] chdir("./19") = 0 [pid 5294] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5294] setpgid(0, 0) = 0 [pid 5294] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5294] write(3, "1000", 4) = 4 [pid 5294] close(3) = 0 [pid 5294] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5294] write(1, "executing program\n", 18executing program ) = 18 [pid 5294] memfd_create("syzkaller", 0) = 3 [pid 5294] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5294] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5294] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5294] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5294] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5294] close(3) = 0 [pid 5294] close(4) = 0 [pid 5294] mkdir("./file0", 0777) = 0 [ 73.452336][ T5294] loop0: detected capacity change from 0 to 32768 [ 73.514101][ T5294] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 73.529380][ T5294] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 73.546186][ T5294] bcachefs (loop0): alloc_read... done [ 73.551876][ T5294] bcachefs (loop0): stripes_read... done [ 73.557567][ T5294] bcachefs (loop0): snapshots_read... done [pid 5294] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5294] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5294] chdir("./file0") = 0 [pid 5294] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5294] ioctl(4, LOOP_CLR_FD) = 0 [pid 5294] close(4) = 0 [pid 5294] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [pid 5294] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5294] exit_group(0) = ? [ 73.565084][ T5294] bcachefs (loop0): journal_replay... done [ 73.571002][ T5294] bcachefs (loop0): resume_logged_ops... done [ 73.577144][ T5294] bcachefs (loop0): going read-write [ 73.584690][ T5294] bcachefs (loop0): done starting filesystem [pid 5294] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5294, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=23 /* 0.23 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./19", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./19/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./19/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./19/binderfs") = 0 [ 73.636804][ T1791] bcachefs (loop0): going read-only [ 73.642108][ T1791] bcachefs (loop0): finished waiting for writes to stop [ 73.649679][ T1791] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 73.658498][ T1791] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 73.668462][ T1791] bcachefs (loop0): unshutdown complete, journal seq 10 [ 73.676000][ T1791] bcachefs (loop0): done going read-only, filesystem not clean [ 73.709610][ T5081] bcachefs (loop0): shutting down [ 73.724921][ T5081] bcachefs (loop0): shutdown complete umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./19/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./19/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./19/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./19") = 0 mkdir("./20", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558a2c7650) = 5305 ./strace-static-x86_64: Process 5305 attached [pid 5305] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5305] chdir("./20") = 0 [pid 5305] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5305] setpgid(0, 0) = 0 [pid 5305] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5305] write(3, "1000", 4) = 4 [pid 5305] close(3) = 0 [pid 5305] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5305] write(1, "executing program\n", 18) = 18 [pid 5305] memfd_create("syzkaller", 0) = 3 [pid 5305] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5305] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5305] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5305] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5305] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5305] close(3) = 0 [pid 5305] close(4) = 0 [pid 5305] mkdir("./file0", 0777) = 0 [ 74.245619][ T5305] loop0: detected capacity change from 0 to 32768 [ 74.306439][ T5305] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 74.320517][ T5305] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 74.337301][ T5305] bcachefs (loop0): alloc_read... done [ 74.342968][ T5305] bcachefs (loop0): stripes_read... done [ 74.348724][ T5305] bcachefs (loop0): snapshots_read... done [pid 5305] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5305] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5305] chdir("./file0") = 0 [pid 5305] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [ 74.356032][ T5305] bcachefs (loop0): journal_replay... done [ 74.361968][ T5305] bcachefs (loop0): resume_logged_ops... done [ 74.368114][ T5305] bcachefs (loop0): going read-write [ 74.375131][ T5305] bcachefs (loop0): done starting filesystem [pid 5305] ioctl(4, LOOP_CLR_FD) = 0 [pid 5305] close(4) = 0 [pid 5305] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [pid 5305] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5305] exit_group(0) = ? [pid 5305] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5305, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=16 /* 0.16 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./20", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./20/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./20/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 74.443613][ T8] bcachefs (loop0): going read-only [ 74.448901][ T8] bcachefs (loop0): finished waiting for writes to stop [ 74.457758][ T8] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 74.466881][ T8] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 74.476817][ T8] bcachefs (loop0): unshutdown complete, journal seq 10 [ 74.484787][ T8] bcachefs (loop0): done going read-only, filesystem not clean unlink("./20/binderfs") = 0 [ 74.533902][ T5081] bcachefs (loop0): shutting down [ 74.548443][ T5081] bcachefs (loop0): shutdown complete umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./20/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./20/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./20/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./20") = 0 mkdir("./21", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5316 attached , child_tidptr=0x55558a2c7650) = 5316 [pid 5316] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5316] chdir("./21") = 0 [pid 5316] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5316] setpgid(0, 0) = 0 [pid 5316] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5316] write(3, "1000", 4) = 4 [pid 5316] close(3) = 0 [pid 5316] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5316] write(1, "executing program\n", 18) = 18 [pid 5316] memfd_create("syzkaller", 0) = 3 [pid 5316] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5316] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5316] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5316] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5316] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5316] close(3) = 0 [pid 5316] close(4) = 0 [pid 5316] mkdir("./file0", 0777) = 0 [ 74.997362][ T5316] loop0: detected capacity change from 0 to 32768 [ 75.054367][ T5316] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 75.068149][ T5316] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 75.085293][ T5316] bcachefs (loop0): alloc_read... done [ 75.090953][ T5316] bcachefs (loop0): stripes_read... done [ 75.096635][ T5316] bcachefs (loop0): snapshots_read... done [pid 5316] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5316] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5316] chdir("./file0") = 0 [pid 5316] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5316] ioctl(4, LOOP_CLR_FD) = 0 [pid 5316] close(4) = 0 [ 75.104085][ T5316] bcachefs (loop0): journal_replay... done [ 75.110006][ T5316] bcachefs (loop0): resume_logged_ops... done [ 75.116145][ T5316] bcachefs (loop0): going read-write [ 75.123524][ T5316] bcachefs (loop0): done starting filesystem [pid 5316] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [pid 5316] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5316] exit_group(0) = ? [pid 5316] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5316, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=21 /* 0.21 s */} --- umount2("./21", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./21", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./21/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./21/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./21/binderfs") = 0 [ 75.194018][ T1791] bcachefs (loop0): going read-only [ 75.199570][ T1791] bcachefs (loop0): finished waiting for writes to stop [ 75.207276][ T1791] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 75.216232][ T1791] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 75.225975][ T1791] bcachefs (loop0): unshutdown complete, journal seq 10 [ 75.233675][ T1791] bcachefs (loop0): done going read-only, filesystem not clean [ 75.260462][ T5081] bcachefs (loop0): shutting down [ 75.275663][ T5081] bcachefs (loop0): shutdown complete umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./21/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./21/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./21/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./21") = 0 mkdir("./22", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5328 attached , child_tidptr=0x55558a2c7650) = 5328 [pid 5328] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5328] chdir("./22") = 0 [pid 5328] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5328] setpgid(0, 0) = 0 [pid 5328] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5328] write(3, "1000", 4) = 4 [pid 5328] close(3) = 0 [pid 5328] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5328] write(1, "executing program\n", 18executing program ) = 18 [pid 5328] memfd_create("syzkaller", 0) = 3 [pid 5328] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5328] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5328] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5328] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5328] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5328] close(3) = 0 [pid 5328] close(4) = 0 [pid 5328] mkdir("./file0", 0777) = 0 [ 75.796089][ T5328] loop0: detected capacity change from 0 to 32768 [ 75.852072][ T5328] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 75.865853][ T5328] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 75.883091][ T5328] bcachefs (loop0): alloc_read... done [ 75.889048][ T5328] bcachefs (loop0): stripes_read... done [ 75.894725][ T5328] bcachefs (loop0): snapshots_read... done [pid 5328] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5328] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5328] chdir("./file0") = 0 [pid 5328] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5328] ioctl(4, LOOP_CLR_FD) = 0 [pid 5328] close(4) = 0 [pid 5328] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [pid 5328] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5328] exit_group(0) = ? [ 75.902114][ T5328] bcachefs (loop0): journal_replay... done [ 75.907954][ T5328] bcachefs (loop0): resume_logged_ops... done [ 75.914183][ T5328] bcachefs (loop0): going read-write [ 75.921012][ T5328] bcachefs (loop0): done starting filesystem [pid 5328] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5328, si_uid=0, si_status=0, si_utime=0, si_stime=27 /* 0.27 s */} --- umount2("./22", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./22", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./22/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./22/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./22/binderfs") = 0 [ 75.973270][ T8] bcachefs (loop0): going read-only [ 75.984679][ T5081] bcachefs (loop0): shutting down [ 75.990048][ T8] bcachefs (loop0): finished waiting for writes to stop [ 75.997462][ T8] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 76.006826][ T8] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 76.016592][ T8] bcachefs (loop0): unshutdown complete, journal seq 10 [ 76.024306][ T8] bcachefs (loop0): done going read-only, filesystem not clean [ 76.042531][ T5081] bcachefs (loop0): shutdown complete umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./22/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./22/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./22/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./22") = 0 mkdir("./23", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558a2c7650) = 5339 ./strace-static-x86_64: Process 5339 attached [pid 5339] set_robust_list(0x55558a2c7660, 24) = 0 [pid 5339] chdir("./23") = 0 [pid 5339] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5339] setpgid(0, 0) = 0 [pid 5339] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5339] write(3, "1000", 4) = 4 [pid 5339] close(3) = 0 [pid 5339] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5339] write(1, "executing program\n", 18executing program ) = 18 [pid 5339] memfd_create("syzkaller", 0) = 3 [pid 5339] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5339] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5339] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5339] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5339] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5339] close(3) = 0 [pid 5339] close(4) = 0 [pid 5339] mkdir("./file0", 0777) = 0 [ 76.510091][ T5339] loop0: detected capacity change from 0 to 32768 [ 76.580551][ T5339] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 76.596110][ T5339] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 76.613163][ T5339] bcachefs (loop0): alloc_read... done [ 76.618771][ T5339] bcachefs (loop0): stripes_read... done [ 76.624468][ T5339] bcachefs (loop0): snapshots_read... done [pid 5339] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5339] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5339] chdir("./file0") = 0 [pid 5339] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5339] ioctl(4, LOOP_CLR_FD) = 0 [pid 5339] close(4) = 0 [pid 5339] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [pid 5339] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5339] exit_group(0) = ? [ 76.631846][ T5339] bcachefs (loop0): journal_replay... done [ 76.637696][ T5339] bcachefs (loop0): resume_logged_ops... done [ 76.643963][ T5339] bcachefs (loop0): going read-write [ 76.651158][ T5339] bcachefs (loop0): done starting filesystem [pid 5339] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5339, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=22 /* 0.22 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./23", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./23", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./23/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./23/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./23/binderfs") = 0 [ 76.699498][ T1791] bcachefs (loop0): going read-only [ 76.704746][ T1791] bcachefs (loop0): finished waiting for writes to stop [ 76.712357][ T1791] bcachefs (loop0): flushing journal and stopping allocators, journal seq 10 [ 76.721266][ T1791] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 10 [ 76.731559][ T1791] bcachefs (loop0): unshutdown complete, journal seq 10 [ 76.739224][ T1791] bcachefs (loop0): done going read-only, filesystem not clean [ 76.767629][ T5081] bcachefs (loop0): shutting down [ 76.783369][ T5081] bcachefs (loop0): shutdown complete [ 76.941530][ T45] cfg80211: failed to load regulatory.db umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./23/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./23/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x55558a2d0730 /* 2 entries */, 32768) = 48 getdents64(4, 0x55558a2d0730 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./23/file0") = 0 getdents64(3, 0x55558a2c86f0 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./23") = 0 mkdir("./24", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5350 attached [pid 5350] set_robust_list(0x55558a2c7660, 24 [pid 5081] <... clone resumed>, child_tidptr=0x55558a2c7650) = 5350 [pid 5350] <... set_robust_list resumed>) = 0 [pid 5350] chdir("./24") = 0 [pid 5350] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5350] setpgid(0, 0) = 0 [pid 5350] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5350] write(3, "1000", 4) = 4 [pid 5350] close(3) = 0 [pid 5350] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5350] write(1, "executing program\n", 18executing program ) = 18 [pid 5350] memfd_create("syzkaller", 0) = 3 [pid 5350] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70d2c00000 [pid 5350] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5350] munmap(0x7f70d2c00000, 138412032) = 0 [pid 5350] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5350] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5350] close(3) = 0 [pid 5350] close(4) = 0 [pid 5350] mkdir("./file0", 0777) = 0 [ 77.628727][ T5350] loop0: detected capacity change from 0 to 32768 [ 77.693997][ T5350] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 77.707767][ T5350] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 77.725080][ T5350] bcachefs (loop0): alloc_read... done [ 77.730709][ T5350] bcachefs (loop0): stripes_read... done [ 77.736392][ T5350] bcachefs (loop0): snapshots_read... done [pid 5350] mount("/dev/loop0", "./file0", "bcachefs", MS_NODEV|MS_SYNCHRONOUS|MS_RELATIME|MS_STRICTATIME, "01777777777777777777777") = 0 [pid 5350] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5350] chdir("./file0") = 0 [pid 5350] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5350] ioctl(4, LOOP_CLR_FD) = 0 [pid 5350] close(4) = 0 [pid 5350] openat(AT_FDCWD, "./file1", O_RDONLY) = 4 [pid 5350] ioctl(4, _IOC(_IOC_WRITE, 0xbc, 0x14, 0x10), 0x20000000) = 5 [pid 5350] exit_group(0) = ? [pid 5350] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5350, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=25 /* 0.25 s */} --- [ 77.743782][ T5350] bcachefs (loop0): journal_replay... done [ 77.749690][ T5350] bcachefs (loop0): resume_logged_ops... done [ 77.755835][ T5350] bcachefs (loop0): going read-write [ 77.762773][ T5350] bcachefs (loop0): done starting filesystem restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./24", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x55558a2c86f0 /* 4 entries */, 32768) = 112 umount2("./24/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./24/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./24/binderfs") = 0 [ 77.825108][ T5081] bcachefs (loop0): shutting down [ 77.830213][ T5081] bcachefs (loop0): going read-only [ 77.835474][ T5081] bcachefs (loop0): finished waiting for writes to stop [ 77.844021][ T5081] bcachefs (loop0): flushing journal and stopping allocators, journal seq 11 [ 77.856825][ T5081] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 12 [ 77.868652][ T5081] bcachefs (loop0): shutdown complete, journal seq 13 [ 77.875935][ T5081] bcachefs (loop0): marking filesystem clean [ 286.850339][ T30] INFO: task syz-executor427:5081 blocked for more than 143 seconds. [ 286.858726][ T30] Not tainted 6.10.0-rc3-syzkaller #0 [ 286.864612][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.873343][ T30] task:syz-executor427 state:D stack:22048 pid:5081 tgid:5081 ppid:5078 flags:0x00004002 [ 286.883632][ T30] Call Trace: [ 286.886919][ T30] [ 286.889902][ T30] __schedule+0x1796/0x49d0 [ 286.894446][ T30] ? __pfx___schedule+0x10/0x10 [ 286.899369][ T30] ? __pfx_lock_release+0x10/0x10 [ 286.904423][ T30] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 286.910383][ T30] ? schedule+0x90/0x320 [ 286.914640][ T30] schedule+0x14b/0x320 [ 286.918896][ T30] __bch2_fs_stop+0x35b/0x540 [ 286.923598][ T30] ? __pfx___bch2_fs_stop+0x10/0x10 [ 286.928860][ T30] ? __pfx_autoremove_wake_function+0x10/0x10 [ 286.934935][ T30] ? __pfx_evict_inodes+0x10/0x10 [ 286.940028][ T30] ? __pfx_bch2_put_super+0x10/0x10 [ 286.945236][ T30] generic_shutdown_super+0x136/0x2d0 [ 286.950671][ T30] bch2_kill_sb+0x41/0x50 [ 286.955013][ T30] deactivate_locked_super+0xc4/0x130 [ 286.960453][ T30] cleanup_mnt+0x41f/0x4b0 [ 286.964880][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 286.970132][ T30] task_work_run+0x24f/0x310 [ 286.974738][ T30] ? __pfx_task_work_run+0x10/0x10 [ 286.979912][ T30] ? path_umount+0x284/0xf70 [ 286.984519][ T30] ptrace_notify+0x2d2/0x380 [ 286.989154][ T30] ? __pfx_path_umount+0x10/0x10 [ 286.994135][ T30] ? user_path_at_empty+0x4c/0x60 [ 286.999248][ T30] ? __pfx_ptrace_notify+0x10/0x10 [ 287.004389][ T30] ? __x64_sys_umount+0x126/0x170 [ 287.009464][ T30] ? __pfx___x64_sys_umount+0x10/0x10 [ 287.014849][ T30] syscall_exit_work+0xc6/0x190 [ 287.019788][ T30] syscall_exit_to_user_mode+0x273/0x370 [ 287.025434][ T30] do_syscall_64+0x100/0x230 [ 287.030073][ T30] ? clear_bhb_loop+0x35/0x90 [ 287.034760][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.040824][ T30] RIP: 0033:0x7f70db0df3c7 [ 287.045260][ T30] RSP: 002b:00007ffd58b093d8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6 [ 287.053724][ T30] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f70db0df3c7 [ 287.061753][ T30] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd58b09490 [ 287.069778][ T30] RBP: 00007ffd58b09490 R08: 0000000000000000 R09: 0000000000000000 [ 287.077871][ T30] R10: 00000000ffffffff R11: 0000000000000206 R12: 00007ffd58b0a4f0 [ 287.085908][ T30] R13: 000055558a2c86c0 R14: 0000000000000019 R15: 431bde82d7b634db [ 287.093938][ T30] [ 287.097087][ T30] [ 287.097087][ T30] Showing all locks held in the system: [ 287.104887][ T30] 1 lock held by khungtaskd/30: [ 287.109788][ T30] #0: ffffffff8e333fa0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 287.119735][ T30] 2 locks held by kworker/u8:7/1105: [ 287.125048][ T30] 1 lock held by klogd/4526: [ 287.129680][ T30] 2 locks held by getty/4836: [ 287.134350][ T30] #0: ffff88802f6310a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 287.144160][ T30] #1: ffffc90002f162f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 [ 287.154361][ T30] 1 lock held by syz-executor427/5081: [ 287.159864][ T30] #0: ffff88807e8180e0 (&type->s_umount_key#44){+.+.}-{3:3}, at: deactivate_super+0xb5/0xf0 [ 287.170128][ T30] [ 287.172462][ T30] ============================================= [ 287.172462][ T30] [ 287.180928][ T30] NMI backtrace for cpu 1 [ 287.185263][ T30] CPU: 1 PID: 30 Comm: khungtaskd Not tainted 6.10.0-rc3-syzkaller #0 [ 287.193397][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 287.203441][ T30] Call Trace: [ 287.206704][ T30] [ 287.209617][ T30] dump_stack_lvl+0x241/0x360 [ 287.214313][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 287.219537][ T30] ? __pfx__printk+0x10/0x10 [ 287.224141][ T30] ? vprintk_emit+0x631/0x770 [ 287.228839][ T30] ? __pfx_vprintk_emit+0x10/0x10 [ 287.233866][ T30] nmi_cpu_backtrace+0x49c/0x4d0 [ 287.238818][ T30] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 287.244276][ T30] ? _printk+0xd5/0x120 [ 287.248422][ T30] ? __pfx__printk+0x10/0x10 [ 287.253000][ T30] ? __wake_up_klogd+0xcc/0x110 [ 287.257844][ T30] ? __pfx__printk+0x10/0x10 [ 287.262488][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 287.268451][ T30] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 287.274438][ T30] watchdog+0xfde/0x1020 [ 287.278663][ T30] ? watchdog+0x1ea/0x1020 [ 287.283063][ T30] ? __pfx_watchdog+0x10/0x10 [ 287.287720][ T30] kthread+0x2f0/0x390 [ 287.291773][ T30] ? __pfx_watchdog+0x10/0x10 [ 287.296431][ T30] ? __pfx_kthread+0x10/0x10 [ 287.301004][ T30] ret_from_fork+0x4b/0x80 [ 287.305403][ T30] ? __pfx_kthread+0x10/0x10 [ 287.309972][ T30] ret_from_fork_asm+0x1a/0x30 [ 287.314730][ T30] [ 287.317907][ T30] Sending NMI from CPU 1 to CPUs 0: [ 287.323195][ C0] NMI backtrace for cpu 0 [ 287.323208][ C0] CPU: 0 PID: 1105 Comm: kworker/u8:7 Not tainted 6.10.0-rc3-syzkaller #0 [ 287.323224][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 287.323233][ C0] Workqueue: events_unbound toggle_allocation_gate [ 287.323254][ C0] RIP: 0010:__text_poke+0x187/0xd30 [ 287.323272][ C0] Code: 00 00 00 00 00 ea ff ff 4c 89 ff e8 13 33 0d 00 49 89 c4 49 c1 ec 06 49 83 e4 c0 49 01 dc 4c 89 e3 48 c1 eb 03 42 80 3c 2b 00 <74> 08 4c 89 e7 e8 ff 88 c3 00 4d 8b 34 24 48 c7 c7 ff ff ff ff 4c [ 287.323284][ C0] RSP: 0018:ffffc900043f7740 EFLAGS: 00000246 [ 287.323296][ C0] RAX: 0000000001ed289c RBX: 1ffffd400000f690 RCX: ffff888022338000 [ 287.323307][ C0] RDX: 0000000000000000 RSI: 0000000001ed289c RDI: 000000001fffffff [ 287.323317][ C0] RBP: ffffc900043f7910 R08: ffffffff81424c05 R09: 1ffffffff1f583d5 [ 287.323329][ C0] R10: dffffc0000000000 R11: fffffbfff1f583d6 R12: ffffea000007b480 [ 287.323340][ C0] R13: dffffc0000000000 R14: 0000000000000001 R15: ffffffff81ed289c [ 287.323350][ C0] FS: 0000000000000000(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 287.323363][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.323373][ C0] CR2: 00005622c0cea600 CR3: 000000000e132000 CR4: 00000000003506f0 [ 287.323387][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.323396][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.323405][ C0] Call Trace: [ 287.323411][ C0] [ 287.323417][ C0] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 287.323438][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 287.323455][ C0] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 287.323479][ C0] ? nmi_handle+0x2a/0x5a0 [ 287.323506][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 287.323523][ C0] ? nmi_handle+0x14f/0x5a0 [ 287.323542][ C0] ? nmi_handle+0x2a/0x5a0 [ 287.323562][ C0] ? __text_poke+0x187/0xd30 [ 287.323576][ C0] ? default_do_nmi+0x63/0x160 [ 287.323596][ C0] ? exc_nmi+0x123/0x1f0 [ 287.323614][ C0] ? end_repeat_nmi+0xf/0x53 [ 287.323631][ C0] ? kmalloc_node_trace_noprof+0x8c/0x300 [ 287.323652][ C0] ? __phys_addr+0x105/0x170 [ 287.323671][ C0] ? __text_poke+0x187/0xd30 [ 287.323685][ C0] ? __text_poke+0x187/0xd30 [ 287.323701][ C0] ? __text_poke+0x187/0xd30 [ 287.323715][ C0] [ 287.323720][ C0] [ 287.323728][ C0] ? kmalloc_trace_noprof+0x83/0x2c0 [ 287.323745][ C0] ? __pfx_text_poke_memcpy+0x10/0x10 [ 287.323761][ C0] ? __pfx___text_poke+0x10/0x10 [ 287.323775][ C0] ? kmem_cache_alloc_bulk_noprof+0x146/0x770 [ 287.323793][ C0] ? perf_event_text_poke+0x258/0x330 [ 287.323812][ C0] ? __pfx_smp_call_function_many_cond+0x10/0x10 [ 287.323833][ C0] ? __pfx_perf_event_text_poke+0x10/0x10 [ 287.323849][ C0] ? __mutex_trylock_common+0x183/0x2e0 [ 287.323867][ C0] ? __pfx___might_resched+0x10/0x10 [ 287.323892][ C0] text_poke_bp_batch+0x8cd/0xb30 [ 287.323912][ C0] ? kmem_cache_alloc_bulk_noprof+0x147/0x770 [ 287.323930][ C0] ? __pfx_text_poke_bp_batch+0x10/0x10 [ 287.323949][ C0] ? arch_jump_label_transform_queue+0x9b/0x100 [ 287.323971][ C0] text_poke_finish+0x30/0x50 [ 287.323986][ C0] arch_jump_label_transform_apply+0x1c/0x30 [ 287.324004][ C0] static_key_enable_cpuslocked+0x136/0x260 [ 287.324025][ C0] static_key_enable+0x1a/0x20 [ 287.324044][ C0] toggle_allocation_gate+0xb5/0x250 [ 287.324059][ C0] ? __pfx_toggle_allocation_gate+0x10/0x10 [ 287.324074][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 287.324095][ C0] ? process_scheduled_works+0x945/0x1830 [ 287.324110][ C0] process_scheduled_works+0xa2c/0x1830 [ 287.324138][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 287.324157][ C0] ? assign_work+0x364/0x3d0 [ 287.324174][ C0] worker_thread+0x86d/0xd70 [ 287.324193][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 287.324215][ C0] ? __kthread_parkme+0x169/0x1d0 [ 287.324232][ C0] ? __pfx_worker_thread+0x10/0x10 [ 287.324247][ C0] kthread+0x2f0/0x390 [ 287.324263][ C0] ? __pfx_worker_thread+0x10/0x10 [ 287.324278][ C0] ? __pfx_kthread+0x10/0x10 [ 287.324295][ C0] ret_from_fork+0x4b/0x80 [ 287.324313][ C0] ? __pfx_kthread+0x10/0x10 [ 287.324329][ C0] ret_from_fork_asm+0x1a/0x30 [ 287.324356][ C0] [ 287.324363][ C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.167 msecs [ 287.325243][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 287.325255][ T30] CPU: 1 PID: 30 Comm: khungtaskd Not tainted 6.10.0-rc3-syzkaller #0 [ 287.325272][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 287.325281][ T30] Call Trace: [ 287.325289][ T30] [ 287.325296][ T30] dump_stack_lvl+0x241/0x360 [ 287.325321][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 287.325341][ T30] ? __pfx__printk+0x10/0x10 [ 287.325365][ T30] ? vscnprintf+0x5d/0x90 [ 287.325388][ T30] panic+0x349/0x860 [ 287.325409][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 287.325432][ T30] ? __pfx_panic+0x10/0x10 [ 287.325448][ T30] ? tick_nohz_tick_stopped+0x82/0xb0 [ 287.325471][ T30] ? __irq_work_queue_local+0x137/0x410 [ 287.325490][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 287.325508][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 287.325530][ T30] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 287.325554][ T30] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 287.325579][ T30] watchdog+0x101d/0x1020 [ 287.325600][ T30] ? watchdog+0x1ea/0x1020 [ 287.325622][ T30] ? __pfx_watchdog+0x10/0x10 [ 287.325640][ T30] kthread+0x2f0/0x390 [ 287.325659][ T30] ? __pfx_watchdog+0x10/0x10 [ 287.325676][ T30] ? __pfx_kthread+0x10/0x10 [ 287.325696][ T30] ret_from_fork+0x4b/0x80 [ 287.325715][ T30] ? __pfx_kthread+0x10/0x10 [ 287.325734][ T30] ret_from_fork_asm+0x1a/0x30 [ 287.325768][ T30] [ 287.328940][ T30] Kernel Offset: disabled [ 287.890944][ T30] Rebooting in 86400 seconds..